what SQL statements can the DBA use to implement discretionary access control for users
Answers
Answer:
SQL supports discretionary access control through the following commands. – GRANT command - gives privileges to users – REVOKE command - takes away privileges. ii. Mandatory Access Control (MAC) Mandatory access control is based on system wide policies that cannot be changed by individual users.
Answer:
There are two commands for SQL statements which can be used for implementing discretionary access control
- GRANT command
- REVOKE command
Explanation:
What is discretionary access control for users ⇒ Discretionary access control verifies whether the user who is attempting to perform an operation has been granted the required privileges to perform that operation.
GRANT command ⇒ SQL GRANT is a command used to provide access or privileges on the database objects to the users.
Syntax for GRANT command ⇒
GRANT privilege_name
ON object_name
TO {user_name |PUBLIC |role_name}
[WITH GRANT OPTION];
REVOKE command ⇒ The REVOKE command removes user access rights or privileges to the database objects.
Syntax for REVOKE command ⇒
REVOKE privilege_name
ON object_name
FROM {user_name |PUBLIC |role_name}