To have greater control on access to database, J.K.Avro superstore decides to enforce separation of duties using DB2 authorities and privileges.
Separation of duties allows database administration tasks to be given to different users which results in granting least privileges to users.
You must log into the database as the database creator before proceeding with this page.
The database creator has both DBADM and SECADM authorities. CEO of J.K.Avro Superstore would like to
separate the duties of administrator so that different users have different management power on the database. Specifically, he wants the database creator to manage the database administration tasks and Pat to manage security administration tasks.
The GRANT statement in the right pane shows SECADM authority is granted to user 'pat'