# Databases and Schemas

The "Database Security" allows administrators to control access to database schemas. They can:

* **Grant/Deny Schema Access:** Define which users or roles can access specific schemas, ensuring only authorized individuals have view/edit permissions.
* **Bulk Permission Management: U**pdate user, role, and governance role permissions efficiently across multiple schemas.<br>

  <figure><img src="https://lh7-rt.googleusercontent.com/docsz/AD_4nXfsyzGOHoq2C1eVkXEXpTqJwBADd4l5Ji6GHPi9I3IMgEbzgPUI5QEDZvv76istVyCnjS2ubbBQnUNLArDLvh-4KakhPiP4PNzRAZ8S-xLz7qLm6xK1FkHR77hs2XJTP4IyF3diJw?key=HQ3_DdDr7Hskac9eJBoI-Xdv" alt=""><figcaption></figcaption></figure>

  Based on the selected Data Source (Connection Name), the corresponding databases are displayed along with the governance roles, users, and roles that have metadata and data permissions on those databases.

  **Database Permissions and Governance**

  The "Database Security" allows SGA and OE\_ADMIN roles to manage permissions and governance roles for databases.

  * **Individual Permissions:** Add, modify, or delete metadata and data access permissions for specific roles or users on a database.
  * **Bulk Permissions:** Simultaneously manage multiple databases' metadata and data access permissions on roles and users.
  * **Role-Based Access:** Set metadata and data permissions for roles based on the license type.
  * **User-Based Access:** Set metadata and data permissions for individual users based on the license type.
  * **Reflect to Tables:** Inherit database-level permissions for all tables within the database.
  * **Define Database Admin:** Assign a role as SGA for a database, granting them the highest permissions.

  **Governance Roles**

  * **Update Governance Roles (Individual/Bulk):** Modify governance roles for a single or multiple databases.
  * **Cascade Governance Roles:** Apply governance roles to all tables and table columns within the database.
  * **Delete Role Access:** Remove permission assignments for roles on individual or multiple databases.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.ovaledge.com/release8.1/administration/security/databases-and-schemas.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.