Permission to execute file administration statements

To provide additional database security, a separate level of security controls creating and dropping databases. The -gu database server command-line option controls who can execute the file administration statements.

There are four levels of permission for the use of file administration statements. These levels are: all, none, DBA, and utility_db. The utility_db level permits only a person able to connect to the utility database to use the file administration statements.

On Sun, HP, Linux, and Windows platforms, to permit only the user knowing the utility database password to connect to the utility database and create or delete databases, start the server at the command line with the following command:

start_asiq -n testsrv -gu utility_db

On AIX, to permit only the user knowing the utility database password to connect to the utility database and create or delete databases, start the server at the command line with the following command:

start_asiq -n testsrv -gu utility_db -iqmt 256

Assuming that the utility database password has been set during installation to ASIQ, the following command starts the Interactive SQL utility as a client application, connects to the server named testsrv, loads the utility database and connects the user.

          dbisql -c "uid=DBA;pwd=ASIQ;dbn=utility_db;eng=testsrv" -jConnect

Executing this statement successfully connects you to the utility database. You are now able to create and delete databases.