In this recipe, you'll view collected data about the usage of object privileges during the capture interval.
You'll need an existing user who can create a privilege analysis policy (has the CAPTURE_ADMIN
role and the SELECT ANY DICTIONARY
privilege), for example, the SYSTEM
user.
Connect to the database as system or a user who has appropriate privileges:
$ sqlplus system
View which object privileges the user
Alan
has used while database policyALL_PRIV_POL
has been active.View grant path by querying
DBA_USED_OBJPRIVS_PATH
:
In EM 12c, after you have generated the report, select the policy, and from Actions drop-down menu, select Reports. The Usage Summary report will open. Click on the Used tab and verify that the user Alan
has used the SELECT
and DELETE
privileges while ALL_PRIV_POL
has been active (see Figure 44):