Background documentationDefining Clear Authorizations for Users Locate this document in the navigation structure

 

To ensure that users have only the authorizations they need for their work, we recommend the following measures:

  • Create an authorization concept that specifies clear authorizations for individual users:

    • Define which database users are to have access to which data and database objects in the database.

    • Define which DBM operators are to carry out which administration tasks.

  • Create a separate database user for each person who works with the database.

Creating Database Users

Use the CREATE USER SQL statement.

SQL Reference Manual, CREATE USER Statement

Changing the Authorizations of Database Users

Use Database Studio to change the authorizations of database users for database objects (using SQL statements):

Database Studio, Working with SQL Statements: Overview

SQL Reference Manual, Authorization

Creating DBM Operators

Use Database Manager CLI:

Database Manager CLI:, user_create