Granting SYSDBA privileges to a user

DBA Roles

Scenario: I have the DBA role and am able to connect as SYSDBA, but I am not able to connect as SYSOPER:

SQL> connect pubs/pubs
 Connected.
SQL> drop user tom; 

User dropped. 

SQL> create user tom identified by ton1234; 
User created. 

SQL> grant dba to tom
SQL> connect tom/tom1234 as sysdba;
 Connected.
 
SQL> connect tom/tom1234 as sysoper;
ERROR:
ORA-01031: insufficient privileges 

Warning: You are no longer connected to ORACLE.
 SQL> 
SQL> connect pubs/pubs;
Connected.
SQL> 
SQL> grant sysoper to tom;
grant sysoper to tom
 *
ERROR at line 1:
ORA-01031: insufficient privileges 

SQL> 
SQL> connect tom/tom1234 as sysoper;
ERROR:
ORA-01031: insufficient privileges

Question: What is the difference between the dba roles

sysdba system privilege and
sysoper system privilege?

Answer: The DBA role does not include the SYSDBA or SYSOPER system privileges.
The SYSDBA and SYSOPER are special administrative privileges that allow an administrator to perform basic database administration tasks, such as

creating the database,
instance startup and shutdown,
drop a database,
open and mount a database, or
place database in archivelog mode.

1) The SYSOPER privilege allows a user to perform the following, routine functions:

Startup the database
Shutdown the database
Open and close the database
Recover the database (not time-based)
Connect when the database is in restricted session mode
Stop and start archive logging
Manually archive a log file
View the current archive log status

2) The SYSDBA privilege allows a user to do anything, including the following:

Anything that SYSOPER can do,
time based recovery,
create a new database

SYSDBA also covers all system privileges on the user.