Content Platform Engine, Version 5.2.1   Database:  DB2 LUW        

Content Platform Engine DB2 for Linux, UNIX and Windows account

An operating system account on the database server that Content Platform Engine uses to access DB2® for Linux, UNIX and Windows databases containing the GCD and object stores.

Content Platform Engine database user (DB2 for Linux, UNIX and Windows)
Unique identifier
cpe_db_user
Description
The IT administrator (ITA) creates this operating system account, after which the database administrator (DBA) grants it additional database permissions. Separate accounts can be used for each object store, but are not required.

Do not create databases with the RESTRICTIVE option.

Start of changeMinimum required permissionsEnd of change
Start of changeUse your database tools to grant the following database permissions to this user account:
  • GRANT CONNECT ON DATABASE TO cpe_db_user
  • GRANT CREATETAB ON DATABASE TO cpe_db_user
  • GRANT USE OF TABLESPACE UserTablespace TO cpe_db_user
  • GRANT USE OF TABLESPACE UserTemporaryTablespace TO cpe_db_user
  • GRANT SELECT on SYSIBM.SYSVERSIONS TO cpe_db_user
  • GRANT SELECT on SYSCAT.DATATYPES TO cpe_db_user
  • GRANT SELECT on SYSCAT.INDEXES TO cpe_db_user
  • GRANT SELECT on SYSIBM.SYSDUMMY1 TO cpe_db_user
  • GRANT USAGE on workload SYSDEFAULTUSERWORKLOAD TO cpe_db_user
  • GRANT IMPLICIT_SCHEMA on DATABASE TO cpe_db_user

For added security in a shared database environment, you can remove the Connect privilege from the Public group.

Grant the following permissions if you want to use dedicated table spaces for Data, Index, and LOB.
  • GRANT USE OF TABLESPACE UserDataTablespace TO cpe_db_user
  • GRANT USE OF TABLESPACE UserIndexTablespace TO cpe_db_user
  • GRANT USE OF TABLESPACE UserLOBTablespace TO cpe_db_user
  • GRANT USE OF TABLESPACE UserTemporaryTablespace TO cpe_db_user
End of change


Last updated: March 2016
p8psu015.htm

© Copyright IBM Corporation 2016.