Managing database-level authorities and privileges
Database-level authorities can be assigned directly to users or groups. The only exception is the SECADM authority, which can be granted only to users.
The following table lists the database-level authorities and their privileges:
|
Database authority |
Description |
|---|---|
|
|
It is the highest database authority and has access to all the data. If this authority is revoked, the implicit database authorities remain in place. Therefore, these must be revoked explicitly. They can be granted to users and groups, but not to the public. |
|
|
Security administrator. It has the ability to manage LBAC and to transfer ownership of objects, but has no access to data. It is a special user created to implement advanced security at database level. It can only be granted to users. |
|
|
Allows users to connect to database. Can be granted to users and groups. This is a privilege. |
|
|
It allows users to create packages. This is a privilege. |
|
|
