SQL/MP Installation and Management Guide

ManualsBrandsHP ManualsServerHP NonStop G-Series

Planning Database Security and Recovery

HP NonStop SQL/MP Installation and Management Guide—523353-004

4-6

Authorization Requirements for Database

Operations

Table 4-1. Authorization Requirements (page 1 of 3)

Compile and Run Commands

Command Authority Required

SQLCOMP Read and purge authority for the program file; read and write

authority for the PROGRAMS, USAGES, and TRANSIDS table of

the catalog in which the program will be registered; and read and

write authority for the USAGES and TRANSIDS catalog tables of

any catalog that contains a description of a table or view that the

program uses.

Binder program Same authority requirements as for SQLCOMP.

RUN program file Read and execute authority for the program file; for dynamic

recompilation, read authority for any catalog with a description of a

table or view used by the program.

DCL Statements

Command Authority Required

FREE RESOURCES Read authority for affected objects.

LOCK TABLE

UNLOCK TABLE

Read authority for the table or view and all underlying tables of the

view.

DDL Statements

Statement Authority Required

DDL commands in

general

Read and write authority for affected catalogs unless otherwise

noted.

ALTER Local owner of the object, local super ID, local group manager, or

remote owner with purge authority for the object (or for the

underlying table if the object is an index).

To resecure program Read and write authority for the affected catalog and for the

program file.

To resecure catalog Either local owner or remote owner with purge authority for the

catalog.

COMMENT Local owner of the referenced table, view, or underlying table of the

index described by the comment; local super ID; local group

manager; or remote owner with purge authority for the object.

CREATE CATALOG Write authority for the SQL.CATALOGS table on the system that

contains the catalog.

CREATE

COLLATION

Read and write authority for the catalog in which the collation will be

registered and read authority for the collation source file.

CREATE

CONSTRAINT

Local owner of the underlying table, local super ID, local group

manager, or remote owner with purge authority for the table and

read authority for the underlying table.