Profiles determine certain system resources available to member users, and can also set password control parameters.
- From an administrative client, log on as user DBC.
- Create the profile for the database administrator, user DBADM. To do this, specify values for the following fields and controls:
Do not enter values at this time for fields not listed.
| Field | Description |
|---|---|
| Profile Name | Required. The name of the database administrator profile. Administrative procedures in this publication use the name DBADM for the administrator profile. User DBADM will be the only member of this profile. Because of space and ownership concerns, you must create a separate profile for other administrative users.
|
| Account | Optional. An account string defines the following characteristics for profile member sessions in the database:
Recommendation: Define at least one account string per profile. If necessary, you can add an account string later using a MODIFY PROFILE statement. For more about accounts, see Setting Up Your Administrative Environment: All DBAs. |
| Password | Required. The temporary password for DBADMIN. Recommendation: Create a simple temporary password. Each user is prompted to change the temporary password to a permanent, private password upon first logon to the database. |
| Spool Space | Optional. The spool space specification is only a limit to the amount of space available for intermediate query results or formatted answer sets to queries and volatile tables. The system borrows spool space for a user from unused permanent space anywhere in the system. Recommendation:Set this value equal to the amount of space in the Spool_Reserve database. |
| Temporary Space | Not applicable. Required only when using global temporary tables and other advanced features. Recommendation: Temporary space specification is not normally needed. Specification of temporary space requires that you develop a strategy for use of the advanced features that need temporary space. If necessary, you can add a temporary space specification later with a MODIFY USER statement. |
| Comment | Optional. Use this space to describe the profile or note contingencies. |
| Expire | Required. The number in days until a password expires. Set this value to a positive, non-zero number to cause passwords to expire. Recommendation: 90 days is a common password expiration interval. |
| Other password controls | Optional. Recommendations: Set other password controls globally by updating DBC.SysSecDefaults if required by your site security policy. Be sure to review the default password control values to determine whether they conform to your site security requirements. For information on the default password control values and how to change them, see Chapter 6: “Managing Database Passwords,” in Security Administration. |
For example:
CREATE PROFILE "dbadm" AS SPOOL=spool_space TEMPORARY=NULL ACCOUNT=('$H-DBC-MANAGER',' account__str2',' account_str3') DEFAULT DATABASE="All" PASSWORD = (EXPIRE=90,MINCHAR=NULL,MAXCHAR=NULL,MAXLOGONATTEMPTS=NULL,LOCKEDUSEREXPIRE=NULL, REUSE=NULL,DIGITS=NULL,RESTRICTWORDS=NULL,SPECCHAR=NULL);
Reference Information
| Step | Topic | Resources for Further Information |
|---|---|---|
| 2 | Setting up accounts | Working with Users, Roles, and Profiles: Operational DBAs. |
| The default password control values and how to change them | Security Administration |