Pluggable Database Administrator Access
The pluggable database administrator has access limited to the pluggable database. These steps are a best practice recommendation on how to create a Pluggable Database Administrator.
Creating a Pluggable Database Administrator Account
To create a pluggable database administrator account:
Granting Pluggable Database Administrator Database Privileges
Database privileges must be granted by the CDB administrator for the required PDB user. These privileges will be reflected as a Named Credential.
Creating Named Credentials
A PDB administrator can not create their own named credentials. To create one, a super administrator (or a privileged Administrator with the system resource privilege) needs to create and then grant the named credential to the PDBA. The named credential is granted the View privilege on the named credential so that the PDBA does not know or see the contents of the named credential.
To create a named credential:
- From the main menu, select Setup, then select Security, finally click Named Credential.
- Click Create.
- In Target Type, select Pluggable Database and in Target Name select the PDB name.
- In Access Control, select the PDB administrator that was created for this named credential. Grant View privileges.
- Click Save.
Note:
The PDB administrator has to be created in the target PDB by the CDB administrator and have the required database privileges granted as applicable.