|
CDB2:
- select con_id , username,common from cdb_users
- order by 2;
- create user c##_user2 identified by x ;
- grant create session to c##_user2;
- DROP USER c##_user2;
- create role c##_role;
- select con_id,r.ROLE, r.COMMON
- from cdb_roles r order by 2;
-
- grant c##_role to c##_user;
-
- select * from cdb_role_privs p
- where p.GRANTEE='C##_USER';
- grant c##_role to c##_user container=all;
- select * from cdb_role_privs p
- where p.GRANTEE='C##_USER';
-
- revoke c##_role from c##_user;
-
- revoke c##_role from c##_user container=all;
-
-
- select * from role_sys_privs sp
- where sp.role='C##_ROLE';
-
- select * from role_tab_privs sp
- where sp.role='C##_ROLE';
-
-
- select * from role_role_privs rrp
- where rrp.role='C##_ROLE';
-
- grant select any table to c##_role container=all ;
复制代码
PDB2:
- create user local_user_pdb2 identified by x CONTAINER=current;
- grant create session to local_user_pdb2;
- create role local_role_PDB2;
- select * from cdb_roles;
- grant c##_role to local_user_pdb2;
- select * from cdb_role_privs rp
- where rp.grantee='LOCAL_USER_PDB2';
-
- -----
-
- grant local_role_pdb2 to c##_role;
-
- select * from role_role_privs rrp
- where rrp.role='C##_ROLE';
-
- select * from role_sys_privs sp
- where sp.role='C##_ROLE';
复制代码
- select * from cdb_container_data;
- CREATE USER c##jfv IDENTIFIED BY oracle_4U;
- GRANT CREATE SESSION, SET CONTAINER TO c##jfv CONTAINER=ALL;
- GRANT SELECT ON sys.v_$session TO c##jfv CONTAINER=ALL;
- select con_id , username , terminal
- from v$session where username <> 'DBSNMP';
- -----------------------
复制代码
在根容器上的dba与普通的dba的区别:
- alter user c##jfv set container_data=(cdb$root, pdb1_1, pdb2_2)
- for v_$session
- container=current;
复制代码
|
|