User Types and Minimum Required Privileges
The following table describes the minimal privileges required by the three basic user types.
|
User Type |
Privilege Requirements |
|
General |
Database end-users who typically read data and execute macros in a read-only Views database. Assign the following privileges on a read-only Views database to all General users: The read-only Views database must have privileges on the Tables_Database, as shown in “Working with Table Access Privileges for Views” on page 127. |
|
Update |
Privileged database users who update data generally require the following privileges: Privileges required on a read-only Views database: Privileges required on an updatable Views database: Additional recommended privileges on an updatable Views database for database programmers: To provide update capability on views, you must grant the updatable Views database SELECT, INSERT, UPDATE, DELETE WITH GRANT OPTION privileges on the referenced tables in the Tables_Database, as shown in “Working with Table Access Privileges for Views” on page 127. |
|
Batch |
Data movers, who typically perform batch-level functions, such as: Batch users must have the following privileges on the Tables_Database: |
|
Assistant Administrators |
If you need one or more assistant administrators to help share administrative duties, they may require the same privileges as those granted to DBADMIN, or a subset of those privileges. Use the procedure shown in “Setting Up the Database Administrator User” on page 30 to create assistant administrators and grant the privileges they need. |
|
Database Programmers |
Database programmers may require administrator-level privileges within the development database to allow them to create and test database objects. Administrators can then deploy the objects to the production database. |