The permission requirements listed in the Identity Manager Installation Guide indicate that some of the permissions required for Installation User and Administrative User also require that the "with grant option" option be assigned.
The feedback from Database Administrators indicates a concern for this option regarding the permissions provided to the account users as this will allow the account user to provide other users with permissions.
Explanation of why "with grant option" is required for some of the permissions for Installation user and Administrative user as follows:
1. Installation user: This user will create additional roles and users during the installation process and will require granting some of the permissions to these new objects during the process.
2. Administrative user: This user is used by the One Identity Manager components. For example, the Configuration Wizard, DBQueue Processor, or the One Identity Manager Service. In the process of usage, this user similarly will create additional roles and users, and grant permissions to these.