Re: Column Access
- From: Paul Drake <bdbafh@xxxxxxxxx>
- To: BurtonL@xxxxxxxxxxx
- Date: Fri, 11 Mar 2005 16:20:26 -0500
Laura,
What you might be after is "Fine Grained Access Control" or "Virtual
Private Database".
http://www.oracle.com/technology/oramag/oracle/04-mar/o24tech_security.html
This is available as an option on top of Enterprise Edition.
What version of the database software are you using?
Its easy to confuse Fine Grained Auditing (FGA) which is included in
Enterprise Edition, with Fine Grained Access Control (FGAC), but that
is Oracle terminology for you.
other papers are available at Pete Finnigan's site:
http://www.petefinnigan.com/orasec.htm
http://www.securityfocus.com/infocus/1743
hth.
Paul
On Fri, 11 Mar 2005 13:36:41 -0600, Burton, Laura <BurtonL@xxxxxxxxxxx> wrote:
>
> I have read where you can grant access to a column to a user/role. I
> need to take it one step further. I need to restrict access to the
> column if it is for a certain group of people. i.e. I have supervisors
> and mechanics. Everyone can look at the salary column, except that
> mechanics can only look at mechanics, but supervisors can look at
> everyone. Can this be done with grants? The alternative is two
> separate databases and that seems extreme. If not with a grant is there
> a better way?
>
> =20
>
> Thank you,
>
> Laura
>
> --
> //www.freelists.org/webpage/oracle-l
>
--
#/etc/init.d/init.cssd stop
# f=ma, divide by 1, convert to moles.
--
//www.freelists.org/webpage/oracle-l
Other related posts:
