Problem solve Get help with specific problems with your technologies, process and projects.

Preventing User1 from accessing User2's tables

I have two users in Oracle. User1 has "Select any table" privilege. User2 has 1000+ tables and they should not be accessed (selected) by User1 even though he has "Select any table" system privilege. "Select any table" privilege can't be revoked from User1, as User1 is accessing Dictionary tables. I want User1 not to be able to see the tables of User2. I can't give object permissions because the number of tables/views is very large. How do I do that?

Unfortunately, any user with SELECT ANY TABLE can select any table. There is no SELECT ANY TABLE EXCEPT clause. So if you don't want User1 to see User2's tables, you will have to revoke this system privilege from User1. If you still want User1 to be able to access Data Dictionary views, then grant the SELECT_CATALOG_ROLE role to User1. This let's the user only view the Data Dictionary roles without being able to see other schema's tables.

For More Information

Dig Deeper on Oracle database design and architecture

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.