SECURITY AUTHORIZATIONS - IBM Mainframe

The data control feature of SQL provides security for DB2 objects, data and resources with GRANT and REVOKE verbs which will be explained in details in later sections. As mentioned above you can administer group level or individual level of DB2 security.

The above figure shows the security authorizations and some of the terms given in the figure are explained below:

  • SYSADM - SYSADM or System Administration authority allows the holder to execute any operation that the system supports.
  • DBADM - DBADM or Database Administration authority on a specific database allows the holder to execute any operation that the system supports on that database.
  • DBCTRL - Database Control authority on specific database allows the holder to execute any operation that the system supports on that database except for operations that access the data content of that database. For example, utility operations such as 'RECOVER DATABASE' are allowed but SQL data manipulation operations are not.
  • DBMAINT - Database Maintenance authority on a specific database allows the holder to execute read-only maintenance functions such as 'IMAGE COPY' on that database.
  • SYSOPR - System Operator authority allows the holder to carry out console operator functions on the system such as starting and stopping system trace activities.

All rights reserved © 2018 Wisdom IT Services India Pvt. Ltd DMCA.com Protection Status

IBM Mainframe Topics