08-21-2015
You need to look at table
DBA_ROLE_PRIVS to see which accounts have what roles granted, however you have to then know what those roles grant, so you will have to review:-
- DBA_ROLE_PRIVS again for nested roles
- DBA_TAB_PRIVS for data access rights
- DBA_SYS_PRIVS for system privileges
You may findthat you loop through DBA_ROLE_PRIVS a few times. Also remember that there is the
PUBLIC role to consider.
Robin
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
In a Windows 2000 active directory environment (using Unix DNS), is it possible to create entries in Unix Bind to point Microsoft Workstations to specific Microsoft servers, depending on their Microsoft FSMO roles (i.e. Domain Naming Master, PDC Emulator, RID, Infrastructure Master)? In other... (0 Replies)
Discussion started by: breffkin
0 Replies
2. UNIX for Advanced & Expert Users
Hello Everyone,
if we log on to unix server how do we find that what permissions/roles and priveleges are assigned to any particular user.
Here i am not talking about the file permissions.
Thanks (1 Reply)
Discussion started by: hardesh
1 Replies
3. UNIX for Dummies Questions & Answers
Hey guys, I have an up and coming interview (tomorrow) and during the discussion via phone I was asked if I was familiar with "monitoring jobs in Linux/UNIX using the command line." Now, I currently work in the MS world and I am underneath the NOC hear at my company so I have had no reason to do... (2 Replies)
Discussion started by: Steve M
2 Replies
4. Solaris
Dear forum,
I have Oracle 9i/10g2R and sun solaris server I don't realy sure wheter it's sun solaris 8, 9 or 10.
Here is the background:
OS : SunOS 8/9/10
Oracle engine : 9i / 10g2R
--> located in server SunOS
Remote Komputer : Windows XP, I use SSH to remote to the server
User : DBA1,... (0 Replies)
Discussion started by: Aditya Purwanto
0 Replies
5. UNIX and Linux Applications
what are the roles and responsibilites in unix shell scripting as a production support consultant in oracle database (2 Replies)
Discussion started by: alokjyotibal
2 Replies
6. Red Hat
Hi All,
At present i have good knowledge and experience in unix/ linux shell scripting. I believe unix shell scripting with administration will be a hot skill set, so I would like to become a Unix/Linux system admin. What are the key skills i have to learn to become a successful administrator.... (1 Reply)
Discussion started by: apsprabhu
1 Replies
7. Solaris
I have an issue with integration between Microsoft LDAP users and RBAC roles defined in a Solaris box.
to explain more , i managed to integrate Microsoft Active Directory user loggings to Solaris boxes. I've done it to centralize user repo. and instead of creating admin accounts on more than... (9 Replies)
Discussion started by: mduweik
9 Replies
8. AIX
Hi All,
i would like to know if it's possible to create a new custom role on HMC to manage only one LPAR and few activity on it (START,STOP,CONSOLE).
It's possible create this custom role?
If yes where i can read something about?
Thanks in advance.
Bye.
Zio (1 Reply)
Discussion started by: Zio Bill
1 Replies
9. Solaris
Oracle Solaris 10 9/10 s10s_u9wos_14a SPARC
Hi, just starting with RBAC. I have managed to create a test user with assigned roles:
Basic Actions
Basic Solaris UserI also didroleadd -d /export/home/userrole -m userrolebut when I didrolemod -P "Basic Actions" userrole
rolemod -P "Basic... (1 Reply)
Discussion started by: rino19ny
1 Replies
roles(1) User Commands roles(1)
NAME
roles - print roles granted to a user
SYNOPSIS
roles [ user ...]
DESCRIPTION
The command roles prints on standard output the roles that you or the optionally-specified user have been granted. Roles are special
accounts that correspond to a functional responsibility rather than to an actual person (referred to as a normal user).
Each user may have zero or more roles. Roles have most of the attributes of normal users and are identified like normal users in passwd(4)
and shadow(4). Each role must have an entry in the user_attr(4) file that identifies it as a role. Roles can have their own authorizations
and profiles. See auths(1) and profiles(1).
Roles are not allowed to log into a system as a primary user. Instead, a user must log in as him-- or herself and assume the role. The
actions of a role are attributable to the normal user. When auditing is enabled, the audited events of the role contain the audit ID of the
original user who assumed the role.
A role may not assume itself or any other role. Roles are not hierarchical. However, rights profiles (see prof_attr(4)) are hierarchical
and can be used to achieve the same effect as hierarchical roles.
Roles must have valid passwords and one of the shells that interprets profiles: either pfcsh, pfksh, or pfsh. See pfexec(1).
Role assumption may be performed using su(1M), rlogin(1), or some other service that supports the PAM_RUSER variable. Successful assumption
requires knowledge of the role's password and membership in the role. Role assignments are specified in user_attr(4).
EXAMPLES
Example 1: Sample output
The output of the roles command has the following form:
example% roles tester01 tester02
tester01 : admin
tester02 : secadmin, root
example%
EXIT STATUS
The following exit values are returned:
0 Successful completion.
1 An error occurred.
FILES
/etc/user_attr
/etc/security/auth_attr
/etc/security/prof_attr
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWcsu |
+-----------------------------+-----------------------------+
SEE ALSO
auths(1), pfexec(1), profiles(1), rlogin(1), su(1M), getauusernam(3BSM), auth_attr(4), passwd(4), prof_attr(4), shadow(4), user_attr(4),
attributes(5)
SunOS 5.10 14 Feb 2001 roles(1)