Jack Silvey wrote: > > All, > > We have a new info security group that is going to do > all the object grants on our warehouse. I don't want > them to login as schema owners to do this. > > Until this time, I have been granting access to other > user's object by logging in as a dba, creating a > procedure in the owner's schema with the EXECUTE > immediate statement, and passing it the 'grant select > on table a' statement for execution. That way, the > grant actually executes as the object owner, but can > be issued from a DBA account. > > Short of having a custom SP in each user's schema for > this type of grant, can anyone think of another way? > > thx, > > jack silvey >
Yup. Save SCOTT's encrypted password (DBA_USERS), change it to yaddayadda, CONNECT SCOTT/YADDAYADDA, ALTER USER SCOTT IDENTIFIED BY VALUES 'encrypted thing' and nobody has noticed anything; then, being SCOTT, you grant whatever you want. There is a become.sql on the Oriole site which does it, and I have seen very similar versions elsewhere. In fact this is the old way to do it ... -- Regards, Stephane Faroult Oriole Software -- Please see the official ORACLE-L FAQ: http://www.orafaq.com -- Author: Stephane Faroult INET: [EMAIL PROTECTED] Fat City Network Services -- (858) 538-5051 FAX: (858) 538-5051 San Diego, California -- Public Internet access / Mailing Lists -------------------------------------------------------------------- To REMOVE yourself from this mailing list, send an E-Mail message to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing).
