Finding Oracle Users with DBA role can be simple question, but when you think about roles assigned to roles and roles assigned to roles and at the end roles assigned to a user . In that case ; It can be diffucult question.
Normally we use below query to find users with DBA role
SELECT *
FROM dba_ROLE_PRIVS
WHERE granted_role = 'DBA';
This query returns to you users and roles who have directly assigned DBA role .
Maybe you give grant DBA role to any role and when you assign this role to a user. You can not see this user at the output of this query. Only you can see that one role has DBA role, but you can not see which user has this right.
To solve this problem we will use Hierarchial Queries
START WITH ... and
CONNECT BY ...
key clauses to solve this problem; If you have any idea about Hierarchial Queries ; you can use below link
http://docs.oracle.com/cd/E16655_01/server.121/e17209/queries003.htm#SQLRF52332
And my query like this ; You can write your own query in an different way. But It works.
SELECT c.DBA_USER,
b.account_status,
b.created,
b.profile
FROM (SELECT username DBA_USER FROM V$PWFILE_USERS
UNION
SELECT DISTINCT grantee DBA_USER
FROM ( SELECT DISTINCT LEVEL level_deep, grantee, granted_role
FROM dba_role_privs
START WITH granted_role = 'DBA'
CONNECT BY PRIOR grantee = granted_role)
WHERE grantee IN (SELECT username FROM dba_users)) c,
dba_users b
WHERE c.DBA_USER = b.username
No comments:
Post a Comment