SQL/MP Reference Manual
HP NonStop SQL/MP Reference Manual—523352-013
S-9
Considerations—SECURE Command
PROGID [ ON | OFF ]
determines the process accessor ID of a program file when the program executes.
If you omit the PROGID option, the file attribute is not changed.
PROGID ON is the default if you specify PROGID but omit ON and OFF.
[ NO ] LISTALL
specifies whether you want SECURE to display the name of each resecured file or
object in this form:
object-type $volume.subvol.name SECURED
object-type is COLLATION, FILE, PROGRAM, PVIEW, SVIEW, or TABLE.
LISTALL is the default. NO LISTALL suppresses the display.
Considerations—SECURE Command
Authorization and accessibility requirements
To resecure an object or file, you must be the generalized owner of the object or
file. You must also have read and write authority to the catalogs for the objects
being resecured. To alter the security attributes of a program file, you must also
have read authority to the program file.
All partitions, dependent indexes, and dependent protection views for tables being
changed must be accessible when SECURE executes.
Effect on related objects
Altering the security or ownership of an object can affect related objects. For more
information, see the ALTER commands for specific types of objects (ALTER
TABLE, ALTER VIEW, and so forth).
Transactions, breaks, and failures
If you use SECURE within a user-defined TMF transaction, all resecuring of
audited objects is reversed if SECURE fails during execution.
If you use SECURE outside of a user-defined TMF transaction, SQL automatically
begins a system-defined transaction for each SQL object you resecure. In this
case, only the resecuring of a single object is undone if SECURE fails.
The SECURE operation is not protected by the TMF subsystem for an Enscribe
file.
ON Set the process accessor ID to the Guardian user ID of the owner of the
program.
OFF Set the process accessor ID to the Guardian user ID of the user who runs
the process.