I have a federated database (7.2 FP11, AIX 4.3) that seems to work
fine in most aspects. Today I'm trying to add a new user mapping with
the following statement:
create user mapping for mngdrq01 server opencases options
(remote_authid 'mngdrq01', remote_password 'xxxxx')
Querying the federated database works fine as long as the user
mentioned above is part of the sysadm group or has dbadm authority. As
soon as those authorities are removed, the federated database gives me
an error that said user ID has no select permissions.
As the remote database is also a UDB database on the same physical
machine, I have validated that the user ID does have select
permissions when logging directly into the remote database.
The documentation for CREATE USER MAPPING mentions that if the auth
name and the auth ID are different, then SYSADM or DBADM is required,
but if they are the same, then no privileges are required. Am I
misinterpreting this statement?
I don't want this particular user to have either DBADM or SYSADM, just
select privileges. Has anyone else been able to get this to work
without either of the admin privileges?
Thanks,
Evan
3  3324 
Perhaps you need to grant select to the non-sysadm/non-dbadm user on the
nickname itself in the federated database.
-Harold
Evan Smith wrote: I have a federated database (7.2 FP11, AIX 4.3) that seems to work
fine in most aspects. Today I'm trying to add a new user mapping with
the following statement:
create user mapping for mngdrq01 server opencases options
(remote_authid 'mngdrq01', remote_password 'xxxxx')
Querying the federated database works fine as long as the user
mentioned above is part of the sysadm group or has dbadm authority. As
soon as those authorities are removed, the federated database gives me
an error that said user ID has no select permissions.
As the remote database is also a UDB database on the same physical
machine, I have validated that the user ID does have select
permissions when logging directly into the remote database.
The documentation for CREATE USER MAPPING mentions that if the auth
name and the auth ID are different, then SYSADM or DBADM is required,
but if they are the same, then no privileges are required. Am I
misinterpreting this statement?
I don't want this particular user to have either DBADM or SYSADM, just
select privileges. Has anyone else been able to get this to work
without either of the admin privileges?
Thanks,
Evan
You, sir, were correct. I had never granted permissions on a nickname
before. But this is all it took.
Thanks,
Evan
"Harold Lee" <ha*****@nospamplease.us.ibm.com> wrote in message
news:c4***********@gazette.almaden.ibm.com... Perhaps you need to grant select to the non-sysadm/non-dbadm user on the
nickname itself in the federated database.
-Harold
Evan Smith wrote: I have a federated database (7.2 FP11, AIX 4.3) that seems to work
fine in most aspects. Today I'm trying to add a new user mapping with
the following statement:
create user mapping for mngdrq01 server opencases options
(remote_authid 'mngdrq01', remote_password 'xxxxx')
Querying the federated database works fine as long as the user
mentioned above is part of the sysadm group or has dbadm authority. As
soon as those authorities are removed, the federated database gives me
an error that said user ID has no select permissions.
As the remote database is also a UDB database on the same physical
machine, I have validated that the user ID does have select
permissions when logging directly into the remote database.
The documentation for CREATE USER MAPPING mentions that if the auth
name and the auth ID are different, then SYSADM or DBADM is required,
but if they are the same, then no privileges are required. Am I
misinterpreting this statement?
I don't want this particular user to have either DBADM or SYSADM, just
select privileges. Has anyone else been able to get this to work
without either of the admin privileges?
Thanks,
Evan
Evan Smith wrote: You, sir, were correct. I had never granted permissions on a nickname
before. But this is all it took.
Perhaps you need to grant select to the non-sysadm/non-dbadm user on the
nickname itself in the federated database.
Some of the 7.x documentation was a bit confused on this point, as I
recall. To make matters worse, the db2cc from that period of time had
no way to set privileges on nicknames either.
My head still has a flat spot from banging it against the wall... This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: pintihar |
last post by:
Hi,
As a follow on from an earlier post I have another question about
xslt.
Is it possible to create the stylsheet programatically? Is this
sensible? In the first phase I needed to map element...
|
by: Melissa |
last post by:
I have a frontend file named CustomerApp and backend file named CustomerData.
CustomerApp is at C:\Customer Database and CustomerData is at S:\Customer
Database. Could someone help me with the code...
|
by: Michael Tissington |
last post by:
I'm trying to add some extensions to IIS on the properties, home directory,
config screen.
I must be missing something because the OK button is always disabled ...
Any ideas please ?
--...
|
by: Agnes |
last post by:
In textbox, I know I can set e.handled = false in keypressevent , So I can
restrict the user to input some invalid character or disallow the user to
input any thing
Now, in datagrid, there are 3...
|
by: jakobsgaard |
last post by:
It is possible to Map a certificate to a Active Directory User Account from
DotNet?
Please provide an example.
Best regards,
Ejnar Jakobsgaard...
|
by: DotDidIt |
last post by:
Hi Everybody!
I developed a Web service with IBM RAD v 6.0.1.
After creating the WSDL file i have tried to develop a .Net client.
But by using wsdl.exe (1.1.4322) to create a .net c# proxy i...
|
by: ThunderMusic |
last post by:
Hi,
I'd need to find (or develop) a control of a map (worldwide if possible)
where a user can click and drag to select an area by distance from the click
point or using a square area (user's...
|
by: MuZZy |
last post by:
Hi,
I am looking to find a way to get currently logged in user's object GUID
without querying ActiveDirectory. For example, when i log in to my
laptop from home, I'm not on the office network so...
|
by: zgh1970 |
last post by:
Hi, All,
We have a database on db2 udb aix.
The database has federated server to db2 mainframe.
Now We have already catalog database of db2/400 on the db2 UDB aix
server.
I tried to create new...
|
by: Charles Arthur |
last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
|
by: ryjfgjl |
last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
|
by: emmanuelkatto |
last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud.
Please let me know.
Thanks!
Emmanuel
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
| |
