Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Oracle Database 12c Security Cookbook

You're reading from   Oracle Database 12c Security Cookbook Secure your Oracle Database 12c with this valuable Oracle support resource, featuring more than 100 solutions to the challenges of protecting your data

Arrow left icon
Product type Paperback
Published in Jun 2016
Publisher Packt
ISBN-13 9781782172123
Length 388 pages
Edition 1st Edition
Arrow right icon
Authors (3):
Arrow left icon
Zoran Pavlovic Zoran Pavlovic
Author Profile Icon Zoran Pavlovic
Zoran Pavlovic
Maja Veselica Maja Veselica
Author Profile Icon Maja Veselica
Maja Veselica
Maja Veselica & Zoran Pavlovic Maja Veselica & Zoran Pavlovic
Author Profile Icon Maja Veselica & Zoran Pavlovic
Maja Veselica & Zoran Pavlovic
Arrow right icon
View More author details
Toc

Table of Contents (13) Chapters Close

Preface 1. Basic Database Security FREE CHAPTER 2. Security Considerations in Multitenant Environment 3. PL/SQL Security 4. Virtual Private Database 5. Data Redaction 6. Transparent Sensitive Data Protection 7. Privilege Analysis 8. Transparent Data Encryption 9. Database Vault 10. Unified Auditing 11. Additional Topics 12. Appendix – Application Contexts

Using Database Vault to implement that administrators cannot view data


In this recipe, you will use multiple components (realms, command rules, and rule sets) to secure data in database from administrators.

How to do it...

  1. Connect to the pluggable database PDB1 as the user c##dbv_acctmgr:

    SQL> connect c##dbv_acctmgr@pdb1
    SQL> create user orders_dba identified by oracle1;
    SQL> create user orders_user identified by oracle2;
    
  2. Connect to the pluggable database PDB1 as a SYS user and execute the following statements:

    SQL> connect sys@pdb1 as sysdba
    SQL> grant dba to orders_dba;
    SQL> grant create session to orders_user;
    SQL> grant select on oe.orders to orders_user;
    SQL> grant update on oe.orders to orders_user;
    SQL> create role ord_usr_role;
    SQL> grant ord_usr_role to orders_user;
    
  3. Create a realm that protects all objects in OE schema and authorize user orders_dba as owner (for detailed explanation on creating realms, see recipe Preventing users from exercising system...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime