Tuesday, May 27, 2008

SYSDBA and SYSOPER authorized operations.

SYSDBA is the highest system privilege in oracle. But SYSOPER system privilege is limited than SYSDBA. In the following section, I listed the operation that a user can perform who is authenticated as SYSDBA and SYSOPER system privilege.

SYSDBA:
• Perform STARTUP and SHUTDOWN operations
• ALTER DATABASE: open, mount, back up, or change character set
• CREATE DATABASE
• DROP DATABASE
• CREATE SPFILE
• ALTER DATABASE ARCHIVELOG
• ALTER DATABASE RECOVER
• Includes the RESTRICTED SESSION privilege
• Allows a user to connect as user SYS.

SYSOPER
• Perform STARTUP and SHUTDOWN operations
• CREATE SPFILE
• ALTER DATABASE OPEN/MOUNT/BACKUP
• ALTER DATABASE ARCHIVELOG
• ALTER DATABASE RECOVER (Complete recovery only. Any form of incomplete recovery, such as UNTIL TIME|CHANGE|CANCEL|CONTROLFILE requires connecting as SYSDBA.)
• Includes the RESTRICTED SESSION privilege
• Allows a user to perform basic operational tasks, but without the ability to look at user data.

No comments:

Post a Comment