Re: Security for group of users ???

Wolfgang,

In article <35bc7609.14804447_at_news.muc>,   Wolfgang.Rothmayer_at_bmw.de wrote:
> Hi there,
>
> we are seeking for a security mechanism to hinder the use of sqlplus
> for a group of users. No user of this group should be able to execute
> a SQL command if logged in into a database.
It is *impossible* to hinder use of any given app (call it sqlplus or call it your_app) with mechanisms *inside* the database.
>
> On the other hand, we have a NT app where this user group gets logged
> in into this database. Login is done via a group user as the
> administration effort to handle each user differently is to high.
I do not quite understand what you mean, so i will supply some background knowledge:
Oracle has the role concept to aggregate several object privileges and system privileges.
Define a role properly and grant the role to your users. Then every single user can connect (via your app *and* via sqlplus) and issue sql statments directly or via your app.
>
> Our aim is to minimize the adminstrative effort to change the password
> for the "group user".

Administration can then focus on the role, not on the users.
>
> Any input is greatly appreciated.
>
> Wolfgang.
>

--
Robert Graf-Waczenski e-mail: rtgraf_at_sintec.de Visit our web site! http://www.sintec.de

-----== Posted via Deja News, The Leader in Internet Discussion ==----- http://www.dejanews.com/rg_mkgrp.xp Create Your Own Free Member Forum Received on Tue Jul 28 1998 - 06:02:10 CDT