?
Solved

Users & Schemas

Posted on 2003-03-16
2
Medium Priority
?
667 Views
Last Modified: 2012-06-21
1) I have DB2 EE 7.2.0 server installed on Win NT4/2000.

2) We have the following schemas listed in sample database of DB2 instance:
DB2ADMIN, DB2DBG, NULLID, SYSCAT, SYSFUN, SYSIBM & SYSSTAT. These are for grouping of objects.

3) We have the following DB Users: DB2ADMIN and DB Groups: PUBLIC & ADMINISTRATORS. I believe that DB2ADMIN belongs to ADMINISTRATORS group.

4) Also when a user creates the first object a corresponding schema is created.

5) DB2ADMIN created DB2ADMIN. Who created the rest of the schemas. Do they belong to group PUBLIC. We can only use them with dot operator to access their objects while connected to DB2ADMIN. Or we can directly connect to them in some way.

6) If we create more users at OS level like db2admin giving the set of OS level 2+4 privileges, how can we use them i.e. in what all situations do we need to create more OS level users.

7) db2admin was invloved during installation. Other OS users created later on are independent of DB2 server. How do we associate them with it. Which objects do NULLID and DB2DBG group & what is the user that they map to.
0
Comment
Question by:k_murli_krishna
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 13

Accepted Solution

by:
ghp7000 earned 400 total points
ID: 8154766
If you knew how NULLID, SYSFUN, SYSIBM were created, I mean the exact code, then you would have an easy hack into the database. These schemas are created when you do CREATE DATABASE. You need not concern yourself with these schemas:
NULLID, the binder of all base packages for DB2.
SYSIBM, the schema owner of all the system catalog tables for which all the SYSTAT and SYSCAT tables are based. You cannot update, insert, delete from the SYSIBM schema tables.
DB2DBG are for the debug tables for Stored Procedure Builder.

If I am user Harry and connect to the database and issue:
create table harry, the fully qualified table name is HARRY.HARRY. I am the owner of the table and have control over the table. User Harry may grant control or specific privlidges to other users.
If you want all users to connect to the database with same username/password, you do not need more users at OS level.Please explain what 2+4 privileges mean.
0
 
LVL 17

Author Comment

by:k_murli_krishna
ID: 8156798
Please have a look at my points 3) & 4) and give me confirmation. The 2+4 menas:
A user account that will be used to perform the installation. The account you are logged in as must:
A) Be defined locally
B) Belong to the Local Administrator's group
Have the following advanced user rights:
a) Act as part of the operating system
b) Create token object
c) Increase quotas
d) Replace a process level token
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

November 2009 Recently, a question came up in the DB2 forum regarding the date format in DB2 UDB for AS/400.  Apparently in UDB LUW (Linux/Unix/Windows), the date format is a system-wide setting, and is not controlled at the session level.  I'm n…
Recursive SQL in UDB/LUW (you can use 'recursive' and 'SQL' in the same sentence) A growing number of database queries lend themselves to recursive solutions.  It's not always easy to spot when recursion is called for, especially for people una…
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…
In this video, Percona Solution Engineer Dimitri Vanoverbeke discusses why you want to use at least three nodes in a database cluster. To discuss how Percona Consulting can help with your design and architecture needs for your database and infras…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question