Creating and using Oracle Database Vault factors
Factors can also play an important role in enforcing security in Oracle Database Vault. A factor is a variable or an attribute, something similar to application context attributes. A factor can represent a user session, session identifier, module, IP address, and more. You can use factors for conditioning and restricting user authentication, and to build additional restrictions on data access based on their values and attributes.
Getting ready
In this recipe, we will replace the rule expressions Evaluate VW_AMERICA user
and Evaluate VW_EUROPE user
with the default Session_user
factor.
How to do it...
Oracle Database Vault provides build it factors that can be used alone or combined to enforce different types of evaluations:
Connect as the
ODVA_OWNER
user and select the session user from thedvf.f$session_user
factor function:SQL> conn odva_owner Enter password: SQL> select dvf.f$session_user from dual; F$SESSION_USER ------------------...