16.10 - Granting DBQL Administrative Privileges to Other Users - Teradata Database

Teradata Database Administration

Product
Teradata Database
Release Number
16.10
Release Date
April 2018
Content Type
Administration
Publication ID
B035-1093-161K
Language
English (United States)

You need the EXECUTE privilege on the special macro DBQLAccessMacro to enable and disable query logging. DBQLAccessMacro is created by DIPVIEWSV of the DIP utility.

The system users DBC and SystemFE have the EXECUTE privilege on DBQLAccessMacro and can grant it to others when needed. If you want other users, such as your administrative user, to be able to execute DBQLAccessMacro, follow this procedure:

  1. Log on as user DBC (or SystemFE).
  2. List the contents of database DBC to see if the DBQLAccessMacro, DBQLRuleTbl, and DBQLRuleCountTbl have been created:
    HELP DATABASE DBC ;

    The DBQL components listed in DBQL Tables, Views, and Macros should be reported.

  3. Grant the following privileges to your database administrator user:
    GRANT EXECUTE ON DBC.DBQLAccessMacro TO DBADMIN ;
    GRANT SELECT ON DBC.DBQLRULESV TO DBADMIN ;
  4. Log off the DBC or SystemFE session.
  5. Log on again as user DBADMIN.
  6. Define query logging rules for one or more users, one or more accounts, or applications using BEGIN QUERY LOGGING or REPLACE QUERY LOGGING statements. (For full syntax, see SQL Data Definition Language.)
  7. Check the DBQLRules[V] view to see if the rules are correct:
    SELECT * FROM DBC.DBQLRulesV ;

    If you find an error, submit an REPLACE QUERY LOGGING statement for that user.