Setting up database permissions

When you have created the Oracle database that will be used for BigFix® Remote Control you will need to configure its permissions.

About this task

To configure the database permissions complete the following steps:

Procedure

  1. Run Oracle SQL*Plus.
    Windows® systems

    For example: Click Start > Programs > Oracle-OraHomeName > Application Development > SQL Plus.

    Alternatively, enter the following command at a command prompt.

    sqlplusw

    Log on using the database user name and password and click OK. See your database system administrator if you do not have this.

    For example:

    Username - system

    Password - dboracle

    Linux® systems
    Open a UNIX® or a Windows® terminal and enter the SQL*Plus command:

    sqlplus username / password @connect_identifier

    username and password are the database credentials required to connect to the database.

    connect_identifier is the connection required for your specific database.

    For example, @TRCDB as SYSDBA

    @//servername:port/DatabaseSID as SYSDBA

    servername is the server name or IP address of the system where your Oracle installation is located.

    port is the port of the system where your Oracle installation is located.

    DatabaseSID is the SID defined for the database you created.

    The SQL*Plus executable is installed in $ORACLE_HOME/bin, which is included in your operating system PATH environment variable. You may need to change directory to the $ORACLE_HOME/bin directory to start SQL*Plus.

  2. After SQL*Plus has started and connected to the database you can create the required users and grant permissions. There are two methods for creating users and granting permissions. Choose the appropriate method for creating the users.
    Create one user ID in Oracle which will also be used to log on to BigFix® Remote Control.

    Create a single user. The user must be called Asset. This user ID is used by BigFix® Remote Control to create and log on to the database, and use the database.

    Issue the following commands to create the user ASSET.

    1. connect SYS/PASSWORD@DATABASE AS SYSDBA;

      where PASSWORD is the default Oracle user password.

      and DATABASE is the database name that was defined when creating the database. For example, TRCBD.

    2. CREATE USER ASSET IDENTIFIED BY PASSWORD DEFAULT TABLESPACE users TEMPORARY TABLESPACE temp;
      Note: PASSWORD can be changed to whatever you require, for the user ASSET.
    3. GRANT UNLIMITED TABLESPACE TO ASSET;
    4. GRANT CONNECT TO ASSET;
    5. GRANT CREATE INDEXTYPE TO ASSET;
    6. GRANT CREATE SEQUENCE TO ASSET;
    7. GRANT CREATE TABLE TO ASSET;
    8. GRANT CREATE TRIGGER TO ASSET;
    9. GRANT CREATE INDEXTYPE TO ASSET;
    10. GRANT CREATE PROCEDURE TO ASSET;
    11. GRANT CREATE VIEW TO ASSET;
    12. GRANT ANALYZE ANY TO ASSET;
    Create a separate user ID to log on to BigFix® Remote Control

    Create 2 users. User 1 must be called Asset. This user has no specific permissions and is used only as a schema name. User 2 is the main user and can be called anything you require. This user is used by BigFix® Remote Control to create and logon to the database, and use the database. Use the assistant tool to create user TRCDBU.

    Complete the following steps to create the required permissions for user TRCDBU.

    1. GRANT UNLIMITED TABLESPACE TO ASSET;
    2. GRANT UNLIMITED TABLESPACE TO TRCDBU;
    3. GRANT ALTER ANY INDEX TO TRCDBU ;
    4. GRANT ALTER ANY INDEXTYPE TO TRCDBU ;
    5. GRANT ALTER ANY PROCEDURE TO TRCDBU ;
    6. GRANT ALTER ANY SEQUENCE TO TRCDBU ;
    7. GRANT ALTER ANY TABLE TO TRCDBU ;
    8. GRANT ALTER ANY TRIGGER TO TRCDBU ;
    9. GRANT COMMENT ANY TABLE TO TRCDBU ;
    10. GRANT CREATE ANY INDEX TO TRCDBU ;
    11. GRANT CREATE ANY INDEXTYPE TO TRCDBU ;
    12. GRANT CREATE ANY SEQUENCE TO TRCDBU ;
    13. GRANT CREATE ANY TABLE TO TRCDBU ;
    14. GRANT CREATE ANY TRIGGER TO TRCDBU ;
    15. GRANT CREATE INDEXTYPE TO TRCDBU ;
    16. GRANT CREATE PROCEDURE TO TRCDBU ;
    17. GRANT CREATE SEQUENCE TO TRCDBU ;
    18. GRANT CREATE TABLE TO TRCDBU ;
    19. GRANT CREATE TRIGGER TO TRCDBU ;
    20. GRANT CREATE VIEW TO TRCDBU ;
    21. GRANT DELETE ANY TABLE TO TRCDBU ;
    22. GRANT INSERT ANY TABLE TO TRCDBU;
    23. GRANT DROP ANY INDEX TO TRCDBU ;
    24. GRANT DROP ANY INDEXTYPE TO TRCDBU ;
    25. GRANT DROP ANY PROCEDURE TO TRCDBU ;
    26. GRANT DROP ANY SEQUENCE TO TRCDBU ;
    27. GRANT DROP ANY TABLE TO TRCDBU ;
    28. GRANT DROP ANY TRIGGER TO TRCDBU ;
    29. GRANT EXECUTE ANY INDEXTYPE TO TRCDBU ;
    30. GRANT EXECUTE ANY LIBRARY TO TRCDBU ;
    31. GRANT EXECUTE ANY TYPE TO TRCDBU ;
    32. GRANT SELECT ANY SEQUENCE TO TRCDBU ;
    33. GRANT SELECT ANY TABLE TO TRCDBU ;
    34. GRANT UNLIMITED TABLESPACE TO TRCDBU ;
    35. GRANT UPDATE ANY TABLE TO TRCDBU;
    36. GRANT ANALYZE ANY TO TRCDBU;