Oracle Security in CDBs and PDBs - OCP: Oracle Database 12c Administrator Certified Professional

Database Reference

In-Depth Information

determine who has access to what in an Oracle database and determine specific actions that

a user may take, so guard privileges well. We introduced system, role, table, view, procedure,

and type privileges. You learned that a common user can grant privileges commonly to com-

mon users or to common roles. You also learned that local privileges are granted locally and

apply only to the current PDB.

Then we discussed common and local roles. You learned that a role is a named group of

privileges and/or other roles that are created by administrators or other users. Roles simplify

the administration of privileges for individuals and groups of users. Roles are created, granted,

revoked, and dropped. Roles can be granted to users or to other roles. Common roles have the

same naming conventions as common users, and a common role may not have the same name

as a common user. Local roles are assigned locally and have local scope.

Finally, we explained and provided examples of how common users can access data in

specific PDBs. We demonstrated granting privileges to common users as one way to directly

access PDB objects. We introduced the concept of viewing container data as a common user

from the CDB using the CONTAINER_DATA clause.

Exam Essentials

Understand how to create common users in the Oracle Database 12 c multitenant

environment. Understand the naming conventions for common users. Understand

that a common user has the same identity across all containers in a CDB.

Understand how to create local users in the Oracle Database 12 c multitenant environment.

Know the naming convention for local users (and non-CDBs) and that local users with the

same name in different PDBs are independent of each other.

Know how to create common privileges. Understand the scope of commonly granted

privileges.

Demonstrate how to create local privileges. Understand the scope of locally granted

privileges.

Demonstrate how to create common roles. Understand that a role can be a group of

privileges or other roles and that commonly granted roles apply across the CDB.

Understand how to create local roles. Understand how to create local roles and that they

are local to only one PDB.

Understand how common users can access data in specific PDBs. Describe how to grant

privileges to common users so that they can view data related to PDBs, and also so that

they may create objects in PDBs.

Search WWH ::

Custom Search

Home