Scribd
Upload
5 views

Presentation DbMS

Basic concepts of Database management

Uploaded by

hello world
Copyright
© © All Rights Reserved
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
5 views

Presentation DbMS

Basic concepts of Database management

Uploaded by

hello world
Copyright
© © All Rights Reserved
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 22

PRESENTATION

Topic:
USER MANAGEMENT

Laiba Hamid

071179
Introduction to Database
User Management:
Database user management refers to the process of creating,
maintaining, and controlling access to user accounts within a
database management system (DBMS). It involves tasks such as
creating user accounts, assigning privileges, managing user groups,
and enforcing security policies.

Importance of User Management in Databases:

 Ensures data security by controlling who can access, modify, and


delete data.
 Facilitates compliance with regulatory requirements and industry
standards.
 Helps in organizing users into logical groups for easier
management and administration.
 Enables efficient utilization of system resources by assigning
appropriate privileges to users.
Creating Users:
The CREATE USER statement creates a new user account in a
database. This function can be used to create a user account in a
database with a password, without a password, or as member of a
group.

Creating users involves defining a new account within the database


system.
 Users are typically identified by a username and authenticated using
a password.
 Syntax for creating a user in SQL:
sql CREATE USER username IDENTIFIED BY password;
 Example:
Demonstrating how to create a new user:
sql CREATE USER 'john' IDENTIFIED BY 'password123';
User Privileges:
 User privileges determine the actions that a user can
perform on database objects.
 Common privileges include SELECT, INSERT, UPDATE,
DELETE, and EXECUTE.
 Different types of privileges:
SELECT: Allows the user to retrieve data from a table.
INSERT: Permits the user to add new records to a table.
UPDATE: Enables the user to modify existing records in a
table.
DELETE: Grants the user the ability to remove records from
a table.

How privileges control access to database objects:


- Privileges are granted to users or user groups on specific
database objects such as tables, views, or procedures.
- Users can only perform actions on objects for which they
have been granted the necessary privileges.
Assigning Privileges to Users:
The GRANT (privilege) statement grants privileges on the database as a
whole or on individual tables, views, sequences or procedures. It controls
access to database objects, roles, and DBMS resources.
Example:
If someone in authority grants you something, or if something is granted to
you, you are allowed to have it.

 Granting privileges involves giving users the authority to perform specific


operations on database objects.
 Database administrators use the GRANT statement to assign privileges
to users.
 Syntax for granting privileges in SQL:
sql GRANT privilege_list ON object_name TO user_name;
 Example:
demonstrating how to grant privileges to a user:
sql GRANT SELECT, INSERT ON employees TO 'john';
Revoking Privileges from
Users:
To revoke privileges on database objects, you must have ACCESS CTRL
authority, SECADM authority, or CONTROL privilege on that object. Table
space privileges can also be revoked by users with SYSADM and
SYSCTRL authority. Note that holding a privilege WITH GRANT OPTION
is not sufficient to revoke that privilege.
The Revoke command to remove previously assigned privileges.

 Revoking privileges involves removing previously granted permissions


from users.
 Database administrators use the REVOKE statement to revoke
privileges from users.
 Syntax for revoking privileges in SQL:
sql REVOKE privilege_list ON object_name FROM user_name;
 Example:
Demonstrating how to revoke privileges from a user:
sql REVOKE INSERT ON employees FROM 'john';
User Groups:
User groups are a collection of users that share similar functions or roles in an
organization. Groups make it much easier to manage members and their access
requirements. User groups, also known as roles, are collections of users with similar
access requirements. Grouping users simplifies user management tasks and
improves security administration.

Benefits of using user groups for user management:


- Streamlines the assignment of privileges by applying them to the group rather than
individual users.
- Simplifies user administration by managing permissions at the group level.
- Enhances security by ensuring consistent access control policies across users
with similar roles.

Syntax for creating user groups in SQL:


sql CREATE ROLE group_name;
Assigning Users to Groups:
A user can belong to many groups, and a group can contain many users.
You set up permissions by adding groups and defining the permissions for
each group. Users then acquire permissions by becoming a member of one
or more groups.

 Assigning users to groups involves associating individual user accounts


with specific roles or groups.

 Users inherit the privileges assigned to the group to which they belong.

 Syntax for assigning users to groups in SQL:


sql GRANT group_name TO user_name;
 Example:
Demonstrating how to assign a user to a group:
sql GRANT admin_role TO 'john';
Granting Privileges to Groups:

 Granting privileges to groups allows all members of the group to access and
manipulate database objects based on their role requirements.

 Database administrators use the GRANT statement to assign privileges to user


groups.

 Syntax for granting privileges to groups in SQL:


sql GRANT privilege_list ON object_name TO group_name;

 Example:
Demonstrating how to grant privileges to a group:
sql GRANT SELECT, INSERT ON employees TO admin_role;
Revoking Privileges from
Groups:
 Revoking privileges from groups involves removing previously granted
permissions from all members of the group.

 Database administrators use the REVOKE statement to revoke privileges from


user groups.

 Syntax for revoking privileges from groups in SQL:


sql REVOKE privilege_list ON object_name FROM group_name;

 Example:
Demonstrating how to revoke privileges from a group:
sql REVOKE INSERT ON employees FROM admin_role;
Best Practices for Database
User Management:
Regularly review and update user permissions to align with
changing business requirements.

Follow the principle of least privilege to grant users only the


permissions necessary to perform their job functions.

Implement strong authentication mechanisms, such as multi-factor


authentication, to secure user accounts.

Monitor user activity and audit logs to detect and respond to


unauthorized access attempts.

Provide training and documentation to users on security best


practices and data handling procedures.
Conclusions:
Recap of key points covered in the presentation:

Database user management involves creating users, assigning privileges,


managing user groups, and enforcing security policies.
Effective user management enhances data security, compliance, and system
efficiency.
Importance of implementing robust user management practices to safeguard
sensitive information and maintain the integrity of the database system.
Database users are categorized based on their interaction with the database.
There are seven types of database users in DBMS.
Database users are individuals who interact with data. The access and
permissions within a database depends on their function and tasks. Database
users knows the value of data security, privacy, and integrity, as well as how to
query data from databases using Structured Query Language(SQL) or other
tools.

You might also like