1、用户创建
SQL> CREATE USER rusking 2 IDENTIFIED BY rusking 3 DEFAULT TABLESPACE USERS --指定默认表空间为users。如果使用系统默认的表空间,其实可以不用指定。 4 QUOTA 10M ON USERS ---QUOTA 为用户指定表空间配额。即用户对象在表空间所占用的最大空间。默认unlimited. 5 TEMPORARY TABLESPACE TEMP; --指定默认临时表空间为TEMP。因为TEMP是默认的临时表空间,也可以不用指定。User created--如果不指定默认表空间、临时表空间,系统会默认为你指定相应的表空间。SELECT * FROM user_ts_quotas;2、修改用户密码及账号锁定与解锁
SQL> ALTER USER RUSKING IDENTIFIED BY RUSKING1;User alteredSQL> ALTER USER RUSKING ACCOUNT LOCK;
User alteredSQL> ALTER USER RUSKING ACCOUNT UNLOCK;
User altered3、查看用户配额QUOTA
MAX_BYTES为-1的表示无限SQL> select tablespace_name,username,max_bytes from DBA_TS_QUOTAS;TABLESPACE_NAME USERNAME MAX_BYTES------------------------------ ------------------------------ ----------SYSAUX OLAPSYS -1SYSAUX SYSMAN -1SYSAUX FLOWS_FILES -1USERS TEST -1SYSAUX APPQOSSYS -1USERS RUSKING 104857606 rows selected4、修改用户配额
SQL> ALTER USER TEST QUOTA 10M ON USERS;User alteredSQL> ALTER USER TEST QUOTA UNLIMITED ON USERS;User alteredSQL> grant unlimited tablespace to anqing; --这种方式是全局性的.即修改该用户所有表空间的配额。Grant succeeded.5、用户授权
DBA: 拥有全部特权,是系统最高权限,只有DBA才可以创建数据库结构。RESOURCE:拥有Resource权限的用户只可以创建实体,不可以创建数据库结构。CONNECT:拥有Connect权限的用户只可以登录Oracle,不可以创建实体,不可以创建数据库结构。对于普通用户:授予connect, resource权限。对于DBA管理用户:授予connect,resource, dba权限。SQL> GRANT CONNECT,RESOURCE TO RUSKING;Grant succeededSQL> grant select on scott.emp to rusking;Grant succeeded6、查看用户信息
SQL> SELECT * FROM ALL_USERS WHERE USERNAME='RUSKING';USERNAME USER_ID CREATED------------------------------ ---------- -----------RUSKING 93 2015/2/15 1查看用户系统权限:
SQL> select * from user_sys_privs;SQL> SELECT * FROM DBA_SYS_PRIVS WHERE GRANTEE='RUSKING';GRANTEE PRIVILEGE ADMIN_OPTION------------------------------ ---------------------------------------- ------------RUSKING UNLIMITED TABLESPACE NOSQL> SELECT * FROM DBA_ROLE_PRIVS WHERE GRANTEE='RUSKING';
GRANTEE GRANTED_ROLE ADMIN_OPTION DEFAULT_ROLE------------------------------ ------------------------------ ------------ ------------RUSKING CONNECT NO YESRUSKING RESOURCE NO YES查看被授予的角色中包含的权限:SQL> SELECT * FROM ROLE_SYS_PRIVS WHERE ROLE='CONNECT';ROLE PRIVILEGE ADMIN_OPTION------------------------------ ---------------------------------------- ------------CONNECT CREATE SESSION NOSQL> SELECT * FROM ROLE_SYS_PRIVS WHERE ROLE='RESOURCE';
ROLE PRIVILEGE ADMIN_OPTION------------------------------ ---------------------------------------- ------------RESOURCE CREATE SEQUENCE NORESOURCE CREATE TRIGGER NORESOURCE CREATE CLUSTER NORESOURCE CREATE PROCEDURE NORESOURCE CREATE TYPE NORESOURCE CREATE OPERATOR NORESOURCE CREATE TABLE NORESOURCE CREATE INDEXTYPE NO8 rows selected=========================
查看用户对象权限:select * from dba_tab_privs;select * from all_tab_privs;select * from user_tab_privs;查看所有角色:select * from dba_roles;查看用户所拥有的角色:select * from dba_role_privs;select * from user_role_privs;查看当前用户的缺省表空间
select username,default_tablespace from user_users;FROM《》