July 27, 2024

A technical troubleshooting blog about Oracle with other Databases & Cloud Technologies.

Lockdown Profile: 

1 min read

From 12c onwards we have new feature called lockdown profile to control the PDB level activities. It can be created in CDB container. 

SQL> show con_name

CON_NAME
------------------------------
CDB$ROOT


SQL> create lockdown profile APP_DEV_PROFILE;

Lockdown Profile created.


SQL> select PROFILE_NAME,STATUS from dba_lockdown_profiles;

PROFILE_NAME STATUS
-------------------- -------
APP_DEV_PROFILE EMPTY
PRIVATE_DBAAS EMPTY
PUBLIC_DBAAS EMPTY
SAAS EMPTY


SQL> alter lockdown profile APP_DEV_PROFILE disable statement = ('ALTER SYSTEM') clause all except = ('KILL SESSION');

Lockdown Profile altered.


SQL> select PROFILE_NAME,STATUS from dba_lockdown_profiles;

PROFILE_NAME STATUS
-------------------- -------
APP_DEV_PROFILE DISABLE
APP_DEV_PROFILE ENABLE
PRIVATE_DBAAS EMPTY
PUBLIC_DBAAS EMPTY
SAAS EMPTY

Note: once we set this lockdown profile to PDB. Particular PDB will not support any of the alert system options except killing session.

More Articles

1 min read

ORA-1654: unable to extend index in tablespace

2 min read

Command to Check Archivelog Size

3 min read

Error: ORA-16698: member has a LOG_ARCHIVE_DEST_n parameter with SERVICE attribute set (Dataguard Broker Configuration)

You may have missed

1 min read

ORA-1654: unable to extend index in tablespace

2 min read

Command to Check Archivelog Size

3 min read

Error: ORA-16698: member has a LOG_ARCHIVE_DEST_n parameter with SERVICE attribute set (Dataguard Broker Configuration)

Hubble Uncovering the Secrets of the Quintuplet Cluster 2 min read

Deploy CNPG Postgres on Kubernetes Cluster !!