CREATE/REPLACE AUTHORIZATION SQL Statements | Teradata Vantage - CREATE AUTHORIZATION and REPLACE AUTHORIZATION - Teradata Vantage - Analytics Database

SQL Data Definition Language Syntax and Examples
Deployment
VantageCloud
VantageCore
Edition
VMware
Enterprise
IntelliFlex
Product
Analytics Database
Teradata Vantage
Release Number
17.20
Published
June 2022
ft:locale
en-US
ft:lastEdition
2025-11-22
dita:mapPath
jco1628111346878.ditamap
dita:ditavalPath
qkf1628213546010.ditaval
dita:id
mdr1472255012272
lifecycle
latest
Product Category
Teradata Vantageā„¢

Creates or replaces an authorization object.

An authorization object associates a database user with an OS platform user identification, allowing an external routine to run in secure mode using the context, privileges, and access control granted to the specified OS user. External routines include UDFs, table UDFs, methods, and external SQL procedures.

You specify an authorization in the external security clause of a foreign table or function mapping (see CREATE FOREIGN TABLE or CREATE FUNCTION MAPPING and REPLACE FUNCTION MAPPING) or in the AUTHORIZATION clause of the READ_NOS table operator (see Teradata Vantageā„¢ - SQL Operators and User-Defined Functions, B035-1210).

If an AWS IAM credential provides access, you can omit the AUTHORIZATION clause.

For information about the CREATE AUTHORIZATION trusted extensions that you use to access remote systems with QueryGrid, see your Teradata QueryGrid documentation.

ANSI Compliance

CREATE AUTHORIZATION is a Teradata extension to the ANSI SQL:2011 standard.

Required Privileges

You must have either the CREATE/REPLACE AUTHORIZATION or AUTHORIZATION privilege to use the CREATE/REPLACE AUTHORIZATION statement.

Privileges Granted Automatically

DROP AUTHORIZATION to the creator of the authorization.