You can explicitly grant database privileges to users, roles, or databases. Users also gain other privileges without a formal grant. Before you decide which privileges to explicitly grant, make sure you understand the privileges users receive by other means.
| Privilege | Description |
|---|---|
| Implicit Privileges | |
| Ownership | Users who own perm space have certain implicit (ownership) privileges on any object contained in the space they own, even if they did not create the object. You can transfer ownership using the GIVE statement.
|
| Explicit privileges | |
| Automatic | When a user creates a database object, Advanced SQL Engine automatically grants privileges to:
|
| GRANT | You can grant privileges:
|
| Inherited | Privileges that a user acquires indirectly.
|
The system logs automatic and explicit privileges in exactly the same way, and are indistinguishable as to how they were acquired. All privileges except implicit privileges are stored in the data dictionary in the DBC.AccessRights table, by each user.
For a detailed discussion of privileges, see Teradata Vantage™ - Advanced SQL Engine Security Administration, B035-1100.