Scribd
Upload
34 views

TP 4

The document describes various SQL commands used to manage database users, roles, and privileges in Oracle. It creates three users and three roles, grants various privileges to the users and roles, sets roles for a user, and then revokes some privileges and drops the roles and users. The key actions include creating and configuring users, roles, and privileges as well as revoking privileges and dropping roles and users.

Uploaded by

amine chouchene
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
34 views

TP 4

The document describes various SQL commands used to manage database users, roles, and privileges in Oracle. It creates three users and three roles, grants various privileges to the users and roles, sets roles for a user, and then revokes some privileges and drops the roles and users. The key actions include creating and configuring users, roles, and privileges as well as revoking privileges and dropping roles and users.

Uploaded by

amine chouchene
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 4

1)

C:\Windows\System32>oradim -startup -sid gestbiblio5 -starttype srvc

C:\Windows\System32>set oracle_sid=gestbiblio5

C:\Windows\System32>sqlplus sys as sysdba


SQL*Plus: Release 11.2.0.1.0 Production on Thu Feb 29 10:43:43 2024
Copyright (c) 1982, 2010, Oracle. All rights reserved.
Enter password:manager
Connected to:
Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 - 64bit Production
With the Partitioning, OLAP, Data Mining and Real Application Testing options

SQL> select username from dba_users;

2)
SQL> CREATE USER USER1 IDENTIFIED BY user1;
User created.

3)
SQL> CREATE USER USER2 IDENTIFIED BY user2;
User created.

4)
SQL> CREATE USER USER3 IDENTIFIED EXTERNALLY;
User created.

5)
SQL> GRANT CONNECT, RESOURCE TO USER1, USER2, USER3;
Grant succeeded.

6)
SQL> GRANT DBA TO USER3;
Grant succeeded.

7)
SQL> GRANT CREATE TABLE TO USER1;
Grant succeeded.

8)
SQL> CREATE ROLE ROLE1;
Role created.

SQL> GRANT CREATE TABLE TO ROLE1;


Grant succeeded.

9)
SQL> GRANT ROLE1 TO USER1;
Grant succeeded.

10)
SQL> CREATE ROLE ROLE2;
Role created.

11)
SQL> SELECT table_name
2 FROM user_tables
3 WHERE table_name='DEPT';
no rows selected
SQL> SELECT table_name
2 FROM user_tables
3 WHERE table_name='EMP';
no rows selected

SQL> CREATE TABLE DEPT (


2 id NUMBER,
3 nom VARCHAR2(100)
4 );
Table created. //on peut pas creer un table vide

SQL> CREATE TABLE EMP (


2 id NUMBER,
3 nom VARCHAR2(100)
4 );
Table created. //on peut pas creer un table vide

12)
SQL> GRANT SELECT ON EMP TO ROLE2;
Grant succeeded.

13)
SQL> CREATE ROLE ROLE3;
Role created.

SQL> GRANT DELETE ON DEPT TO ROLE3;


Grant succeeded.

14)
SQL> GRANT ROLE2 TO ROLE3;
Grant succeeded.

15)
SQL> GRANT ROLE2, ROLE3 TO USER2;
Grant succeeded.

16)//not sure
SQL> SELECT privilege,grantee FROM DBA_TAB_PRIVS WHERE GRANTEE like 'USER%' or
GRANTEE like 'ROLE%'; //privilege objet

SQL> SELECT privilege,grantee FROM DBA_SYS_PRIVS WHERE GRANTEE like 'USER%' or


GRANTEE like 'ROLE%'; //privilege sys

17)
SQL> CONNECT USER2/user2;
Connected.

18)
SQL> SET ROLE ROLE2;
Role set.

19)
SQL> SET ROLE NONE;
Role set.

20)
SQL> SET ROLE ALL;
Role set.
21)
CONNECT SYSTEM/manager;
Connected.

22)
SQL> REVOKE CREATE TABLE FROM USER1;
Revoke succeeded.

SQL> SELECT privilege,grantee FROM DBA_SYS_PRIVS WHERE GRANTEE like 'USER1';

23)
SQL> REVOKE ROLE1 FROM USER1;
Revoke succeeded.

24)
SQL> REVOKE CREATE TABLE FROM RESOURCE;
Revoke succeeded.

25)
oui, il ne peut plus creer des tables car on a revoquer create table de tous ces
roles/privileges.

26)
SQL> REVOKE ROLE2 FROM USER2;
Revoke succeeded.

27)
oui, le privilege select sur la table EMP est encore attribué à USER2 car select
est attribuer à USER2

28)
SQL> REVOKE ROLE2 FROM ROLE3;
Revoke succeeded.

29)
theoriquement le privilege select est bien retirer
mais pratiquement USER2 il pocede encore le privilege select
alors la mise à jour sur un role actif ne s'effectue que lorsque on desactive le
role et on le reactive.

30)

31)
SQL> GRANT CREATE TABLE TO RESOURCE;
Grant succeeded.

32) azerty

33)
SQL> DROP ROLE ROLE1;

Role dropped.

SQL> DROP ROLE ROLE2;

Role dropped.

SQL> DROP ROLE ROLE3;


Role dropped.

SQL> DROP USER USER1 CASCADE;

User dropped.

SQL> DROP USER USER2 CASCADE;

User dropped.

SQL> DROP USER USER3 CASCADE;

User dropped.

You might also like