Use the CREATE USER statement to assign security constraints to a new user. For example:
CREATE USER Joe_Smith AS PERM = 1e6, PASSWORD=JoePassword, CONSTRAINT = Classification_Level (Secret, Unclassified DEFAULT), CONSTRAINT = Classification_Country (US, UK, GER);
where:
Syntax Element | Description |
---|---|
Classification_Level (Secret, Unclassified DEFAULT) | Names a hierarchical security CONSTRAINT object and assigns the applicable name:value pairs (levels) according to user needs. In this example the user has two classification levels:
|
Classification_Country (US, UK, GER) | Names a non-hierarchical security CONSTRAINT object and assigns the applicable name:value pairs (compartments) to the user. In this example the user is from the US, but also coordinates operations with the UK and Germany. |
A new or changed security constraint assignment takes effect at the next user logon.