Question

I have the user for example HR which has been granted very powerful system privilege "GRANT ANY PRIVILEGE"...This user used this privilege and granted some privileges to other users...Now I want to revoke "GRANT ANY PRIVILEGE" from HR and also identify what privileges and to whom did HR user grant(I want to revoke from them this privileges).

I know that oracle saves just grantee and privilege not grantor for system privileges(unlike object privileges) in the metadata...

If you have some idea please answer..

Thank you very much in previous.

Was it helpful?

Solution

ALL_COL_PRIVS view will show grantor ALL_TAB_PRIVS view will show grantor TABLE_PRIVILEGES view will show grantor

plus the USER versions of those..

edit:

to find the list of object privileges granted by HR use a query like this:

select * from all_tab_privs where grantor = 'HR';

i do not know of a way to check system level object grants

Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
scroll top