Jul 24, 2009. DBMS_NETWORK_ACL_ADMIN.CREATE_ACL('netacl.xml', 'Allow usage to the UTL network packages', 'FOO', TRUE, 'connect'); -- Now grant privilege to resolve DNS names for FOO, -- and then grant connect and resolve to user BAR DBMS_NETWORK_ACL_ADMIN.ADD_PRIVILEGE('netacl.xml','FOO'.

Using DBMS_NETWORK_ACL_ADMIN • Examples Example1 Grant the connect and resolve privileges for host www.us.oracle.com to SCOTT. BEGIN DBMS_NETWORK_ACL_ADMIN.CREATE_ACL(acl =>'www.xml', description =>'WWW ACL', principal =>'SCOTT', is_grant =>true, privilege =>'connect'); DBMS_NETWORK_ACL_ADMIN.ADD_PRIVILEGE(acl =>'www.xml', principal =>'SCOTT', is_grant =>true, privilege =>'resolve'); DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL(acl =>'www.xml', host =>'www.us.oracle.com'); END; / COMMIT; Example 2 Grant the resolve privilege for www.us.oracle.com to ADAMS. Since an ACL for www.us.oracle.com exists already, just add the privilege for ADAMS. BEGIN DBMS_NETWORK_ACL_ADMIN.ADD_PRIVILEGE(acl =>'www.xml', principal =>'ADAMS', is_grant =>true, privilege =>'resolve'); END; / COMMIT; Example 3 Assign the ACL www.xml to www-proxy.us.oracle.com so that SCOTT and ADAMS can access www-proxy.us.oracle.com also.

BEGIN DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL(acl =>'www.xml', host =>'www-proxy.us.oracle.com'); END; / COMMIT; Example 4 Unassign the ACL from www.us.oracle.com so that no access to www.us.oracle.com is allowed. BEGIN DBMS_NETWORK_ACL_ADMIN.UNASSIGN_ACL(host =>'www.us.oracle.com'); END; / COMMIT; Example 5 The in the DBMS_NETWORK_ACL_UTLILITY package returns all the domains a host belongs to. It can be used in conjunction with the in this package to determine the privilege assignments affecting a user's permission to access a network host. The function in the DBMS_NETWORK_ACL_UTILITY package returns the level of each domain and can be used to order the ACL assignments by their precedence. Table 80-2 ADD_PRIVILEGE Function Parameters Parameter Description acl Name of the ACL.

Relative path will be relative to '/sys/acls'. Principal Principal (database user or role) to whom the privilege is granted or denied.

Case sensitive. Is_grant Network privilege to be granted or denied - 'connect resolve' (case sensitive). A database user needs the connect privilege to an external network host computer if he or she is connecting using the UTL_TCP, UTL_HTTP, UTL_SMTP, and UTL_MAIL utility packages. To resolve a host name that was given a host IP address, or the IP address that was given a host name, with the UTL_INADDR package, grant the database user the resolve privilege. Privilege Network privilege to be granted or denied position Position (1-based) of the ACE.

If a non- NULL value is given, the privilege will be added in a new ACE at the given position and there should not be another ACE for the principal with the same is_grant (grant or deny). If a NULL value is given, the privilege will be added to the ACE matching the principal and the is_grant if one exists, or to the end of the ACL if the matching ACE does not exist. Start_date Start date of the access control entry (ACE). When specified, the ACE will be valid only on and after the specified date. The start_date will be ignored if the privilege is added to an existing ACE.

End_state End date of the access control entry (ACE). When specified, the ACE will expire after the specified date. The end_date must be greater than or equal to the start_date. The end_date will be ignored if the privilege is added to an existing ACE. Usage Notes To remove the permission, use the. Examples BEGIN DBMS_NETWORK_ACL_ADMIN.ADD_PRIVILEGE( acl =>'us-oracle-com-permissions.xml', principal =>'ST_USERS', is_grant =>TRUE, privilege =>'connect') END; ASSIGN_ACL Procedure This procedure assigns an access control list (ACL) to a host computer, domain, or IP subnet, and if specified, the TCP port range.

Syntax DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL ( acl IN VARCHAR2, host IN VARCHAR2, lower_port IN PLS_INTEGER DEFAULT NULL, upper_port IN PLS_INTEGER DEFAULT NULL); Parameters. 2012 Ktm 500 Exc Service Manual. Table 80-3 ASSIGN_ACL Function Parameters Parameter Description acl Name of the ACL. Relative path will be relative to ' /sys/acls'. Host Host to which the ACL will be assigned. The host can be the name or the IP address of the host.