User Guide : 10. Administering Users, Groups, Roles, and Profiles : Creating Users, Groups, Roles, and Profiles : Create a Role
 
Share this page                  
Create a Role
You create user roles using the New Role dialog (see Role Dialog). You can access this dialog in the following ways:
From the Roles folder context menu: New Role
From an existing role node context menu: New Role
From the Database menu tab: Role, New Role (see Database Tab)
To create a new role
1. Open the New Role dialog in one of the ways described previously.
The New Role dialog opens.
Set general options:
1. In the “Select a page” portlet, click General.
General options are displayed on the right side of the dialog. For more information, see General Page (Role).
2. Enter a name for the role.
Note:  You cannot create a role if the role name is disallowed. Disallowed names include all privilege type names (for example, db_admin).
3. (Optional) Specify how the user’s credentials should be authenticated (see General Page (Role)). If you selected DBMS, enter and confirm the user’s password.
Set privileges:
1. In the “Select a page” portlet, click Privileges.
Privilege settings are displayed on the right side of the dialog. For more information, see Privileges Page (Role).
2. Set the requested and default privileges for users in this role.
Select grantees:
1. In the “Select a page” portlet, click Grantees.
Users are displayed on the right side of the dialog. For more information, see Grantees Page (Role).
2. Select the users you want to assign to this role.
Set access options:
1. In the “Select a page” portlet, click Access.
Access settings are displayed on the right side of the dialog. For more information, see Access Page (Role).
2. Select the non-granted databases users in this role should have access to.
Set miscellaneous options:
1. In the “Select a page” portlet, click Options.
Miscellaneous settings are displayed on the right side of the dialog. For more information, see Options Page (Role).
2. Specify whether security auditing is enabled for all events and query text.
Save your changes:
Click OK to save your changes.
The new role appears under the Roles folder in the Instance Explorer.
You can also assign roles to users from the Roles page of the User dialog (see Roles Page (User)). You can also grant or revoke roles for multiple users (see Grant or Revoke Roles for Multiple Users).