This preface contains:
Changes in Oracle Database 18c
The following are changes in Oracle Label Security Administrator’s Guide for Oracle Database 18c.
LBACSYS User Created by Default as a Schema-Only Account
Starting with this release, the
LBACSYS user account is create as a schema-only account.
Users cannot login to a schema-only account until an authentication method is configured for the account by using the
ALTER USER statement.
LBACSYS is only used as a login account initially to provision named Oracle Label Security administrators. Because users do not need to log in to this account (except for initial provisioning),
LBACSYS should remain a schema-only account so that default passwords do not need to be changed or rotated.
This feature meets requirements for users who must be able to create schemas for object ownership without actually allowing the schema owner to log in to the database. Examples of environments that have this need include some Oracle schemas as well as some customer schemas.
Deprecated Columns in Oracle Label Security Views
Starting in this release, four Oracle Label Security data dictionary views have deprecated columns.
|Data Dictionary View
The information in the
USER_LABELS columns is redundant. This information is displayed in other columns in these data dictionary views.