Access Control of ML Engine Analytic Functions - Teradata Vantage

Teradata Vantageā„¢ User Guide

Product
Teradata Vantage
Release Number
1.1
Published
May 2020
Language
English (United States)
Last Update
2020-05-28
dita:mapPath
ioz1543440393126.ditamap
dita:ditavalPath
jsj1481748799576.ditaval
dita:id
B700-4002
lifecycle
previous
Product Category
Teradata Vantage
A user with administrative privileges can grant or revoke access control of ML Engine analytic functions. For example:
To grant the trusted user td_ffe_svc_acct the privilege to set role to the permanent user username:
grant ctcontrol on username to td_ffe_svc_acct;
grant connect through td_ffe_svc_acct to permanent username without role;
To grant the privilege for username to execute functions from syslib, thereby giving access to the function mappings:
grant execute function on syslib to username with grant option;
The remaining grants allow username to export data, execute foreign functions, and import the results:
grant execute function on TD_SYSFNLIB.QGEXECUTEFOREIGNQUERY to username;
grant execute function on TD_SYSFNLIB.QGINITIATOREXPORT to username;
grant execute function on TD_SYSFNLIB.QGINITIATORIMPORT to username;
grant execute function on TD_SYSFNLIB.QGREMOTEEXPORT to username;
grant execute function on TD_SYSFNLIB.QGREMOTEIMPORT to username;
GRANT SELECT ON TD_SERVER_DB.coprocessor TO username;
GRANT INSERT ON TD_SERVER_DB.coprocessor TO username;
GRANT execute function on TD_SERVER_DB.coprocessor to username;