DBC.AccLogTbl Entries | Teradata Vantage - DBC.AccLogTbl Entries - Analytics Database - Teradata Vantage

Security Administration

Deployment
VantageCloud
VantageCore
Edition
Enterprise
IntelliFlex
VMware
Product
Analytics Database
Teradata Vantage
Release Number
17.20
Published
June 2022
Language
English (United States)
Last Update
2024-04-05
dita:mapPath
hjo1628096075471.ditamap
dita:ditavalPath
qkf1628213546010.ditaval
dita:id
zuy1472246340572
lifecycle
latest
Product Category
Teradata Vantage™

Teradata Vantage generates a log entry only if a logging rule is present and active for the object, action, or user for which it performs a privilege check. When the database finds one or more active rules, it logs the associated privilege checks in the DBC.AccLogTbl table for each user request that matches a rule.

A log entry does not necessarily indicate that the statement was run, instead, it indicates that the system checked on the privileges required to run the statement. The corresponding row in DBC.AccLogTbl shows an entry of either “denied” or “granted.”

Log entries may contain one or two user names:
  • The log entry always shows the logon username for the user that initiates the session.
  • The log entry may show a second name for some entries. For example, if a user submits an EXECUTE statement for a macro, the system checks the database privileges of the logon username for the EXECUTE statement, and also checks the database privileges required of the macro owner for individual statements within the macro. The log entry lists both the logon user and the macro owner.