The database level privileges that a user might be

This preview shows page 21 - 23 out of 36 pages.

We have textbook solutions for you!
The document you are viewing contains questions related to this textbook.
Guide to Networking Essentials
The document you are viewing contains questions related to this textbook.
Chapter 11 / Exercise 8
Guide to Networking Essentials
Tomsho
Expert Verified
The database-level privileges that a user might be given are:CREATETAB: Users can create tables within the database.BINDADD: Users can create packages in the database using the BINDcommand.CONNECT: Users can connect to the database.CREATE_NOT_FENCED: Users can create unfenced user-definedfunctions (UDFs).IMPLICIT_SCHEMA: Users can implicitly create schemas within thedatabase without using the CREATE SCHEMA command.LOAD: Users can load data into a tableQUIESCE_CONNECT: Users can access a database while it is in aquiesced state.CREATE_EXTERNAL_ROUTINE: Users can create a procedure for useby applications and other users of the database.Databaseobjectsinclude tables, views, indexes, schemas, and packages.Fortunately, most of the object-level privileges are self explanatory. The followingtable summarizes these privileges.Table 4. Summary of privilegesPrivilege nameRelevant objectsDescriptionCONTROLTable, View, Index, Package,Alias, Distinct Type, UserDefined function, SequenceProvides full authority on theobject. Users with this privilegecan also grant or revokeprivileges on the object to otherusers.DELETETable, ViewAllows users to delete recordsfrom the object.ibm.com/developerWorksdeveloperWorks®SecurityTrademarks© Copyright IBM Corporation 2006. All rights reserved.Page 21 of 36
We have textbook solutions for you!
The document you are viewing contains questions related to this textbook.
Guide to Networking Essentials
The document you are viewing contains questions related to this textbook.
Chapter 11 / Exercise 8
Guide to Networking Essentials
Tomsho
Expert Verified
INSERTTable, ViewAllows users to insert recordsinto the object via the INSERTor the IMPORT commands.SELECTTable, ViewProvides the ability to view thecontents of the object using theselect statement.UPDATETable, ViewAllows users to modify recordswithin the object using theupdate statement.ALTERTableAllows users to alter the objectdefinition using the alterstatement.INDEXTableAllows users to create indexeson the object using the createindex statement.REFERENCESTableProvides the ability to create ordrop foreign key constraints onthe object.BINDPackageAllows users to rebind existingpackages.EXECUTEPackage, Procedure, Function,MethodAllows users to executepackages and routines.ALTERINSchemaAllows users to modifydefinitions of objects within theschema.CREATEINSchemaAllows users to create objectswithin the schema.DROPINSchemaAllows users to drop objectswithin the schema.Information on object-level privileges is stored in the system catalog views. The viewnames aresyscat.tabauth,syscat.colauth,syscat.indexauth,syscat.schemaauth,syscat.routineauth, andsyscat.packageauth.Explicit privilegesPrivileges can beexplicitlygranted and revoked to users or groups using theGRANT and REVOKE commands. Let's take a look at how you can use thesecommands on various objects.While logged in as a user with Administrator authority on Windows, bring up twoDB2 command windows. Make sure that thedb2instancevariable is set toDB2inboth windows!

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture