privilegeanalysis
This is an old revision of the document!
Table of Contents
Privilege Analysis
It is possible to use privilege analysis without having Database Vault configured.
Define Policy
Below shows an example of a Role and Context Policy
BEGIN
DBMS_PRIVILEGE_CAPTURE.CREATE_CAPTURE (
name => 'rolecontext_policy',
type => DBMS_PRIVILEGE_CAPTURE.g_role_and_context,
roles => role_name_list('DBA', 'EXP_FULL_DATABASE'
condition => 'SYS_CONTEXT(''USERENV'', ''SESSION_USER'') = ''SYSTEM''');
END;
Other types available are …
- g_database
- g_role
- g_context
Use the view DBA_PRIV_CAPTURES to view details on existing privilege capture policies.
Enable Policy
BEGIN
DBMS_PRIVILEGE_CAPTURE.enable_capture('rolecontext_policy');
END;
Generate Results
BEGIN
DBMS_PRIVILEGE_CAPTURE.generate_result('rolecontext_policy');
END;
privilegeanalysis.1437654814.txt.gz · Last modified: 2025/03/08 22:23 (external edit)