CONSTRAINT OVERRIDE Privileges | Teradata Vantage - 17.10 - OVERRIDE Privileges - Advanced SQL Engine - Teradata Database

Teradata Vantage™ - Advanced SQL Engine Security Administration

Product
Advanced SQL Engine
Teradata Database
Release Number
17.10
Release Date
July 2021
Content Type
Administration
Security
Publication ID
B035-1100-171K
Language
English (United States)

When a CONSTRAINT object defines no UDF for an SQL DML operation, only users with the OVERRIDE or OVERRIDE operation privilege can perform the operation.

Manual entry or update of a constraint column value requires that the user have the OVERRIDE privilege to bypass the automatic use (by the enforcing UDF) of the current_session parameter to set the constraint column value.

Users who perform load/export jobs may need OVERRIDE privileges to ensure that they can access all rows required to complete a load/export operation.

You can grant OVERRIDE privileges to users to bypass enforcement of RLS constraints. OVERRIDE privileges can apply to:
  • A database, table, or column
  • Some or all SQL DML operation types
  • Some or all security constraints
  • One or more users, roles, or external roles
  • The granting user must have the system level CONSTRAINT ASSIGNMENT privilege.
  • OVERRIDE privileges take effect at the next user request after they are granted/revoked.