Groups serve to simplify the assignment of rights. Ordinary privileges must be granted to a
single user, one at a time. This can be tedious if several users need to be assigned the same access to a variety of
Groups are created to avoid this problem. A group simply requires a name, and can be created empty (without users).
Once created, users who are intended to share common access
privileges are added into the group together, and are henceforth associated by their membership in that group.
Rights on database objects are then granted to the
, rather than to each
of the group. For a system with many users and databases, groups make managing rights
less of an administrative chore.
Note: Users may belong to any number of groups, or no groups at all.