Re: VPD

From: Sanjay Mishra <"Sanjay>
Date: Thu, 14 Jun 2018 20:25:23 +0000 (UTC)
Message-ID: <213188653.5145231.1529007923523_at_mail.yahoo.com>

Vishnu
These restrictions are on non-prod environment where all of these ID are either Developer/Testers/manager etc. So a lot of data are masked but some of these are critical for testing and so the company decided to even put an additional measure in place to restrict the access on some rows. Got some idea from your input but can you provide any sample or link to check for some details on first part which is not linked to the policy as I can handle policy part TxSanjay

On Thursday, June 14, 2018, 12:47:17 PM EDT, Vishnu <vishnukumarmp_at_gmail.com> wrote:

Hi Sanjay,
In your case, your mentioned "500 users in the database" , is it all database user/schema accounts or application users that use a common app schema to connect to the database. You can do something like this - use database log on trigger / set db context and use client identifier (if its a app user) or session user (if its a db user) to identify logged in user details and apply custom written functions that can dynamically add where clause to the queries based on conditions that can filter and provide appropriate results. Finally you can add policy to the object where you want to apply vpd. so whenever that object gets requested, policy will be applied to restrict the results. Thanks,Vishnu
On Thu, Jun 14, 2018 at 11:54 AM Sanjay Mishra <dmarc-noreply_at_freelists.org> wrote:

YEs VPD look like is the solution and so looking for some high level approach from the experts who has worked with VPD. TxSanjay

On Thursday, June 14, 2018, 9:31:33 AM EDT, Jko <jacques.kostic_at_gmail.com> wrote:

Hi
Vpd will solve your problem easily.
Cheers Jki

Le 14 juin 2018 15:26:26 "Sanjay Mishra" <dmarc-noreply_at_freelists.org> (Redacted sender "smishra_97" for DMARC) a écrit :

Hi Everyone
Need some view on best approach to do data masking. I had around 8-10 tables with 2 columnn that has secured financial data. Column name are same in all tables where data need to masked. The requirement is that there are 500 users in the database and data need to be restricted using these 2 columns for these 10 tables1. One set of the user will have access to all Data2. Another set can use column 1 value condition3. Another set of the user who can see the data based on Column 2 value condition Oracle 12.1 and has Enterprise license for all Oracle options. ANy approach that can help in creating the plan will be helpful TIA Sanjay

--
http://www.freelists.org/webpage/oracle-l

Received on Thu Jun 14 2018 - 22:25:23 CEST

This message: [ Message body ]
Next message: Juan Carlos Reyes Pacheco: "Please, Which is the trick for solving Conflicts in applying bundle and javavm patchs ? :) 27849051 (WINDOWS DB BUNDLE PATCH 12.1.0.2.180531)"
Previous message: Dominic Brooks: "Re: Explain Plan and Security"
In reply to: Vishnu: "Re: VPD"
Next in thread: Vishnu: "Re: VPD"
Reply: Vishnu: "Re: VPD"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message