Hi All;
On a DB2 v9.1 (DPF) - RH Linux server, we have a local userid EXECMSTR
that has dbadm privileges and executes all batch processing to load
and maintain a large data warehouse application. The database server
allows authentication client for some applications. It appears that
this configuration would allow a local (client) user to be defined as
EXECMSTR and come into the database server with dbadm priveleges!
Obviously, this fits into the category of "a bad thing"...
What am I missing? There must be some way to support authentication
client for certain users and not for others. Can someone point me to
what I need to look at? I have spent ALOT of time with several
different security-related config parms and can't get a good handle on
the solution to this. Thanks very much!
Pete H