I tried to figure out the differences between non-global credentials and global (scoped) credentials. It seems the only difference is that + non-global credentials have to be granted to users or roles explicitly while + global credentials can be used by anyone having OEM system privileges FULL [ANY] TARGET or OPERATOR ANY TARGET Did I miss something? Cheers, Markus