Granting privileges by using the GRANT commands

Catalog Manager

 does not provide capabilities to its users beyond the authorization that they already have, whether implicit or explicit.

For example, if you have the authorization of a system administrator (SYSADM), you can perform system administrative actions through Catalog Manager. If you have not been given an explicit authorization with the GRANT option enabled, you cannot use Catalog Manager to grant that specific authorization to another user.

Because the object lists that Catalog Manager produces make it so easy to review authorizations that have been granted, we recommend that you generate and see these lists to avoid unexpected results before you issue GRANT commands.

To view a list of the objects on which you can grant privileges, on the Command line, enter CMD GRANT.

Important

The GRANT USAGE and GRANT DT commands display the Grant Distinct Type Privileges panel. The GRANT USE and GRANT BP commands display the Grant USE Privileges panel for buffer pools. While the GRANT USE command defaults to buffer pools, you can also use the following syntax for table spaces (GRANT USE ON TS) and storage groups (GRANT USE ON SG).
If a table list contains tables (T) and auxiliary tables (X), the GRANT ALL command excludes the auxiliary tables and the product issues a message. If the list contains only auxiliary tables (X), the GRANT ALL command allows only index authorizations to be granted. To ensure that the table list contains a specific type of table, issue the SEARCH TB command and specify the table type before you issue the GRANT ALL command on the table list.

This section contains the following topics:

Related topic

Managing-authorizations


 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*