Grant details required for user and schema

Hi
I have Oracle version - 10.2.0.4.0
We have Schema A (Lot of objects exist) and User B (No objects exist - acts as application user to access objects in other schema).
I have listed below doubts.
1) I want to know the method to find the list of users have access to objects in Schema A and privileges granted for the objects in Schema A
2) I want to know the method to find the list of grants provided to the schema objects to the user B

user1368801 wrote:
Thanks ajallen.
It really helped me.
one more question. I think DBA_TAB_PRIVS gives details for tables only right.
What about other objects like procedures, views etc. Go back to the Reference Manual and re-read the description of DBA_TAB_PRIVS. Re-read the specific description of TABLE_NAME.
>
Actually I am exporting 3 schemas (A,B,C) from production and importing them to test environment (A1, B1,C1) using fromuser and touser option.
Now I have to properly remap all the privileges, grants, synonyms etc.
There are so many objects and I am wondering how to remap properly.
It may be simple, as a newbie, your direction will be more helpful

Similar Messages

  • Can i drop the connection user and schema used for Accociate repository

    Hi
    I have created a connection , user and schema and Associated repository to it then migrated a database from diffrent product. to oracle
    using the above mentioned connection, user ,schema and asscociated repositroy.
    11g XE.
    can i delete it after the migration.
    yours sincerely.

    Yes you can !. Permission to drop those artifacts is granted except the target schema where the converted objects are. The migration repository user/connection can be dropped.

  • WebService Publication asks for user and password

    Hello,
    I have a WebService with No Authentication.
    The problem is that when I try to open the WSDL in the WebBrowser SAP asks for User and Password of the WebAS.
    I have tried to Consume the WS through a 3rd application and when I try to consume it user and password is needed and the WS has no authentication.
    I have read this topic:
    Roles for SOAMANAGER
    And the basis guy told me he has already done that configuration so If you know how to solve this problem I will be very grateful if you post it.
    Thanx in advanced.

    Hi,
    SAP Web Application Server requires a username and password. This makes sense. Even if your web service is has No Authentication, you still have to access the server.
    How to bypass this.....
    Try reading the link given above.

  • I am trying to connect to tyne internet and computer requires my user and password in which i do not remember

    i am trying to connect to tyne internet and computer requires my user and password in which i do not remember

    I'm guessing that you are referring to Tyne Internet in the UK? Are you forgetting your Tyne username and passcode, or one for the computer? To recover the Tyne, you will need to contact them. If it is your Mac, from what little I understand about Mac computers, do you have it in your Keychain?

  • Could we have same name's for User and Groups in Active directory

    When iam trying to create a user name " Logistics " under a OU, I am getting a error
    "The pre-windows 2000 logon name you have chosen is already in use in this domain. Choose  aother pre-windows logon name, and then try again"
    We already have a group by the name " Logistics "
    Could we have same name's for User and Groups in Active directory?
    Thanks in Advance

    sAMaccountName attribute is unique. So, the short answer is you cannot.
    This posting is provided AS IS with no warranties or guarantees , and confers no rights.
    Ahmed MALEK
    My Website Link
    My Linkedin Profile
    My MVP Profile

  • HT2731 is iTunes Store account really required for downloading and installing free Apps?

    is iTunes Store account really required for downloading and installing free Apps?

    Yes. The apps you buy are registered in your account, so you can download them in all your devices

  • Move users and schemas from one instance to another

    Hi, I'm starting out in a DBA position.
    My task at the moment is to move users and schemas from one instance to another.
    We're using 9.2.0.7.
    I have concluded that the following steps are necessary to move users and schemas from one instance to another :
    1. Create the needed tablespaces.
    2. Create the users that exist in the source instance
    3. Use exp to do a full export
    4. Use imp to re-create the schemas from the output file created by exp in step 3
    Am I missing anything ?
    Thanks,
    Gabriel

    3. Use exp to do a full exportInstead of doing a FULL export just export the users you want to move and imp that in other database using FROMUSER & TOUSER parameter.
    Daljit Singh

  • Different PPV account required for GR and IR

    Hi Experts,
    I have an issue about the requirement that different PPV account required for GR and IR for the correcording Valuation class.
    Eg: when do the GR,the PPV account should be 3528***, but when do the IR, the PPV account should be 3522***.
    Any body can tell me how to fulfil this requirement? Thanks in advance!
    Regards
    Jimmy

    hi
    please clarify PPV
    gl accounts are maintained in OBYC ,better to aksur Fi person

  • Issuing certificates for user and clients from different forest/domain

    Hello,
    at first I would like to say that I have made some researches on this forum and in the Internet overall.
    I have AD Forest with ~10 sites all over the Europe, DFL and FFL is 2008 R2, right now we are migrating site by site from old domain (samba) to AD.
    Last time I have deployed PKI based on offline root CA and 2 Enterprise acting as 2-node Failover Cluster.
    Everything in my AD Forest is OK, I mean, autoenrollment works perfect for users and computers from my forest, 
    now I need to deploy a certificate (for test) to one web-based pbx server in samba domain, there are no trusts etc. Samba domain as well as AD Forest are working on the same network, with routeable subnets in each site, so there is no problem with connectivity,
    What are possible way to achieve this goal? I mean to issue cert to client from different forest, so that this client is able to validate it, validate certificate chain and renew it when needed?
    I have Installed and Configured CE Web Service and CE Policy Web Service. Now I have configured Enrollment Policies on my virtual machine (being part of different domain), I selected username/password authentication, I am able to request certificate, I can
    see all templates which I should see, but when I try to enroll I got an error:
    (translated from my language)A certification chain processed correctly, but one of the CA certificates is not trusted by the policy provider
    My root CA cert is added to trusted publishers for computer and user node as well.
    What could be wrong? If you have any ideas or questions, please share or ask. 
    Thank you in advance.

    Everything is clear, I have Certificate Enrollment Web Services installed and configured,
    problem is what i get from certutil - TCAInfo
    ================================================================
    CA Name: COMPANY-HATADCS002-ISSUING-CA
    Machine Name: COMPANYClustGenSvc
    DS Location: CN=COMPANY-HATADCS002-ISSUING-CA,CN=Enrollment Services,CN=Public Key Services,CN=Services,CN=Configuration,DC=COMPANY,DC=COM
    Cert DN: CN=COMPANY-HATADCS002-ISSUING-CA, DC=COMPANY, DC=COM
    CA Registry Validity Period: 2 Years -- 2016-03-04 12:20
     NotAfter: 2019-02-14 12:44
    Connecting to COMPANYClustGenSvc\COMPANY-HATADCS002-ISSUING-CA ...
    Server "COMPANY-HATADCS002-ISSUING-CA" ICertRequest2 interface is alive (1078ms)
      Enterprise Subordinate CA
    dwFlags = CA_VERIFY_FLAGS_NT_AUTH (0x10)
    dwFlags = CA_VERIFY_FLAGS_CONSOLE_TRACE (0x20000000)
    dwFlags = CA_VERIFY_FLAGS_DUMP_CHAIN (0x40000000)
    ChainFlags = CERT_CHAIN_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT (0x40000000)
    HCCE_LOCAL_MACHINE
    CERT_CHAIN_POLICY_NT_AUTH
    -------- CERT_CHAIN_CONTEXT --------
    ChainContext.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
    ChainContext.dwRevocationFreshnessTime: 18 Days, 4 Minutes, 1 Seconds
    SimpleChain.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
    SimpleChain.dwRevocationFreshnessTime: 18 Days, 4 Minutes, 1 Seconds
    CertContext[0][0]: dwInfoStatus=102 dwErrorStatus=0
      Issuer: CN=HATADCS001-COMPANY-ROOT-CA
      NotBefore: 2014-02-14 12:34
      NotAfter: 2019-02-14 12:44
      Subject: CN=COMPANY-HATADCS002-ISSUING-CA, DC=COMPANY, DC=COM
      Serial: 618f3506000000000002
      Template: SubCA
      9e1bea4ffa648e5fe3e9f8c4be3c604c49af04e9
      Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
      Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
        CRL 02:
        Issuer: CN=HATADCS001-COMPANY-ROOT-CA
        ThisUpdate: 2014-02-14 12:16
        NextUpdate: 2024-02-15 00:36
        d7bafb666702565cae940a389eaffef9c919f07a
      Issuance[0] = 1.2.3.4.1455.67.89.5 
    CertContext[0][1]: dwInfoStatus=10c dwErrorStatus=0
      Issuer: CN=HATADCS001-COMPANY-ROOT-CA
      NotBefore: 2014-02-14 11:55
      NotAfter: 2024-02-14 12:05
      Subject: CN=HATADCS001-COMPANY-ROOT-CA
      Serial: 18517ac8a4695aa74ec0c61b475426a8
      b19b85e0e145da17fc673dfe251b0e2a3aeb05e9
      Element.dwInfoStatus = CERT_TRUST_HAS_NAME_MATCH_ISSUER (0x4)
      Element.dwInfoStatus = CERT_TRUST_IS_SELF_SIGNED (0x8)
      Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
      Issuance[0] = 1.2.3.4.1455.67.89.5 
    Exclude leaf cert:
      5b309c67a8b47c50966088a4d701c8526072c9ac
    Full chain:
      413b91896ba541d252fc9801437dcfbb21d37d91
      Issuer: CN=HATADCS001-COMPANY-ROOT-CA
      NotBefore: 2014-02-14 12:34
      NotAfter: 2019-02-14 12:44
      Subject: CN=COMPANY-HATADCS002-ISSUING-CA, DC=COMPANY, DC=COM
      Serial: 618f3506000000000002
      Template: SubCA
      9e1bea4ffa648e5fe3e9f8c4be3c604c49af04e9
    A certification chain processed correctly, but one of the CA certificates is not trusted by the policy provider. 0x800b0112 (-2146762478 CERT_E_UNTRUSTEDCA)
    Supported Certificate Templates:
    Cert Type[0]: COMPANYOnlineResponder (COMPANY Online Responder) -- No Access!
    Cert Type[1]: COMPANYWebServer(SSL) (COMPANY WebServer (SSL))
    Cert Type[2]: COMPANYUser(Autoenrollment) (COMPANY User (Autoenrollment))
    Cert Type[3]: COMPANYKeyRecoveryAgents (COMPANY Key Recovery Agents)
    Cert Type[4]: COMPANYEnrollmentAgent(Computer) (COMPANY Enrollment Agent (Computer))
    Cert Type[5]: COMPANYEnrollmentAgent (COMPANY Enrollment Agent)
    Cert Type[6]: COMPANYComputer(Autoenrollment) (COMPANY Computer (Autoenrollment)) -- No Access!
    Validated Cert Types: 7
    ================================================================
    COMPANYClustGenSvc\COMPANY-HATADCS002-ISSUING-CA:
      Enterprise Subordinate CA
      A certification chain processed correctly, but one of the CA certificates is not trusted by the policy provider. 0x800b0112 (-2146762478 CERT_E_UNTRUSTEDCA)
      Online
    CertUtil: -TCAInfo command completed successfully.
    please put some light on it because it's driving me crazy :/
    Thanks in advance
    one remark: certutil -tcainfo performed on CA directly is 100% OK, no errors regarding 
    "A certification chain processed correctly, but one of the CA certificates is not trusted by the policy provider. 0x800b0112 (-2146762478 CERT_E_UNTRUSTEDCA)"

  • Grant to a specific user and deny for all other users

    I have 100 users. Out of 100 users, i have windows & sql authentication users. I have a view "SQL_CONFIG_V" and want to give access to "corp\abc" (windows authentication user) and "poc" (sql authentication user) and all
    system user id's(by default) like sys, information_schema etc. I want to deny all other users to see view defintion or alter this view "SQL_CONFIG_V" except the users that i specified here.

    You can deny access to those users to the database, or they are have the access but you do not want them to SELECT that specific view? Do the users members of db_owner role?
    GRANT SELECT on viewname TO freddie
    Best Regards,Uri Dimant SQL Server MVP,
    http://sqlblog.com/blogs/uri_dimant/
    MS SQL optimization: MS SQL Development and Optimization
    MS SQL Consulting:
    Large scale of database and data cleansing
    Remote DBA Services:
    Improves MS SQL Database Performance
    SQL Server Integration Services:
    Business Intelligence

  • What privileges or role is required for user to acces the explain plan?

    Hi mates,
    Can anyone pls tell me what privileges or roles(grants) are requred for a user to access the explain plan in oORACLE 8i 8174..
    I think the select any dictionary is not valid for explain plan accessibility in 8i.
    Cheers.

    I already had that... Just that a user (not a dba) requires access to the explain plan and I dont want to grant him a dba role.
    Are you aware of any other grant I can give to the user?

  • Why is a sender communication channel not required for IDOC and PROXY ?

    Hello,
    In case of IDOCs, metadata will be available in PI for the IDOCs used both at inbound and outbound.
    Why is a sender communication channel is not required in case of IDOC and PROXY outbound scenarios (i.e. IDOC to File or PROXY to file ..)  when a receiver channel is required for scenarios like file to IDOC or file to PROXY.
    Though this might be a regular question, I am not able to find a proper reason.
    Please let me know the reason for the above request.
    Thanks & Regards.

    You will create RFC destination in ECC , it will have details about PI system details, when ever you send IDoc, ECC will use Port and RFC destination to connect PI Integratiion engine to deliver data to PI.
    But when receiver side you will create RFC destination in PI with ECC details, but to call RFC destination and Port we need medium that was the reason we create IDoc communication channel.
    Even the same case for Proxy also, but HTTP deastination establish the conection between ECC and PI, but receiver side you have to create XI channel with PI integratioin engine adress to post data.
    Regards,
    Raj

  • Suggestions required for automating and customising signatures.

    Hi,
    We are looking for a solution where by we take control of signatures away from users and have them administered centrally from the server and use AD attributes to customise the signatures. We are currently trailing software Exclaimer! which gives a wealth of
    signature options, however we have hit a roadblock for which we need advice.
    The large majority of our users work in groups, each group works out of a 'Shared Mailbox' and they are all given Send As permission so that they can send email from that mailbox. As an example they all send from a mailbox with the address
    [email protected]
    We now want to add their signatures from the server when the emails go out and in the process customise the signature with their attributes e.g. full name, title, contact details, company etc.  The issue we have run into is the because they are sending
    from a Group Mailbox the Exclaimer software has no way of identifying which user is sending emails and therefore cannot attribute that persons particular information. I have spoken to Exclaimer and they advise the only way around this is by having users 'Send
    on behalf of' which we do not want to do.
    Can anyone recommend a solution either within Exchange Server (we are using 2010) or Windows Server (we are using 2008 R2) or third-party software which would allow us to achieve the desired outcome.
    Thanks.

    You can use this PowerShell script (http://gallery.technet.microsoft.com/office/6f7eee4b-1f42-499e-ae59-1aceb26100de) to setup custom signatures based on AD information.
    I am not sure how this would behave for using a shared mailbox as the script sets the default signature in Outlook, but doesn't technically prevent the user from changing the signature configuration.  I have had the script run at logon so that all users
    receive the signature template which auto-populates based on AD attributes.  It checks for a custom registry value that you can comment out so it runs every logon to overwrite any changes users may make to their signatures after logging in.
    Might be something worth testing at least for what you are looking to do.

  • Requirements for user authentication

    In my trials of configuring the software, it seems that the only option of providing user access authentication is via LDAP integration. This seems a heavy requirement for non-enterprise usage.
    I created a default directory service, but cannot enable access control without setting up distributed access, which seems to require LDAP. Installing LDAP has it's own set of prerequisites. Is all this really necessary? Am I misunderstanding the documentation?
    Thanks,
    Sean Wyatt

    Dear sean.wyatt,
    LDAP is not the only option for user-auth. There are key files and digest files. Or you have some reason to use only LDAP.

  • Restore single user and schema

    Hi,
    We have a MaxDB 7.5 server. I would like to be able to restore a single user and associated schema from the nightly backup.
    Does anyone know a way of doing this?
    Thanks,
    Andrew.

    Nope, there is no function for that.
    MaxDB does database backups and database restores.
    Seen from the point of view that the whole database is a defined statement of 'truth' it does not even make sense to do "schema"-recoveries.
    Anyhow, since very often different schemas are actually used to store different databases in them, there is of course an option for that.
    Recover the backup to a second instance.
    Export the schema you want.
    Import the schema to the target database.
    Export/Import can easily be done with the loadercli.
    And, before I forget - MaxDB 7.5 is pretty much gone. MaxDB 7.6 and 7.7 are available for free download for a while now. So if you don't need AWE you may want to give these current versions a try.
    regards,
    Lars

Maybe you are looking for

  • Dreamweaver files Revert to last save randomly, without input

    I'm using a fully up-to-date verison of Dreamweaver CC (13.2, at last check). Mac platform. Mostly simple stuff, one page emails. No CSS. My work process is to have the html file open, and copy and paste out of PDFs and Word docs (edits from the proo

  • Suggestion on Installation of ECC 6.0 IDES Version

    Hi, I am installing ECC 6.0 IDES in windows server 2003 with MSSQL Server 2005 as database. What should be the size I should allocate for the installation directory? Because when I have tried the same previously the files grow more than 10GB and sinc

  • PHP Live Preview

    I have my project folder set up correctly with the link to my localhost and everyting. When I click the live preview link, it does bring up the correct page. However, it does not stay linked. I then have to either click the preview button again and o

  • Help with Europe Use - Galaxy Note II

    I'm looking for specifics on how to unlock my Galaxy Note II to allow it to use prepaid SIMs for data and voice service in Europe.  I'm looking to do this maybe in Austria and the Czech Republic. Can I get some help from a knowledgeable Verizon rep,

  • Alphabetize Song Title Sort Order Under Genre on iPod

    Here is the general idea of what I am trying to do on the iPod.  When viewing songs on the iPod, if I select Genre from the main menu, I cannot find a way to display all the song titles in a selected genre in alphabetical order.  This can be done eas