Database User Privileges Required for Database Management
This section provides the list of database user privileges required to perform advanced diagnostics and administrative tasks for External Databases and Oracle Cloud Databases in Database Management.
This section and its topics detail the privileges required to use the Database Management features available for External Databases and Oracle Cloud Databases. This information is not applicable if you're using Database Management for Autonomous Databases.
In Database Management, you can set the following preferred credentials to provide default connectivity to the Managed Database based on user roles and the tasks to be performed:
- Basic monitoring
- Advanced diagnostics
- Administration
The Basic monitoring credential is set automatically for a monitoring user
such as DBSNMP
, when Database Management is
enabled. It includes the minimum privileges required to collect metrics and view the
database fleet summary and Managed Database details. You also have the option of using a
SQL script to create a monitoring user with the minimum set of privileges required to
monitor Managed Databases in Database Management. For
information on the SQL script, see Creating the Oracle Database
Monitoring Credentials for Database Management (Doc ID 2857604.1) in My Oracle Support.
The Advanced diagnostics and Administration preferred credentials include advanced and management privileges to use diagnostic tools and perform administrative tasks. The topics in this section list the user privileges required to perform these tasks. You also have the option of using a SQL script to create a user with the set of privileges required to perform advanced diagnostics and administrative tasks for Managed Databases in Database Management. For information on the SQL script, see Creating the Oracle Database Management Advanced Diagnostics User and Administration User (Doc ID 2978493.1) in My Oracle Support.
For information on preferred credentials, see Set Preferred Credentials.
Advanced Diagnostics Credential – User Privileges
The following table lists the database user privileges available as part of the Advanced diagnostics credential. If the Advanced diagnostics credential is set for a Managed Database, then it can be used to automatically use diagnostic tools such as Performance Hub and AWR Explorer and for the read operations in the Managed Database. For a list of the tasks that can be performed with the Advanced diagnostics preferred credential, see Additional Information on Preferred Credentials in Database Management.
Database Management Feature | Required Privileges |
---|---|
Performance Hub |
|
AWR Explorer |
|
Alert log |
|
SQL tuning advisor |
|
SQL tuning sets |
|
Optimizer statistics |
|
SQL plan management |
|
Tablespaces |
|
Users |
|
Database parameters |
|
Administration Credential – User Privileges
The following table lists the database user privileges available as part of the Administration credential (in addition to the privileges available for the Advanced diagnostics credential). If the Administration credential is set for a Managed Database, then it can be used to autofill database credentials to perform the write operations in the Managed Database. For a list of the tasks that can be performed with the Administration preferred credential, see Additional Information on Preferred Credentials in Database Management.
Database Management Feature | Required Privileges |
---|---|
Performance Hub |
|
SQL tuning advisor |
|
SQL tuning sets |
|
SQL plan management |
Note: |
Tablespaces |
Note: |
Database parameters |
Note: |