what privilege should i give to user A if i want him access (update/insert/delete) and create/remove all the existing tables in the database without explicitly grant the privilege, and do not want him to create schemas?

i'm thinking

CONNECT TO SAMPLE;
GRANT DBADM ON DATABASE TO USER TAOEWANG;
REVOKE IMPLICIT_SCHEMA ON DATABASE FROM USER TAOEWANG;
CONNECT RESET;

not sure if it works.
thanks in advance

I believe you'll have to explicitly define privileges for access to individual table.
Of course, revoke implicit schema if you do not want the user to create objects under new schema ..

But once you grant DBADM, then the user implicitly becomes a super-power in the db and you will not be able to revoke a specific privilege(implicit schema) as you have mentioned

HTH

Sathyaram

you are right it doesn't allow me to revoke IMPLICIT_SCHEMA once i got DBADM privilege.
seems the only way is writing script to grant the privilege for individule tables. :-\