Online Documentation for SQL Manager for DB2

Creating/editing role


Use the Property tab of Role Editor to create/edit a role and specify its definition.

 

Role Editor - Editing role definition

 

 

Name

Name of the role to be created.

 

These allow you to define common database privileges that can be granted to the role. Select/deselect the options to grant/revoke the corresponding privileges.

 

Grant...

 

CheckBox Database administrator authority

Grants the database administrator authority and all other database authorities except for security administrator authority to the role owner.

 

CheckBox Authority to access the database

Enable this option to allow the role owner to connect to the database.

 

CheckBox Authority to create database tables

Enable this option to allow the role owner to create tables in the database. The role owner also gains the CONTROL privilege on the tables he creates.

 

CheckBox Authority to implicitly create schemas

Enable this option to automatically create a schema when the role owner creates a table specifying not existing schema.

 

CheckBox Authority to create packages

Enable this option to allow the role owner to create packages in the database. The role owner also gains the CONTROL privilege on the packages he creates.

 

CheckBox Authority to register routines which are executed in the database manager

Enable this option to allow the role owner to register routines that execute in the database manager's process. Care must be taken that routines so registered will not have adverse side effects.

 

CheckBox Authority to use the LOAD utility

Enable this option to allow the role owner to use LOAD utility.

 

CheckBox Authority to register external routines

Enable the option to allow the role owner to register external routines. Care must be taken that routines so registered will not have adverse side effects.

 

CheckBox Authority to access the database while it is quiesced

Enable this option to allow the role owner to access the database while it is in quiesced mode.

 

CheckBox Authority to grant and revoke all object level privileges and some of DB level privileges

Enable the option to grant the role owner access control authority. This authority can't be granted to PUBLIC. Server version 9.7 required.

 

CheckBox Authority to access data

Enable this option to allow the role owner to select, insert, update, delete, and load data, to execute any package or routine (except audit routines). This authority can't be granted to PUBLIC. Server version 9.7 required.

 

CheckBox Authority to explain statements

This authority allows the role owner to explain, prepare, and describe dynamic and static SQL statements without requiring access to data. Server version 9.7 required.

 

CheckBox Authority to manage SQL statement execution

Enable the option to allow the role owner to create, drop, flush, and set event monitors; to explain, prepare, and describe dynamic and static SQL statements without requiring access to data; to flush optimization profile and package cache; to execute the runstats utility.

 

CheckBox Security administrator authority

Enable the option to grant the role owner the security administrator authority. Server version 9.5 required.

 

CheckBox Authority to manage workloads

Enable this option to allow the role owner to manage workloads. Server version 9.7 required.