17.10 - Default Session Roles for Directory Users - Advanced SQL Engine - Teradata Database

Teradata Vantage™ - Advanced SQL Engine Security Administration

Product
Advanced SQL Engine
Teradata Database
Release Number
17.10
Published
July 2021
Language
English (United States)
Last Update
2022-02-15
dita:mapPath
ppz1593203596223.ditamap
dita:ditavalPath
wrg1590696035526.ditaval
dita:id
zuy1472246340572
For directory users, determination of the default role is more complex:
  • All external roles mapped to the directory user are enabled.
  • If the directory user is not mapped to any roles, but mapped to a permanent database user, the default role for the mapped permanent user is enabled.
  • If the directory user is not mapped to either database roles or users, the directory user has PUBLIC privileges.
  • If you drop an external role while directory users are logged on, the logged on users with that role immediately lose the privileges granted to the role.