Can I use VPD policies to restrict access to data for non-Database Application users ? Is it a requirement for the users to have an Oracle Database Id ?
Thanks a lot in advance.
If you don't trust default Oracle security mechanisms, why would you trust VPD more?
Do you mean you want to use VPD in an environment where all your session share one schema logon? Like most three tier app's? If so, no problem: set the policy as CONTEXT_SENSITIVE, and pick up the real user's ID through sys_context calls.
Oracle Certified Master DBA