Solved

Privileges and roles usage check before removal.

Posted on 2007-04-10
5
1,987 Views
Last Modified: 2013-12-18
Hello,
we're going to implement the principle of the least privileges granted in an Oracle database.
How can we determine if a role or privilege granted some time ago is used these days. For example an year ago SELECT_CATALOG_ROLE was granted to application user ACCOUNTING. How can we determine what privileges are used through this role( SELECT_CATALOG_ROLE) and grant the privileges explicitely and revoke the role from user ACCOUNTING. We tried DBA_DEPENDENCIES but is it the right one ? Something else? Auditing or .... ?

Thank You!
0
Comment
Question by:adrian_ang
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 4

Accepted Solution

by:
ramumorla earned 250 total points
ID: 18887205
DBA_DEPENDENCIES is the right thing. Auditing is only for auditing lik ewho did what , why and when
0
 
LVL 5

Author Comment

by:adrian_ang
ID: 19608938
Moderator, please delete my question and refund the points. We used a test environment and using test plans automated the check what privileges are not needed. We also used auditing to determine which prvileges are used, there is privilege usage auditing which logs which privileges are used while a  statement is executed.
0

Featured Post

PeopleSoft Has Never Been Easier

PeopleSoft Adoption Made Smooth & Simple!

On-The-Job Training Is made Intuitive & Easy With WalkMe's On-Screen Guidance Tool.  Claim Your Free WalkMe Account Now

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Have you ever had to make fundamental changes to a table in Oracle, but haven't been able to get any downtime?  I'm talking things like: * Dropping columns * Shrinking allocated space * Removing chained blocks and restoring the PCTFREE * Re-or…
From implementing a password expiration date, to datatype conversions and file export options, these are some useful settings I've found in Jasper Server.
This video shows, step by step, how to configure Oracle Heterogeneous Services via the Generic Gateway Agent in order to make a connection from an Oracle session and access a remote SQL Server database table.
Via a live example, show how to restore a database from backup after a simulated disk failure using RMAN.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question