Explicit Privileges | SQL Data Control Language | Teradata Vantage - Explicit Privileges - Analytics Database - Teradata Vantage

SQL Data Control Language

Deployment
VantageCloud
VantageCore
Edition
Enterprise
IntelliFlex
VMware
Product
Analytics Database
Teradata Vantage
Release Number
17.20
Published
June 2022
Language
English (United States)
Last Update
2023-07-11
dita:mapPath
sgu1628111251052.ditamap
dita:ditavalPath
qkf1628213546010.ditaval
dita:id
dvv1472243528022
lifecycle
latest
Product Category
Teradata Vantageā„¢
Privilege Description
Automatic When a user creates a database object, Vantage automatically grants privileges to:
  • The creator of the object
  • A newly created user or database
GRANT You can GRANT privileges:
  • Directly to a user or database
  • To a role, then GRANT membership in the role to one or more users
  • To an external role, then map the role to one or more groups of directory users
Inherited Privileges that a user acquires indirectly:
  • All users automatically have the privileges of PUBLIC, a role-like collection of default privileges. You can also grant or revoke privileges for PUBLIC.
  • A user inherits all the privileges granted to any roles of which the user is a member.
  • Directory users inherit the privileges of the database users and external roles to which they are mapped.
Assigned Security constraints define user access to table rows protected by a corresponding security constraint column.
You can assign the security constraints in a CONSTRAINT object to a:
  • User, by specifying the CONSTRAINT object in a:
    • CREATE USER or MODIFY USER statement
    • CREATE PROFILE or MODIFY PROFILE statement, and then assigning the profile to the user
    Constraint OVERRIDE privileges, which allow a user to bypass row level security protection, are granted using the GRANT OVERRIDE CONSTRAINT statement.
  • Table, by defining a constraint column that is named for the CONSTRAINT object in a CREATE TABLE or ALTER TABLE statement.