Professional Documents
Culture Documents
Exp - 1 (Database Security)
Exp - 1 (Database Security)
Exp - 1 (Database Security)
Exp No:
1 Database Access Control
(Date)
Objective:
Introduction:
A Database Administrator (DBA) is a professional responsible for managing, organizing,
and maintaining databases within an organization. Their primary role involves ensuring
that data is securely stored, easily accessible, and efficiently managed. DBAs handle tasks
such as database design, implementation, performance tuning, security, backups, and
troubleshooting issues that may arise within the database system. They work with
database management systems (DBMS) like MySQL, Oracle, SQL Server, PostgreSQL, and
others, ensuring data integrity, security, and optimal performance while adhering to best
practices and industry standards. DBAs play a critical role in enabling businesses to
effectively store, retrieve, and utilize their data for various applications and operations.
You mentioned that this role should be able to connect to the database, select, insert,
update, and delete data in the IST469 tablespace. You can grant these privileges as
follows:
To set the default tablespace for the user, you can use the DEFAULT TABLESPACE
clause:
To set the user's quota on the IST469 tablespace to 5 MB, you can use the QUOTA clause:
20MEI10022 - Aditya Srivastav
To make the user a member of the IST469User role, you can use the GRANT statement:
Replace the_username with the actual username you want to assign to this role. Commit
your changes:
g. This role can create, alter, and drop tables, sequences and views for the IST469
Schema.
h. This role can select, insert, update, and delete data in the IST469
tablespace.
Make sure you are connected to your database as a user with administrative privileges, such
as a DBA account.
b. Grant the privilege to create, alter, and drop tables, sequences, and views in
the IST469 schema:
GRANT CREATE TABLE, CREATE SEQUENCE, CREATE VIEW, ALTER ANY TABLE, ALTER
ANY SEQUENCE, ALTER ANY VIEW, DROP ANY
d. Commit
i.Grant system DBA functions, including the ability to start and shutdown the database:
j. Grant the privilege to use Oracle Enterprise Manager (OEM):
To ensure that the user has no other privileges, you can explicitly revoke any unnecessary
privileges. To prevent the user from creating and maintaining other database objects and
from adding, reading, or changing data in tables, you can revoke commonly granted
privileges:
Conclusion:
functions, use OEM, and revoked other privileges to restrict the ability to create and maintain
database objects and perform data manipulation operations.