How do I create a role in VigilEnt Database Security Manager for Oracle?
VigilEnt Database Security Manager for Oracle 3.3 SR3
VigilEnt Database Security Manager for Oracle
The biggest limitation with a database role is that it must exist on a single database instance and all privileges in the role must apply to the database. VigilEnt Database Security Manager for Oracle lets you bundle multiple roles from multiple database instances into a single application on the VigilEnt Database Security Manager for Oracle repository. This means that all the administrator has to do is grant a single application to a user. Once the application is granted, the user can use a software package that requires multiple privileges on multiple servers.
VigilEnt Database Security Manager for Oracle lets you create roles for both Oracle and Sybase databases.
To create a new role, follow these steps:
- Click the Create Role icon or select Create from the Roles menu. The Role dialog box appears.
- Enter a role name that conforms to your naming standards in the Role field.
- Select the servers where you want to create the role from the Servers list.
- Select the radio button next to the type of authentication you want to use from the Authentication box. (See Notes)
- Click Create. A Status Report opens and tells you the successful and failed operations.
- Click OK. Your role is created.
You must enter and verify a password if you choose 'Password' as your type of authentication.
VigilEnt Database Security Manager for Oracle does not let you grant a role directly to a user. You must grant the role to an application, and then grant the application to the user. If you want to grant a role directly to a user, you must use another tool such as SQL*Plus or SQL Worksheet.
Once you create a role, you must grant privileges to it. Granting privileges to an Oracle role is slightly different then granting privileges to a Sybase role. For information on how to create an Oracle or Sybase role refer to the following knowledge base article.