Results 1 to 3 of 3
  1. #1
    Join Date
    Nov 2005
    Location
    Toronto
    Posts
    65

    Unanswered: problem about privilege, hurry!

    what privilege should i give to user A if i want him access (update/insert/delete) and create/remove all the existing tables in the database without explicitly grant the privilege, and do not want him to create schemas?

    i'm thinking

    CONNECT TO SAMPLE;
    GRANT DBADM ON DATABASE TO USER TAOEWANG;
    REVOKE IMPLICIT_SCHEMA ON DATABASE FROM USER TAOEWANG;
    CONNECT RESET;

    not sure if it works.
    thanks in advance
    IBM Certified DBA for DB2 UDB
    IBM Certified Database Developer for DB2 UDB
    DB2 Tech Support, IBM Toronto Software Lab

  2. #2
    Join Date
    Aug 2001
    Location
    UK
    Posts
    4,650
    I believe you'll have to explicitly define privileges for access to individual table.
    Of course, revoke implicit schema if you do not want the user to create objects under new schema ..

    But once you grant DBADM, then the user implicitly becomes a super-power in the db and you will not be able to revoke a specific privilege(implicit schema) as you have mentioned

    HTH

    Sathyaram
    Visit the new-look IDUG Website , register to gain access to the excellent content.

  3. #3
    Join Date
    Nov 2005
    Location
    Toronto
    Posts
    65
    you are right it doesn't allow me to revoke IMPLICIT_SCHEMA once i got DBADM privilege.
    seems the only way is writing script to grant the privilege for individule tables. :-\
    IBM Certified DBA for DB2 UDB
    IBM Certified Database Developer for DB2 UDB
    DB2 Tech Support, IBM Toronto Software Lab

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •