2.7.2 User privileges
User privileges are privileges that are required to manage HADB users and connect to the HADB server.
The following two types of user privileges exist:
-
DBA privileges
-
CONNECT privileges
- Organization of this subsection
(1) DBA privilege
The user privilege required for managing an HADB user and granting user privileges is called the DBA privilege.
An HADB user who has the DBA privilege can execute the following operations:
-
HADB user management
-
Creating an HADB user
-
Changing the user information of a created HADB user#
-
Deleting a created HADB user#
-
-
User privilege and schema operation privilege management
-
Granting user privileges and the schema operation privilege to HADB users
-
Revoking user privileges and the schema operation privilege granted to HADB users#
-
-
Granting audit privileges
-
Granting audit privileges (audit admin privilege and audit viewer privilege) to HADB users
-
- #
-
You cannot perform the following operations in relation to an HADB user who has the audit admin privilege:
-
Changing the user information of the HADB user
-
Deleting the HADB user
-
Revoking user privileges and the schema operation privilege
-
An HADB user who has the DBA privilege can reference all information stored in dictionary tables (except for SQL_AUDITS) and system tables.
(2) CONNECT privilege
The user privilege that an HADB user must have to connect to the HADB server is called the CONNECT privilege.
If an HADB user does not have the CONNECT privilege, that HADB user cannot connect to the HADB server, even if he or she has the DBA privilege, schema operation privilege, audit privilege, or access privilege.