Limited support BMC provides limited support for this version of the product. As a result, BMC no longer accepts comments in this space. If you encounter problems with the product version or the space, contact BMC Support.BMC recommends upgrading to the latest version of the product. To see documentation for that version, see BMC AMI Catalog Manager for Db2 13.1.

Managing authorizations

Managing authorizations within Db2 is one of the most important activities for a database or system administrator. Db2 provides a sophisticated system that enables you to control access to data resources at many levels. Due to the power and flexibility of this authorization system, the task of managing Db2 security can be complex.

Catalog Manager makes it easy to find authorization information and to generate GRANT and REVOKE commands.

Db2 authorization information, except for that which applies to the INSTALL SYSADM, is maintained in tables in the Db2 catalog. Catalog Manager supports the management of that information through familiar Interactive System Productivity Facility (ISPF) panels. As with other Catalog Manager functions, you do not need to memorize Structured Query Language (SQL) statements or the names of the Db2 catalog tables or columns.

Catalog Manager provides several tools to help you manage authorizations:

  • The COPYAUTHS command enables you to copy privileges from one user ID to another user ID and from one object to another object easily, saving you the time and effort of issuing multiple GRANT commands.
  • The TRANSFER command enables you to transfer ownership of an object from a user to another user or role.
  • The Cascade Report shows you possible effects of a REVOKE action.
  • The Reassign Grants option prevents you from losing authorizations when you execute a REVOKE by enabling you to assign those authorizations to another user ID.
  • The Build SQLID before GRANT switch controls whether Catalog Manager generates a SET CURRENT SQLID = grantor statement before each GRANT statement.

This section contains the following topics:


GUID-47E5A770-A760-442A-9F5A-06872981813D-low.png

For more information, view the Quick Course Managing Authorizations.

Related topic

Setting-Catalog-Manager-switches

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*