|System User||Administrative Role|
|TDaas_Support||Problem and error investigation|
|TDaaS_Maint||Database software patching and configuration|
|TDaaS_Monitor||Monitoring resource usage|
|TDaaS_BAR||Backup and restore of customer databases|
|TDaaS_DB||Owning database for as-a-service objects such as stored procedures|
The passwords for As-A-Service users residing on managed cloud systems are securely managed with Teradata controlled vaults and services. For on-premises installations, the absence of the logon access right overrides any potential use of passwords.
SQL Access Rights
|System User||SQL Access Rights|
|TDaaS_BAR||DUMP and RESTORE on all databases|
|TDaaS_DB||SELECT on Dictionary objects referenced in its stored procedures|
Modifying As-A-Service Users
For managed cloud systems, As-A-Service users and their passwords are owned and managed exclusively by Teradata. Customer-controlled users, including the DBC user, are prevented from modifying them. Attempts to modify their passwords or access rights results in a failure indicating that As-A-Service user accounts cannot be altered. For systems not configured for managed cloud services including VantageCore, user DBC maintains full control over these users including the ability to drop them if desired.