ROLE Usage Notes - Teradata Vantage

Teradata® VantageCloud Lake

Deployment

VantageCloud

Edition

Lake

Product

Teradata Vantage

Published

January 2023

Language

English (United States)

Last Update

2024-04-03

dita:mapPath

phg1621910019905.ditamap

dita:ditavalPath

pny1626732985837.ditaval

dita:id

phg1621910019905

The session logon can be not directory-based or directory-based.

If you are accessing Vantage through a proxy connection, and you want to get the current role of the proxy user, use the CURRENT_ROLE built-in function.

Session Logon is Not Directory-Based

If the session logon is not directory-based, see the following table.

Current Role for the Session	Result Value
Existing role	Name of the role
ALL	'ALL'
NONE or NULL	NULL

Session Logon is Directory-Based

If the session logon is directory-based, see the following table.

Session	Result Value
Assigned a set of directory-managed roles and does not change the current role	'EXTERNAL'
Uses a SET ROLE EXTERNAL statement	'EXTERNAL'
All of the following: Does not have an assigned set of directory-managed roles. Maps to a permanent user that has a default database-managed role. Does not change the current role.	Name of the default role of the permanent user
Uses a SET ROLE role_name statement, where role_name is either a directory-managed or database-managed role	Name of the specified role
Uses a SET ROLE ALL statement	'ALL'
All of the following: Not assigned a set of directory-managed roles. Does not change the current role, and one of the following condition is true: Directory-based logon does not map to a permanent user. Permanent user that the directory-based logon maps to does not have a default database-managed role.	NULL
Uses a SET ROLE NONE statement
Uses a SET ROLE NULL statement