Create user in Oracle 11g with same priviledges as in Oracle 10g XE

Posted by Álvaro G. Vicario on Server Fault See other posts from Server Fault or by Álvaro G. Vicario
Published on 2010-02-10T18:22:00Z Indexed on 2011/01/05 18:56 UTC
Read the original article Hit count: 570

Filed under:
|
|

I'm a PHP developer (not a DBA) and I've been working with Oracle 10g XE for a while. I'm used to XE's simplified user management:

  1. Go to Administration/ Users/ Create user
  2. Assign user name and password
  3. Roles: leave the default ones (connect and resource)
  4. Privileges: click on "Enable all" to select the 11 possible ones
  5. Create

This way I get a user that has full access to its data and no access to everything else. This is fine since I only need it to develop my app. When the app is to be deployed, the client's DBAs configure the environment.

Now I have to create users in a full Oracle 11g server and I'm completely lost. I have a new concept (profiles) and there're like 20 roles and hundreds of privileges in various categories.

What steps do I need to complete in Oracle Enterprise Manager in order to obtain a user with the same privileges I used to assign in XE?

==== UPDATE ====

I think I'd better provide a detailed explanation so I make myself clearer.

This is how I create a user in 10g XE:

Roles:
    [X] CONNECT
    [X] RESOURCE
    [ ] DBA
Direct Asignment System Privileges:
    [ ] CREATE DATABASE LINK
    [ ] CREATE MATERIALIZED VIEW
    [ ] CREATE PROCEDURE
    [ ] CREATE PUBLIC SYNONYM
    [ ] CREATE ROLE
    [ ] CREATE SEQUENCE
    [ ] CREATE SYNONYM
    [ ] CREATE TABLE
    [ ] CREATE TRIGGER
    [ ] CREATE TYPE
    [ ] CREATE VIEW

I click on Enable All and I'm done.

This is what I'm asked when doing the same in 11g:

Profile:
    (*) DEFAULT
    ( ) WKSYS_PROF
    ( ) MONITORING_PROFILE
Roles:
    CONNECT:
        [ ] Admin option
        [X] Default value
    Edit List:
        AQ_ADMINISTRATOR_ROLE
        AQ_USER_ROLE
        AUTHENTICATEDUSER
        CSW_USR_ROLE
        CTXAPP
        CWM_USER
        DATAPUMP_EXP_FULL_DATABASE
        DATAPUMP_IMP_FULL_DATABASE
        DBA
        DELETE_CATALOG_ROLE
        EJBCLIENT
        EXECUTE_CATALOG_ROLE
        EXP_FULL_DATABASE
        GATHER_SYSTEM_STATISTICS
        GLOBAL_AQ_USER_ROLE
        HS_ADMIN_ROLE
        IMP_FULL_DATABASE
        JAVADEBUGPRIV
        JAVAIDPRIV
        JAVASYSPRIV
        JAVAUSERPRIV
        JAVA_ADMIN
        JAVA_DEPLOY
        JMXSERVER
        LOGSTDBY_ADMINISTRATOR
        MGMT_USER
        OEM_ADVISOR
        OEM_MONITOR
        OLAPI_TRACE_USER
        OLAP_DBA
        OLAP_USER
        OLAP_XS_ADMIN
        ORDADMIN
        OWB$CLIENT
        OWB_DESIGNCENTER_VIEW
        OWB_USER
        RECOVERY_CATALOG_OWNER
        RESOURCE
        SCHEDULER_ADMIN
        SELECT_CATALOG_ROLE
        SPATIAL_CSW_ADMIN
        SPATIAL_WFS_ADMIN
        WFS_USR_ROLE
        WKUSER
        WM_ADMIN_ROLE
        XDBADMIN
        XDB_SET_INVOKER
        XDB_WEBSERVICES
        XDB_WEBSERVICES_OVER_HTTP
        XDB_WEBSERVICES_WITH_PUBLIC
System Privileges:
    <Empty>
    Edit List:
        ACCESS_ANY_WORKSPACE
        ADMINISTER ANY SQL TUNING SET
        ADMINISTER DATABASE TRIGGER
        ADMINISTER RESOURCE MANAGER
        ADMINISTER SQL MANAGEMENT OBJECT
        ADMINISTER SQL TUNING SET
        ADVISOR
        ALTER ANY ASSEMBLY
        ALTER ANY CLUSTER
        ALTER ANY CUBE
        ALTER ANY CUBE DIMENSION
        ALTER ANY DIMENSION
        ALTER ANY EDITION
        ALTER ANY EVALUATION CONTEXT
        ALTER ANY INDEX
        ALTER ANY INDEXTYPE
        ALTER ANY LIBRARY
        ALTER ANY MATERIALIZED VIEW
        ALTER ANY MINING MODEL
        ALTER ANY OPERATOR
        ALTER ANY OUTLINE
        ALTER ANY PROCEDURE
        ALTER ANY ROLE
        ALTER ANY RULE
        ALTER ANY RULE SET
        ALTER ANY SEQUENCE
        ALTER ANY SQL PROFILE
        ALTER ANY TABLE
        ALTER ANY TRIGGER
        ALTER ANY TYPE
        ALTER DATABASE
        ALTER PROFILE
        ALTER RESOURCE COST
        ALTER ROLLBACK SEGMENT
        ALTER SESSION
        ALTER SYSTEM
        ALTER TABLESPACE
        ALTER USER
        ANALYZE ANY
        ANALYZE ANY DICTIONARY
        AUDIT ANY
        AUDIT SYSTEM
        BACKUP ANY TABLE
        BECOME USER
        CHANGE NOTIFICATION
        COMMENT ANY MINING MODEL
        COMMENT ANY TABLE
        CREATE ANY ASSEMBLY
        CREATE ANY CLUSTER
        CREATE ANY CONTEXT
        CREATE ANY CUBE
        CREATE ANY CUBE BUILD PROCESS
        CREATE ANY CUBE DIMENSION
        CREATE ANY DIMENSION
        CREATE ANY DIRECTORY
        CREATE ANY EDITION
        CREATE ANY EVALUATION CONTEXT
        CREATE ANY INDEX
        CREATE ANY INDEXTYPE
        CREATE ANY JOB
        CREATE ANY LIBRARY
        CREATE ANY MATERIALIZED VIEW
        CREATE ANY MEASURE FOLDER
        CREATE ANY MINING MODEL
        CREATE ANY OPERATOR
        CREATE ANY OUTLINE
        CREATE ANY PROCEDURE
        CREATE ANY RULE
        CREATE ANY RULE SET
        CREATE ANY SEQUENCE
        CREATE ANY SQL PROFILE
        CREATE ANY SYNONYM
        CREATE ANY TABLE
        CREATE ANY TRIGGER
        CREATE ANY TYPE
        CREATE ANY VIEW
        CREATE ASSEMBLY
        CREATE CLUSTER
        CREATE CUBE
        CREATE CUBE BUILD PROCESS
        CREATE CUBE DIMENSION
        CREATE DATABASE LINK
        CREATE DIMENSION
        CREATE EVALUATION CONTEXT
        CREATE EXTERNAL JOB
        CREATE INDEXTYPE
        CREATE JOB
        CREATE LIBRARY
        CREATE MATERIALIZED VIEW
        CREATE MEASURE FOLDER
        CREATE MINING MODEL
        CREATE OPERATOR
        CREATE PROCEDURE
        CREATE PROFILE
        CREATE PUBLIC DATABASE LINK
        CREATE PUBLIC SYNONYM
        CREATE ROLE
        CREATE ROLLBACK SEGMENT
        CREATE RULE
        CREATE RULE SET
        CREATE SEQUENCE
        CREATE SESSION
        CREATE SYNONYM
        CREATE TABLE
        CREATE TABLESPACE
        CREATE TRIGGER
        CREATE TYPE
        CREATE USER
        CREATE VIEW
        CREATE_ANY_WORKSPACE
        DEBUG ANY PROCEDURE
        DEBUG CONNECT SESSION
        DELETE ANY CUBE DIMENSION
        DELETE ANY MEASURE FOLDER
        DELETE ANY TABLE
        DEQUEUE ANY QUEUE
        DROP ANY ASSEMBLY
        DROP ANY CLUSTER
        DROP ANY CONTEXT
        DROP ANY CUBE
        DROP ANY CUBE BUILD PROCESS
        DROP ANY CUBE DIMENSION
        DROP ANY DIMENSION
        DROP ANY DIRECTORY
        DROP ANY EDITION
        DROP ANY EVALUATION CONTEXT
        DROP ANY INDEX
        DROP ANY INDEXTYPE
        DROP ANY LIBRARY
        DROP ANY MATERIALIZED VIEW
        DROP ANY MEASURE FOLDER
        DROP ANY MINING MODEL
        DROP ANY OPERATOR
        DROP ANY OUTLINE
        DROP ANY PROCEDURE
        DROP ANY ROLE
        DROP ANY RULE
        DROP ANY RULE SET
        DROP ANY SEQUENCE
        DROP ANY SQL PROFILE
        DROP ANY SYNONYM
        DROP ANY TABLE
        DROP ANY TRIGGER
        DROP ANY TYPE
        DROP ANY VIEW
        DROP PROFILE
        DROP PUBLIC DATABASE LINK
        DROP PUBLIC SYNONYM
        DROP ROLLBACK SEGMENT
        DROP TABLESPACE
        DROP USER
        ENQUEUE ANY QUEUE
        EXECUTE ANY ASSEMBLY
        EXECUTE ANY CLASS
        EXECUTE ANY EVALUATION CONTEXT
        EXECUTE ANY INDEXTYPE
        EXECUTE ANY LIBRARY
        EXECUTE ANY OPERATOR
        EXECUTE ANY PROCEDURE
        EXECUTE ANY PROGRAM
        EXECUTE ANY RULE
        EXECUTE ANY RULE SET
        EXECUTE ANY TYPE
        EXECUTE ASSEMBLY
        EXPORT FULL DATABASE
        FLASHBACK ANY TABLE
        FLASHBACK ARCHIVE ADMINISTER
        FORCE ANY TRANSACTION
        FORCE TRANSACTION
        FREEZE_ANY_WORKSPACE
        GLOBAL QUERY REWRITE
        GRANT ANY OBJECT PRIVILEGE
        GRANT ANY PRIVILEGE
        GRANT ANY ROLE
        IMPORT FULL DATABASE
        INSERT ANY CUBE DIMENSION
        INSERT ANY MEASURE FOLDER
        INSERT ANY TABLE
        LOCK ANY TABLE
        MANAGE ANY FILE GROUP
        MANAGE ANY QUEUE
        MANAGE FILE GROUP
        MANAGE SCHEDULER
        MANAGE TABLESPACE
        MERGE ANY VIEW
        MERGE_ANY_WORKSPACE
        ON COMMIT REFRESH
        QUERY REWRITE
        READ ANY FILE GROUP
        REMOVE_ANY_WORKSPACE
        RESTRICTED SESSION
        RESUMABLE
        ROLLBACK_ANY_WORKSPACE
        SELECT ANY CUBE
        SELECT ANY CUBE DIMENSION
        SELECT ANY DICTIONARY
        SELECT ANY MINING MODEL
        SELECT ANY SEQUENCE
        SELECT ANY TABLE
        SELECT ANY TRANSACTION
        UNDER ANY TABLE
        UNDER ANY TYPE
        UNDER ANY VIEW
        UNLIMITED TABLESPACE
        UPDATE ANY CUBE
        UPDATE ANY CUBE BUILD PROCESS
        UPDATE ANY CUBE DIMENSION
        UPDATE ANY TABLE
Object Privileges:
    <Empty>
    Add:
        Clase Java
        Clases de Trabajos
        Cola
        Columna de Tabla
        Columna de Vista
        Espacio de Trabajo
        Función
        Instantánea
        Origen Java
        Paquete
        Planificaciones
        Procedimiento
        Programas
        Secuencia
        Sinónimo
        Tabla
        Tipos
        Trabajos
        Vista
Consumer Group Privileges:
    <Empty>
    Default Consumer Group:
        (*) None
    Edit List:
        AUTO_TASK_CONSUMER_GROUP
        BATCH_GROUP
        DEFAULT_CONSUMER_GROUP
        INTERACTIVE_GROUP
        LOW_GROUP
        ORA$AUTOTASK_HEALTH_GROUP
        ORA$AUTOTASK_MEDIUM_GROUP
        ORA$AUTOTASK_SPACE_GROUP
        ORA$AUTOTASK_SQL_GROUP
        ORA$AUTOTASK_STATS_GROUP
        ORA$AUTOTASK_URGENT_GROUP
        ORA$DIAGNOSTICS
        SYS_GROUP

And, of course, I wonder what options I should pick.

© Server Fault or respective owner

Related posts about Oracle

Related posts about user-management