16.10 - About Row Level Security - Teradata Database

Teradata Database Security Administration

Product
Teradata Database
Release Number
16.10
Release Date
June 2017
Content Type
Administration
Security
Publication ID
B035-1100-161K
Language
English (United States)

Access to Teradata Database objects is controlled primarily by object level user privileges. Object level privileges are discretionary, that is, object owners automatically have the right to grant access on any owned object to any other user.

In addition to object level privileges, you can use row level security (RLS) to control user access by table row and by SQL operation. RLS access rules are based on the comparison of the RLS access capabilities of each user and the RLS access requirements for each row.

Object owners do not have discretionary privileges to grant row access to other users. Only users with security constraint administrative privileges can manage row level access controls.

When multiple Teradata Database systems are managed by Unity, the same row level security constraints and access privileges should exist on all database systems.