It is assumed that the DBA has access to the DBA_USERS table, along with the
ALTER USER privilege. If the DBA has the DBA role, then these two conditions are satisfied.
The first step is to retrieve the encrypted password for the user, which is stored in the table
DBA_USERS:
SQL> select password from dba_users
2 where username = 'SKING';
PASSWORD
------------------------------
83C7CBD27A941428
1 row selected.
Save this password using cut and paste in a GUI environment, or save it in a text file to
retrieve later. The next step is to temporarily change the user??™s password and then log in using
the temporary password:
SQL> alter user sking identified by temp_pass;
User altered.
SQL> connect sking/temp_pass@dw;
Connected.
292 Oracle Database 11g DBA Handbook
At this point, you can debug the application from SKING??™s point of view. Once you are done
debugging, change the password back using the undocumented by values clause of alter user:
SQL> alter user sking identified by values '83C7CBD27A941428';
User altered.
User-Related Data Dictionary Views
A number of data dictionary views contain information related to users and characteristics of
users. Table 9-3 lists the most common views and tables.
Database Authorization Methods
Once a user is authenticated with the database, the next step is to determine what types of objects,
privileges, and resources the user is permitted to access or use. In this section, we??™ll review how
profiles can control not only how passwords are managed but also how profiles can put limits on
various types of system resources.
Pages:
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492