To grant roles to users, roles, or login profiles, use:
grant role role_name [where pred_expression] to {username | rolename | login_profile_name }
where:
role_name – is the name of a system- or user-defined role that the system security officer is granting to a user or a role..
where pred_expression – is a SQL condition that must be satisfied when the named role is activated. pred_expression may be used only when granting a role to username or login_profile_name.
to username | rolename | login_profile_name – identifies the name of the login, role or login profile to which you are granting the role.
All roles listed in the grant statement are granted to all grantees. If you grant one role to another, it creates a role hierarchy.
For example, to grant Susan, Mary, and John the “financial_analyst” and the “payroll_specialist” roles, enter:
grant role financial_analyst, payroll_specialist to susan, mary, john
For more information, see “Predicated role activation”.