Skip this Video
Download Presentation
Module 10: Database Security

Loading in 2 Seconds...

play fullscreen
1 / 7

Module 10: Database Security - PowerPoint PPT Presentation

  • Uploaded on

Module 10: Database Security. Overview. Manage access to database through user accounts Control access to data through privileges and roles Manage access to server using login accounts. Managing Users.

I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
Download Presentation

PowerPoint Slideshow about 'Module 10: Database Security' - kalea

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.

- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
  • Manage access to database through user accounts
  • Control access to data through privileges and roles
  • Manage access to server using login accounts
managing users
Managing Users
  • In Oracle, a username is database system wide, SQL Server uses login accounts to access the instance and user accounts for the individual databases
  • Oracle usernames and SQL Server logins can be operating system authenticated or database authenticated. In addition, SQL Server logins could be authenticated by the network domain
  • In SQL Server, a user account has to be created in every database that a login needs access to and can be named differently from the login name
managing privileges
Managing Privileges
  • Oracle and SQL Server control access and activity within the database using system and object privileges
  • ALTER DATABASE and GRANT are examples of system privileges while object privileges can be SELECT, INSERT, UPDATE, DELETE.
  • Oracle and SQL Server use the GRANT statement to give privileges and REVOKE statement to remove privileges. In addition SQL Server has the DENY statement to suspend privileges.
  • Use the system catalog view sys.database_permissions and function fn_builtin_permissionsto list permissions on objects and statements in SQL Server
managing roles
Managing Roles
  • Oracle and SQL Server provide system roles with predefined privileges and user defined roles
  • The SQL Server system defined roles are of two categories:
    • Fixed server roles which are defined for the database instance
    • Fixed database roles whose scope is limited to a database
  • Sysadmin fixed server role is equivalent to Oracle’s DBA role
  • In Oracle, there is a single DBA role that has database instance wide privileges spanning all schemas
  • In SQL Server, administrative privileges can be limited to individual databases by the use of fixed database roles
demonstration 1 observe server and database roles
Demonstration 1: Observe Server and Database Roles

In this demonstration you will learn to:

  • Use catalog views
  • Use stored procedures to analyze roles
  • We learned how to create and maintain login accounts and user accounts
  • We learned the use and scope of predefined system roles and how to create and maintain user defined roles
  • We saw how to grant and manage system and object privileges to users directly or through roles