Oracle FAQ Your Portal to the Oracle Knowledge Grid

Home -> Community -> Usenet -> c.d.o.server -> Re: Insufficient Privileges in Procedure

Re: Insufficient Privileges in Procedure

From: Rocco <>
Date: Wed, 26 May 2004 11:11:37 -0400
Message-ID: <>

Thanks for the info. My only problem is that the database owner (DBA), who I assume has all privileges, is the creator/owner of the procedures in question. I can create users directly through the command line and through the procedure as the DBA but not as anyone else. Sorry to be so ignorant but this database was given to me even though I am not reallly a DBA. I have tried to use various forms of documentation but find the Oracle docs to be just plain bad and online resources to be either incomplete or unreliable..


On Tue, 25 May 2004 22:42:52 -0500, "Burt Peltier" <> wrote:

>There might be some "gotchas" in this proposed solution, so obviously, test,
>test and test.
>If you don't want the "security administrator role" (or the account that has
>this role granted to it) to be a member of the roles being granted, then you
>shouldn't use the AUTHID .
>The Owner of the Procedure would need to be a member of the roles (has been
>granted the roles with the admin option of course). Also the roles will have
>to all be granted directly to the owner of the procedure and not thru some
>other role.
>Note: I see you might need to read up more on this, because in your example,
>you are creating users. This requires the "create user" priv to be granted
>directly to the owner of the Procedure. Granting a role that has this
>privilege to the owner of the Procedure will NOT work.
>If you are on at least Version 8i, I would look up "execute immediate"
>instead of the "old way" of doing dynamic Sql (DBMS_SQL).
>Also, you will need an account that has the "security administrator role"
>granted to it (which then gives an account the privileges to execute the

(my above email address will be active for 1 week or you can answer me here. thanks.) Received on Wed May 26 2004 - 10:11:37 CDT

Original text of this message