Project and Portfolio Management Practitioners Forum
cancel

Javasyspriv role with PPM 8

Highlighted
Johannes Y
Respected Contributor.

Javasyspriv role with PPM 8

Hi all,

We are starting to look into a PPM8 upgrade and notice that the schema owner now should have the JAVASYSPRIV role. This roles gives access to ALL system files of the db server with read/write/delete/execute permissions. This is not compliant with our security poilicies and Oracle states themselves that "Both roles still exist within this release for backward compatibility. However, Oracle recommends that you specify each permission explicitly, rather than utilize these roles" and Sun writes "The <> permission with write action is especially dangerous. This grants permission to write to the entire file system."

Have anyone any idea on how to restrict these rights, ie what files/folders does PPM8 actually have to be able to edit/delete/execute?
2 REPLIES
Johannes Y
Respected Contributor.

Re: Javasyspriv role with PPM 8

Answering my own question.

After having HP R&D have a look at this issue, the feedback is that it actually is not needed to have any of the JAVASYSPRIV roles. The manual has not been updated to reflect this though.

/Johannes
Johannes Y
Respected Contributor.

Re: Javasyspriv role with PPM 8

Closing this thread