Permissions required for an user to create a View in Oracle 10.2.0.1.0

Similar Messages

• Which rights are required for a user to create a new database instance

  Hi,
  Which user can create a database instance? Is it Admin or any user? or Is it must to have admin rights on the <oracle_home> folder in order to create a new database instance?
  Please let me know what rights the user should have for creating a new database instance.
  Regards,
  venkat

  If I login to machine as a Guest user or I am not a owner of Oracle software then in the both cases I couldn't able to create a new database instance. Am I right?
  Please suggest me.
  Regards,
  Venkat

• Privileges require for a user to create CONTEXT indexes

  Hi all,
     RDBMS: 11.2.0.3
     SO.......: OEL 6.3
     What are the necessary privileges that have to be granted to a user to be able to create CONTEXT Indexes, for example. I have granted the CTXAPP to my user, but when i tryied to create the CONTEXT Index with the command bellow, i got an "insufficient privilege" error message.
     CREATE INDEX USR_DOCS.IDX_CTX_TAB_DOCUMENTOS_01 ON USR_DOCS.TAB_DOCUMENTOS(DOCUMENTO) INDEXTYPE IS CTXSYS.CONTEXT PARAMETERS ('SYNC (ON COMMIT)');

  It depends on whether the user is trying to create the index on his own table in his own schema or on somebody else's table in somebody else's schema.  The following demonstrates minimal privileges (quota could be smaller) for user usr_docs to create the index on his own table in his own schema and for my_user to create the index on usr_docs table in usr_docs schema.
  SCOTT@orcl> -- version:
  SCOTT@orcl> SELECT banner FROM v$version
    2  /
  BANNER
  Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 - 64bit Production
  PL/SQL Release 11.2.0.1.0 - Production
  CORE    11.2.0.1.0    Production
  TNS for 64-bit Windows: Version 11.2.0.1.0 - Production
  NLSRTL Version 11.2.0.1.0 - Production
  5 rows selected.
  SCOTT@orcl> -- usr_docs privileges:
  SCOTT@orcl> CREATE USER usr_docs IDENTIFIED BY usr_docs
    2  /
  User created.
  SCOTT@orcl> ALTER USER usr_docs QUOTA UNLIMITED ON users
    2  /
  User altered.
  SCOTT@orcl> GRANT CREATE SESSION, CREATE TABLE TO usr_docs
    2  /
  Grant succeeded.
  SCOTT@orcl> -- my_user privileges:
  SCOTT@orcl> CREATE USER my_user IDENTIFIED BY my_user
    2  /
  User created.
  SCOTT@orcl> GRANT CREATE SESSION, CREATE ANY INDEX TO my_user
    2  /
  Grant succeeded.
  SCOTT@orcl> -- user_docs:
  SCOTT@orcl> CONNECT usr_docs/usr_docs
  Connected.
  USR_DOCS@orcl> CREATE TABLE tab_documentos (documento  CLOB)
    2  /
  Table created.
  USR_DOCS@orcl> INSERT ALL
    2  INTO tab_documentos VALUES ('test data')
    3  INTO tab_documentos VALUES ('other stuff')
    4  SELECT * FROM DUAL
    5  /
  2 rows created.
  USR_DOCS@orcl> CREATE INDEX USR_DOCS.IDX_CTX_TAB_DOCUMENTOS_01
    2  ON USR_DOCS.TAB_DOCUMENTOS(DOCUMENTO)
    3  INDEXTYPE IS CTXSYS.CONTEXT
    4  PARAMETERS ('SYNC (ON COMMIT)')
    5  /
  Index created.
  USR_DOCS@orcl> DROP INDEX usr_docs.idx_ctx_tab_documentos_01
    2  /
  Index dropped.
  USR_DOCS@orcl> -- my_user:
  USR_DOCS@orcl> CONNECT my_user/my_user
  Connected.
  MY_USER@orcl> CREATE INDEX USR_DOCS.IDX_CTX_TAB_DOCUMENTOS_01
    2  ON USR_DOCS.TAB_DOCUMENTOS(DOCUMENTO)
    3  INDEXTYPE IS CTXSYS.CONTEXT
    4  PARAMETERS ('SYNC (ON COMMIT)')
    5  /
  Index created.

• Hi All, We are in to Release 11.5.10.2.There is a specific requirement to Prevent users from creating Manual Sales Orders in oracle and yet users should be able to book the Sales Orders Imported from CRM system into Orcale.Please advise.

  Hi All, We are in to Release 11.5.10.2.There is a specific requirement to Prevent users from creating Manual Sales Orders in Oracle and  yet users should be able to book the Sales Orders Imported from CRM system into Orcale.Please advise.

  Thanks for your advise.
  However, I missed to mention that we have two set of users  One is for Finished Goods and another for Spares.
  Only Spares users need to be prevented from creating Direct/Manual Sales Orders in Oracle.
  As you suggested, if this will be done at Form level, that may Disallow FG users also to create Manula Sales Orders which should not be the case.
  Further, I tried to test one scenario through Processing Constraints but it did not work.
  Application
  OM
  Validation Type
  Entity
  Temp
  Short Name
  TBL
  Validation Semantics
  Created By
  Equal To
  User(Myself)
  Processing Cosntraint
  Application
  OM
  Entity
  Order Header
  Constraint
  Operation
  User Action
  Create
  Not Allowed
  Conditions
  Group
  Scope
  Validation Entity
  Record Set
  Validation Template
  101
  Any
  Order Header
  Order
  Above Created
  Please advise.

• Failed to update permissions used for end-user recovery on . Permissions update failed for the following reason: (ID 3123)

  I patched 2012 to the SP1 level and now I'm getting these warnings on many servers.
  It seems to be considering these items as removable media?
  DPM 2012, SP1, version 4.1.3313.0
  Failed to update permissions used for end-user recovery on skutter.pmuk.net. Permissions update failed for the following reason: (ID 3123)
  Affected area: skutter.pmuk.net
  Occurred since: 11/01/2013 09:04:43
  Description: Failed to update permissions used for end-user recovery on skutter.pmuk.net. Permissions update failed for the following reason: (ID 3123)
   DPM is unable to enumerate contents in 2aad3f75a7e54a0f91b640d7f158f00a , 5702fef3756e4ca8af0554013951f32d , 78f9e6070fbd43aeb328700a88a3c926 , aquaria.pmuk.net_MTATempStore$ , ariel.pmuk.net_MTATempStore$ , atlantis.pmuk.net_downloads , atlantis.pmuk.net_MTATempStore$
  , atlantis.pmuk.net_print$ , capricorn.pmuk.net_MTATempStore$ , CCM.pmuk.net_IvrDirectory , CCM.pmuk.net_MTATempStore$ , CHIRON.pmuk.net_MTATempStore$ , cpeserv-i03.pmuk.net_IMAGING , defiant.pmuk.net_idsc , defiant.pmuk.net_MTATempStore$ ,firebird.pmuk.net_Accts_serve
  , firebird.pmuk.net_case , firebird.pmuk.net_Control ,firebird.pmuk.net_Fuel Cell , firebird.pmuk.net_HADCAD , firebird.pmuk.net_haddesign , firebird.pmuk.net_hadendurancelab , firebird.pmuk.net_HADEngCad , firebird.pmuk.net_HADPCLGainspeed ,firebird.pmuk.net_HADPCLProjects
  ,firebird.pmuk.net_HADPCLQuality  , firebird.pmuk.net_HADPCLStandards , firebird.pmuk.net_hrXerox , firebird.pmuk.net_hs , firebird.pmuk.net_ITXerox , firebird.pmuk.net_JunHigashimura , firebird.pmuk.net_MTATempStore$ ,firebird.pmuk.net_office  ,firebird.pmuk.net_OMPM
  , firebird.pmuk.net_Outplacement ,firebird.pmuk.net_personal , firebird.pmuk.net_PJSESCANNER  ,firebird.pmuk.net_pmuk ,firebird.pmuk.net_pwa ,firebird.pmuk.net_pwa2 , firebird.pmuk.net_scanfret ,firebird.pmuk.net_Siebel8  ,firebird.pmuk.net_Spares 
  ,firebird.pmuk.net_test   ,firebird.pmuk.net_TVDC ,firebird.pmuk.net_xeroxcpe$  ,firebird.pmuk.net_xeroxrd$ , HALLEY.pmuk.net_MTATempStore$ ,legion.pmuk.net_dfs ,legion.pmuk.net_MTATempStore$ , legion.pmuk.net_NETLOGON  ,legion.pmuk.net_SYSVOL
  , nemesis.pmuk.net_KEvin  ,nemesis.pmuk.net_MTATempStore$ , PLEIDES.pmuk.net_Archive , PLEIDES.pmuk.net_DGHOME , PLEIDES.pmuk.net_MTATempStore$  ,PLEIDES.pmuk.net_print$ , roosevelt.pmuk.net_ARCserve$ ,roosevelt.pmuk.net_CHEYALERT$ , roosevelt.pmuk.net_HADQCEOLP
  ,roosevelt.pmuk.net_home3 , roosevelt.pmuk.net_MTATempStore$ ,roosevelt.pmuk.net_smssource , roosevelt.pmuk.net_WindowsEasyTransfer ,roosevelt.pmuk.net_XeroxScan , sagittarius.pmuk.net_MTATempStore$ ,sagittarius.pmuk.net_print$ , sakura.pmuk.net_MTATempStore$
  ,scorpia.pmuk.net_MTATempStore$ ,scorpion.pmuk.net_chandleram, scorpion.pmuk.net_Control  ,scorpion.pmuk.net_CPE ,scorpion.pmuk.net_Digital  ,scorpion.pmuk.net_Electrical , scorpion.pmuk.net_MTATempStore$ , scorpion.pmuk.net_NASUtils ,scorpion.pmuk.net_Personal
  ,scorpion.pmuk.net_QA ,scorpion.pmuk.net_QC , scorpion.pmuk.net_Technical , silverberg.pmuk.net_dfs  ,silverberg.pmuk.net_MTATempStore$ ,silverberg.pmuk.net_NETLOGON , silverberg.pmuk.net_SYSVOL ,skutter.pmuk.net_dfs , skutter.pmuk.net_MTATempStore$ ,skutter.pmuk.net_NETLOGON
  ,skutter.pmuk.net_sharepoint-saver ,skutter.pmuk.net_SYSVOL , tempest.pmuk.net_MTATempStore$ , tempest.pmuk.net_Quarantine ,tempest.pmuk.net_SiteBackups , tempest.pmuk.net_tsdp , titania.pmuk.net_MTATempStore$ , valiant.pmuk.net_domino , valiant.pmuk.net_hadprod
  , valiant.pmuk.net_MTATempStore$ ,valiant.pmuk.net_oracle ,vindaloo.pmuk.net_MTATempStore$ , virgon.pmuk.net_faxclient ,virgon.pmuk.net_FxsSrvCp$ ,virgon.pmuk.net_MTATempStore$ , xavier.pmuk.net_Address ,xavier.pmuk.net_downloads ,xavier.pmuk.net_drivers ,
  xavier.pmuk.net_Exchange IS Starter ,xavier.pmuk.net_ExchangeOAB , xavier.pmuk.net_ExchangeUM , xavier.pmuk.net_MTATempStore$ , xavier.pmuk.net_out-arch , xavier.pmuk.net_Resources$ on the protected computer tower.pmuk.net. Recycle Bin, System Volume Information
  folder, non-NTFS volumes,  DFS links,  CDs,  Quorum Disk (for cluster) and other removable media cannot be protected. (ID 38 Details: )
  Any Ideas? backups are OK, recovery points/sync's etc.
  Mark.

  I am using DPM 2012 R2, what finally worked to me to resolve my problem with EUR was to:
  In DPM I disabled EUR
  In Computer Management delete all DPM Shares (\\?\c:\Program Files\...)
  Using ADSI edit go to CN=MS-ShareMapConfiguration,CN=System,DC=X,DC=Y (Replace X & Y for your domain)
  Delete all of the mappings within the container
  In DPM enable EUR
  In DPM on a protection group I created a new recovery point and selected “Only synchronize (available only for file data)”
  Related article on ADSI Edit and DPM -
  http://social.technet.microsoft.com/Forums/en-US/e0258384-8422-408c-8839-2580d616a9ec/edsi-edit-related-to-data-protection-manager?forum=dpmfilebackup
  I hope this helps
  JD Young

• WHY  PGA  IS  REQUIRED  FOR  EVERY USER  ?

  Good Morning Everyone ;
  I have a question  about PGA.
  WHY  PGA IS REQUIRED FOR  EVERY USER ?
  What i got from google ..
  Even though the parse information for SQL or PL/SQL may already be available in library cache of shared pool,
  the value upon which the user want to execute the select or update statement cannot be shared.
  I cant realize it   Can anyone show clear  example , if  possible ?
  DB Version is  10.2.0.4.0
  OS : oracle linux 5.5
  Thanks in advance ..

  Thanks aman and heok.
  My Question :
  Your explanation is clear. I think i am getting little bit confused.
  Could you please clarify little more ?
  >> session 1 :
  user is HR
  SQL>select * from tab1  ORDER BY name;
  >> session 2 :
  user is scott
  SQL>select * from tab1 where ORDER BY name;
  >> session 3 :
  user is USER1
  SQL>select * from TAB1 where ORDER BY name;
  >> session 4 :
  user is USER2
  SQL>select * from TAB1 where ORDER BY name;
  IS this right aman ?
  Already sql statements are avail in SGA ,Even though all above users needs same information.
  Oracle does sorting operation in PGA. If PGA exceeds , oracle will use temporary tablespace .
  Thanks heok and aman.

• When a new user is created on the Server Computer,Why profile for the user is created as computername.username?

  When a new user is created on the Server Computer,Why profile for the user is created as computername.username?

  This is done if there are domain users with the same name. For example, if there is a domain user named 'test' who has logged in on the server, he will get the profile 'test'. If you then create a local user named 'test', the profile 'test' already exists
  and the computer will create the profile 'computername.test'

• Privilege to allow a user to create a view in another user's schema

  Hello,
  I need to allow a user to create a view in another user's schema.
  Say, to connect as USER_A and run statement: 'create view USER_B_SCHEMA.myview as select...'
  Is there any way to accomplish that without granting USER_A privilege to CREATE ANY VIEW? I want to keep USER_A at the lowest profile possible.
  Thanks!

  You have the option to create an stored procedure, here a test case (no optimized, no bug free):
  SYS@orcl > create user sp_owner identified by sp_owner;
  SYS@orcl > grant create any view to sp_owner;
  SYS@orcl> create procedure sp_owner.create_view (
    2  view_name varchar2, view_sql varchar2 ) is
    3  begin
    4    execute immediate 'create view '||view_name||' as '||view_sql;
    5  end;
    6  /
  Procedure created.
  SYS@orcl > create user test identified by test;
  SYS@orcl > grant create session to test;
  SYS@orcl > grant execute on sp_owner.create_view to test;
  TEST@orcl> execute sp_owner.create_view('scott.emp_vw','select * from scott.emp')
  PL/SQL procedure successfully completed.HTH
  Enrique
  PS. If your problem was solved, consider marking the question as answered.

• How to set permissions like "For all users" with Sandbox

  Hello!
  Hello!
  I am using Sandbox for Mac OS X Leopard and I've got a question to you:
  How can I set up a folder to behave like the For all users folder in the users directory?
  Greetings

  Well, sandbox sets ACL's not posix permissions. The sticky bit is a posix permission. Sand box will allow you to do something similar to the sticky bit using ACL's, but the exact duplication of the sticky bit is not possible, but something just as useful or more useful can be easily implemented.
  To set the sticky bit you will need an app called FileXaminer or the Terminal.app command line.
  to set the sticky bit simply put "1" in front of the the permissions number when you run chmod on the command line, here is an example:
  chmod 1775 /users/data/shared #assigns permissions 775 and the sticky bit#
  chmod 775 /users/data/shared #assigns permissions 775 without the sticky bit#
  note: note actual use of the chmod and chown commands will, in most cases require the sudo (super user do) command to be used with them. example:
  sudo chmod 1775 /users/data/shared #assigns temporary super user priviledge#
  The way I set my shared user's directories with ACL's is this:
  first I created folder /users/data -permissions=777 (everyone).
  I had three users so I created folders for each in /users/data:
  /users/data/user1 #this is just example-substitute real user name#
  /users/data/user2
  /users/data/user3 #etc,etc,#
  set the posix permission on each user folder 700 (owner:read,write,execute)
  set the owner and group on each one accordingly:
  chown user1:staff /users/data/user1 #substitute real user name#
  chown user2:staff /users/data/user2
  chown user3:staff /users/data/user3 #(etc,etc)#
  Now each user has their own data folder they can read and write to at will (when they are logged in to their user account).
  They can safely create and maintain their data and no one can delete it.
  Since these are shared data accounts. other users will need to read the data, this is where the ACL's come in.
  You will need to use Sandbox to place ACL's for each allowed user, on each of the user directories:
  0: user:joe inherited allow list,addfile,search,add_subdirectory,readattr,writeattr,readextattr,writeextattr,readsec urity,file_inherit,directoryinherit
  1: user:mary inherited allow list,addfile,search,add_subdirectory,readattr,writeattr,readextattr,writeextattr,readsec urity,file_inherit,directoryinherit
  2: user:sue inherited allow list,addfile,search,add_subdirectory,readattr,writeattr,readextattr,writeextattr,readsec urity,file_inherit,directoryinherit
  Basically with the above ACL's the only thing the allowed user can't do is delete files. They can copy files, they can add files, etc. This behavior is somewhat similar to what can be accomplished with the sticky bit, but much more controlled and structured. That is the beauty of using ACL's.
  Using SandBox you can taylor the permissions as you see fit for each every user. You can set permissions for an administrator to delete files as well. You can take away or add permissions for each user as you see fit. let your imagination be your guide.
  ACL's weren't meant to replace posix permissions, but rather to allow administrators to fine tune user permissions.
  Kj

• File permissions, inherit for shared user directory

  im trying to create a public share where users can read each others files, but not write to them.  thats no problem, but im also trying to create a public directory as well, where the users can create a folder inside another users directory. 
  for example
  a new group is created called localnet(name is reflecting a workgroup tied to windows computers), two users (user1 and user2) are assigned part of this group, so that only the group 'localnet' can cross access each others shares inside the /public folder only.
  a directory is created to reflect the new group, the two users dirs are added, and also a public dir is added
  mkdir /usr/share/localnet
  mkdir /usr/share/localnet/user1
  mkdir /usr/share/localnet/user2
  mkdir /usr/share/localnet/public
  now to set the permissions, the users dir is chowned to themselves, and the public dir is chowned to root, all of which are attached to the localnet group
  /usr/share/localnet/user1 user1:localnet drwxr-x---- (chmod 750)
  /usr/share/localnet/user2 user2:localnet drwxr-x---- (chmod 750)
  /usr/share/localnet/public root:localnet drwxrwx---(chmod 770)
  all is fine, but when user1 creates a dir in public, say for example /public/pictures it now inherits a different set of permissions outside of the boundaries of this setup, it inherited (drwxr-wr-w user1:users ), this looks familiar, its the way linux adreses users files. So now user 2 tries to place pictures inside to say /public/pictures/roll1 but this user is denied permissions because user1 owns the dir.  the permissions i need it to inherit is what i set in the parent, and that is (drwxrwx--- anyuser:localnet) 
  what im trying to figure out, is what command can i run to allow the sub directories of the /public to inherit its permissions i guess is what im trying to accomplish
  EDIT: another though, should i be doing this inside the "home" directory instead? (/home/public)  makes more sense to me, would it act any differently there?
  Last edited by wolfdogg (2011-12-06 10:35:12)

  i ran
  chmod -R g+w,g-t,o+t /usr/share/localnet/public
  the directory /usr/share/localnet/public/random_by_user1 now reads
  drwxrwsr-t user1:localnet
  (user2 was able to make a dir inside of this one)
  although that worked, and user2 is now able to make a directory inside of a directory that user1 has made, its not inheriting like this. so even though the recursive set them correctly, the new ones are coming up liek this
  drwxr-sr-x user1:localnet
  (user2 was NOT able to make a dir inside of this one obviously)
  without this elevated permission set.
  so we have it right when i chmod the files, but how do i get them to inherit this natively? thats a sticky right?  how to i make the 'rws' in group sticky, but no delete permission for a non owner?  i think thats the question that shoudl have been stated int eh beginning of the post now that im figuring this out.
  Edit: (i just realized something, my poor choice for an example might lead you to believe that the users personal directories are inside the /public, they are actually not, so in my examples such as the one above where i reference a new test directory like this " /usr/share/localnet/public/user1" let me rephrase that so as not to confuse " /usr/share/localnet/public/random_by_user1"
  the user directories are actually outside of the public eg.. /usr/share/localnet/someuser, where the public shares are inside  /usr/share/localnet/public.  im sure i made that clear, but at this point, confusion might lead to chaos. lol.
  also, i dont want everyone else to have permission, only owner and group, so no need to o+t correct?  remember, its only public for the group, not for everyone.
  Last edited by wolfdogg (2011-12-06 11:55:02)

• Why the new Android permissions requirements for AIR 4.0.0.139?

  When starting to update my AIR app to 4.0.0.139 on my Android devices through the Google Play store I found a number of new permission requirements.
  They are:
  New: Approximate location
  New: Receive data from Internet
  New: Prevent tablet from sleeping
  New: Find accounts on the device
  So does this mean that flash apps not using a captive runtime will no longer have to directly request these permissions from the user because the AIR libraries have already acquired them? This could be misleading to the user who installs an AIR app that will have far greater permissions that what they thought they were approving.
  My big question is why are these permission needed? As a developer I submit the Android permissions I need for my app into the application descriptor file. So why does AIR itself need all these extra permissions?
  As a consumer i've started finding too many apps that want access to run at startup, know my location, or contacts, or accounts, with no apparent reason for it. I've been uninstalling such apps or refusing to update them further. Does Adobe worry that other consumers may follow suit? Does the AIR libraries really need these permissions? Why?
  Thanks in advance.

  This is typical of Adobe and how they have always been. They do whatever they want with absolutely no respect or consideration for the user. Not only did they add several new permissions, but they don't have any way to contact them about Air. The email listed on the Google Play page isn't valid, there's no contact info listed on the website, and if you try to submit a question to them Air isn't even an available option. It just goes to show how little they care about the users of their products. And then when someone like yourself goes to the trouble of asking them about it the only way possible, they ignore the question. Which says they don't care, they're hiding something, or both. In any case, I've always hated Adobe and steered clear of their products as much as possible because of this behavior, and I will continue to do so. I won't be letting this app have all these permissions without so much as an explanation why, so I'll be uninstalling it and just won't use any apps that require it, which to my understanding is mostly games, so I'll live. I just hope their disdainful attitude toward their users catches up to them and they crash and burn. We're on the right track with HTML5 moving away from Flash.

• Authorization Required for RFC user  in R/3-APO system.

  Could you please help regarding one authorization issue. I want to know the authorization required for one RFC user. Now this RFC user used for RFC connection of SAP R/3 - SAP APO system. user type is given dialog type and SAP_ALL profile has been given to this user  id. Now I have to remove SAP_ALL from this user id in R/3 and APO system and  provide the required the authorization in R/3 and APO system.
  Regard
  Auroshikha

  The RFC authorisation depends completely on what the user is doing (ALEREMOTE?).  We can't tell you what RFC auths your connection requires. 
  There is a guide to doing this here: https://wiki.sdn.sap.com/wiki/display/Security/BestPractice-HowtoanalyzeandsecureRFC+connections

• Minimal PC requirements for EP users

  Is there any link or document <b>from SAP</b> with minimal requirements for user PC?
  Something like this: Celeron 1GHz, 256 RAM, Windows XP SP2, MS IE 6.0 etc.

  Dear Alex,
  I've been monitoring this topic and all the answers provided by the SDN members are valid, nevertheless if you need an SAP official statement, this is not the right place.
  For an SAP official statement, please open a customer message at http://service.sap.com/message under component EP-PIN (Portal Infrastructure) and then you will get it.
  Best Regards,
  Luis

• Persistent Permissions frustrations for legit users on local network

  We have two desktop Macs and a MacBook on our local Ethernet network just here in our house.
  To facilitate full file sharing amongst all of the family from any of these three Macs, we use common usernames and passwords for the home accounts on each machine and have done our best to open up sharing for easy log-on to or from any of the Macs from either of the other two.
  But we are constantly being denied write access when at a remote machine, despite the fact the entire User directory on the "server" or shared computer is intended to be opened up for both the owner and others to share. It is very frustrating.
  So I put this in the form of a question:
  How, under 10.5, do I open up every single folder and file starting at my /User home level and all the way down through the various levels under the Desktop, Documents and other folders? How do you have an open Read/Write permission for yourself and other users on the network apply to everything and not just the top level folder ??? There used to be a checkbox under the "Get Info" box that let you change permissions for various users and tick off a box to have these permissions apply to all enclosed folders all the way down. This feature seems to be missing in 10.5.6.

  You need to set up a sharing folder and then put an ACL on it. The ACL can be set to propagate write permission down to everything inside.
  Open Terminal and paste in all of this:
  sudo chmod -R +a "everyone allow delete,chown,list,search,add_file,\
  addsubdirectory,delete_child,file_inherit,directoryinherit" (hit spacebar, drag sharing folder into Terminal window, press return)
  From this point on, anything you newly save or copy to the sharing folder or to any of its subfolders should be writable by anyone.

• What are the permissions required for configuring Streams in 10g

  Hi All,
  Is admin privileges required for configuring Oracle Streams in 10g. Please confirm.
  Thanks,
  Redro

  What admin privilege are you referring to? There are many admin privs in the Oracle database.
  What is absolutely required is reading the docs. Did you do so?
  They are at http://tahiti.oracle.com
  and they explain it all quite clearly.
  There are also working demos here:
  http://www.morganslibrary.org/library.html
  Find anything with the keyword "Streams"