473,320 Members | 2,035 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,320 software developers and data experts.

Is dual-mode authentication possible under DB2?

DB2ers,

I am a newbie to DB2 but have enough experience with other database
servers. Many database servers such as SQLServer offer a dual-mode
authentication mechanism, that is, either you can use standard Windows
authentication or specify a username that is not necessarily a Windows
account name. From reading various posts, it appears this is not
possible for DB2. Is this correct?

I did try to create a new database user. Control Center->All
databases->SAMPLE->Users and Groups object->Add user. User creation
worked. I also see that no Windows account was created with the
username I specified. This is confusing. Seems like my previous
assumption is not valid. If this is not a Windows account, where is the
password stored? I don't see any option to change password.

Thank you in advance for enlightening me.

Pradeep

Nov 12 '05 #1
4 1852
Hi,
As much as I know (DB2 7.2), DB2 relies on Windows user management. We
have created unprivilidged local windows users (DB2 does not support
domains, if it is not running on PDC or BDC) to control access over
database objects. The rights are given via the DB2 groups for Sysadmin
for instance and via GRANT command.

Please note that the user account names are restricted to be compatible
over the different plattforms.

Please read the documentation for further information!

Wolfram

Nov 12 '05 #2
In fact DB2 authentication is based on EXTERNAL MECHANISM, which in
particular can be Windows users and passwords. But DB2 also support
Kerberos, os users on application server machine or any authentication
mechanism implemented as GSS-API.

Look for the AUTHENTICATION instance parameter.

-- Artur Wronski

Nov 12 '05 #3
Pradeep,

the user mapping is used only for federation (accessing tables in
remote databases) for the remote machines.
Got nothing to do with your local database authentication.

Still, you can set authentication=client, so the password is checked on
the client. whatever PUBLIC can do then everybody can do - but this is
soooo risky and unsafe - you actually don't want that.

check on authentication methods allowed.
http://publib.boulder.ibm.com/infoce...n/c0005435.htm

Juliane

Nov 12 '05 #4
Guys,

Thank you very much for your help.

Pradeep

Nov 12 '05 #5

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

9
by: Tomer Ben-David | last post by:
Hi I have a big j2ee appliction that was so forth run on a single cpu machine. I have tested it on a dual cpu machine, its running much slower (about X3 times slower). I know that...
3
by: Yaroslav K. Kravchishin | last post by:
Oracle 7.0.1 Server When I type SQL> select sysdate from dual; SYSDATE --------- 01-OCT-03 01-OCT-03 2 rows selected.
5
by: John Dalberg | last post by:
I am planning to build a server to be used as a SQL Server and web server. Right now I can only use a single box for both. I have read some threads were dual processors are having problems with...
25
by: John Gibson | last post by:
Hi, all. I need to upgrade my dual Xeon PostgreSQL engine. Assuming similar memory and disk sub-systems, I am considering a Quad Xeon system vs. a Dual Itanium for PostgreSQL. I believe that...
2
by: webwarrior | last post by:
Hi, Is there a reason why we have to pay more for licensing for a different kind of processor? Why are we not charged for the Hyperthreading on some processors also. If Oracle is really...
0
by: DolphinDB | last post by:
Tired of spending countless mintues downsampling your data? Look no further! In this article, you’ll learn how to efficiently downsample 6.48 billion high-frequency records to 61 million...
0
by: Vimpel783 | last post by:
Hello! Guys, I found this code on the Internet, but I need to modify it a little. It works well, the problem is this: Data is sent from only one cell, in this case B5, but it is necessary that data...
0
by: jfyes | last post by:
As a hardware engineer, after seeing that CEIWEI recently released a new tool for Modbus RTU Over TCP/UDP filtering and monitoring, I actively went to its official website to take a look. It turned...
1
by: PapaRatzi | last post by:
Hello, I am teaching myself MS Access forms design and Visual Basic. I've created a table to capture a list of Top 30 singles and forms to capture new entries. The final step is a form (unbound)...
1
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
1
by: Defcon1945 | last post by:
I'm trying to learn Python using Pycharm but import shutil doesn't work
1
by: Shællîpôpï 09 | last post by:
If u are using a keypad phone, how do u turn on JavaScript, to access features like WhatsApp, Facebook, Instagram....
0
by: af34tf | last post by:
Hi Guys, I have a domain whose name is BytesLimited.com, and I want to sell it. Does anyone know about platforms that allow me to list my domain in auction for free. Thank you
0
by: Faith0G | last post by:
I am starting a new it consulting business and it's been a while since I setup a new website. Is wordpress still the best web based software for hosting a 5 page website? The webpages will be...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.