|
Terms you'll need to understand:
Concepts you'll need to master:
Finally, we come to the last topic that will likely appear on your OCP exammanaging roles. Roles are Oracle's way of lumping together many privileges to make maintaining users and their privileges simpler and more centralized. This chapter provides an overview of roles and the part that they play in a healthy database. Oracle provides roles as a facility for easy and controlled management for privileges. Roles are named groups of related privileges granted either directly to users or to other roles. Roles share many characteristics:
Roles provide easier privilege management because many privileges can be grouped together to meet specific business rules. Roles can be granted directly with Oracle commands, or can be granted manually by the DBA. Not only is managing roles easier, management is more dynamic than could be accomplished with simply granting and revoking privileges directly to individual users. This is true because if a privilege that has been granted to a role changes, the change is automatically carried out to all the users who share that role. With roles, it is easier to turn privileges on and off temporarily. Finally, roles help to improve performance in the database. This is because there are fewer privileges to verify during statement execution, and by using roles there are fewer grants to check in the data dictionary whenever a user tries to accomplish something in the database. |
|