RE: Oracle environment privileges
Date: Thu, 21 Jan 2016 15:07:24 -0500
Message-Id: <56A0F42C0200000B0000B121_at_groupwise2014.gcrta.org>
We have a job that creates a script to redo the privileges in non-production before cloning. After the clone, we run the script that was created before the clone.
>>> "Powell, Mark" <mark.powell2_at_hpe.com> 1/21/16 2:53 PM >>>
I would prefer the same ownership and roles exist in all environments so the same grants that are required in production have to be issued in development. This helps ensure all necessary grants are part of the production move.
In development the developers could have access to the owning users but I would require funning promotion from development to test through a limited number of people. Depending on the size of the shop and how many DBA's there are this may include someone from the development staff.
For QA and production all object changes should have to go through the DBA.
Just MHO.
-----Original Message-----
From: oracle-l-bounce_at_freelists.org [mailto:oracle-l-bounce_at_freelists.org] On Behalf Of MJ Mody
Sent: Wednesday, January 20, 2016 4:36 PM
To: oracle-l
Subject: Oracle environment privileges
Oracle SMEs
My team and I are faced with a unique challenge/opportunity on how to best implement privileges appropriate for DEV, TEST, QA and PROD environments (e.g. Dev = Sandbox, Test = somewhat tightened, QA/Prod = same, etc.).
Reaching out to see if a Best Practice reference or STIG is available for the same.
Thank you in advance.
Best
MJ
-- http://www.freelists.org/webpage/oracle-l i0zX+n{+i^ . -- http://www.freelists.org/webpage/oracle-lReceived on Thu Jan 21 2016 - 21:07:24 CET