数据库引擎 |
系统权限 |
数据库角色 |
RDS for Db2 |
主用户被分配到 masterdba 组并被分配 master_user_role 。
SYSMON 、DBADM ,具有 DATAACCESS 和 ACCCESSCTRL 、BINDADD 、CONNECT 、CREATETAB 、CREATE_SECURE_OBJECT 、EXPLAIN 、IMPLICIT_SCHEMA 、LOAD 、SQLADM 、WLMADM
|
DBA , DBA_RESTRICTED ,
DEVELOPER , ROLE_NULLID_PACKAGES ,
ROLE_PROCEDURES , ROLE_TABLESPACES
有关更多信息,请参阅 Amazon RDS for Db2 默认角色。 |
RDS for MariaDB |
SELECT , INSERT , UPDATE ,
DELETE , CREATE , DROP ,
RELOAD , PROCESS ,
REFERENCES , INDEX , ALTER ,
SHOW DATABASES , CREATE TEMPORARY
TABLES , LOCK TABLES , EXECUTE ,
REPLICATION CLIENT , CREATE VIEW ,
SHOW VIEW , CREATE ROUTINE , ALTER
ROUTINE , CREATE USER , EVENT ,
TRIGGER , REPLICATION
SLAVE
|
— |
RDS for MySQL 8.0.36 及更高版本 |
SELECT , INSERT , UPDATE ,
DELETE , CREATE , DROP ,
RELOAD , PROCESS ,
REFERENCES , INDEX , ALTER ,
SHOW DATABASES , CREATE TEMPORARY
TABLES , LOCK TABLES , EXECUTE ,
REPLICATION SLAVE , REPLICATION CLIENT ,
CREATE VIEW , SHOW VIEW , CREATE
ROUTINE , ALTER ROUTINE , CREATE
USER , EVENT , TRIGGER ,
CREATE ROLE , DROP ROLE ,
APPLICATION_PASSWORD_ADMIN ,
ROLE_ADMIN , SET_USER_ID ,
XA_RECOVER_ADMIN
|
rds_superuser_role
有关 rds_superuser_role 的更多信息,请参阅 RDS for MySQL 的基于角色的权限模型。 |
低于 8.0.36 的 RDS for MySQL 版本 |
SELECT , INSERT , UPDATE ,
DELETE , CREATE , DROP ,
RELOAD , PROCESS ,
REFERENCES , INDEX , ALTER ,
SHOW DATABASES , CREATE TEMPORARY
TABLES , LOCK TABLES , EXECUTE ,
REPLICATION CLIENT , CREATE VIEW ,
SHOW VIEW , CREATE ROUTINE , ALTER
ROUTINE , CREATE USER , EVENT ,
TRIGGER , REPLICATION
SLAVE
|
— |
RDS for PostgreSQL |
CREATE ROLE , CREATE DB ,
PASSWORD VALID UNTIL INFINITY , CREATE
EXTENSION , ALTER EXTENSION , DROP
EXTENSION , CREATE TABLESPACE , ALTER
<OBJECT> OWNER , CHECKPOINT ,
PG_CANCEL_BACKEND() ,
PG_TERMINATE_BACKEND() , SELECT
PG_STAT_REPLICATION , EXECUTE
PG_STAT_STATEMENTS_RESET() , OWN
POSTGRES_FDW_HANDLER() , OWN
POSTGRES_FDW_VALIDATOR() , OWN POSTGRES_FDW ,
EXECUTE PG_BUFFERCACHE_PAGES() , SELECT
PG_BUFFERCACHE
|
RDS_SUPERUSER
有关 RDS_SUPERUSER 的更多信息,请参阅 了解 PostgreSQL 角色和权限。 |
RDS for Oracle |
ADMINISTER DATABASE TRIGGER , ALTER DATABASE
LINK , ALTER PUBLIC DATABASE LINK ,
AUDIT SYSTEM , CHANGE NOTIFICATION ,
DROP ANY DIRECTORY , EXEMPT ACCESS
POLICY , EXEMPT IDENTITY POLICY , EXEMPT
REDACTION POLICY , FLASHBACK ANY TABLE ,
GRANT ANY OBJECT PRIVILEGE , RESTRICTED
SESSION , SELECT ANY TABLE , UNLIMITED
TABLESPACE
|
DBA
DBA 角色不具有以下权限:
ALTER DATABASE , ALTER SYSTEM ,
CREATE ANY DIRECTORY , CREATE EXTERNAL
JOB , CREATE PLUGGABLE DATABASE ,
GRANT ANY PRIVILEGE , GRANT ANY
ROLE , READ ANY FILE GROUP
|
Amazon RDS for Microsoft SQL Server |
ADMINISTER BULK OPERATIONS , ALTER ANY
CONNECTION , ALTER ANY CREDENTIAL ,
ALTER ANY EVENT SESSION , ALTER ANY LINKED
SERVER , ALTER ANY LOGIN , ALTER ANY
SERVER AUDIT , ALTER ANY SERVER ROLE ,
ALTER SERVER STATE , ALTER TRACE ,
CONNECT SQL , CREATE ANY DATABASE ,
VIEW ANY DATABASE , VIEW ANY
DEFINITION , VIEW SERVER STATE , ALTER ON
ROLE SQLAgentOperatorRole
|
DB_OWNER (数据库级别角色)、PROCESSADMIN (服务器级别角色)、SETUPADMIN (服务器级别角色)、SQLAgentUserRole (数据库级别角色)
|