Authorizing a messaging engine to use its data store requires the database user ID that the messaging engine uses to have sufficient privilege to access the data store tables.
The following table describes the database privileges that the messaging engine user requires to access the data store.
Database management system | Minimum privilege required for the messaging engine to use the data store tables | Additional privilege required for the messaging engine to create the data store tables |
---|---|---|
DB2 | The messaging engine user ID needs SELECT, INSERT, UPDATE, and DELETE privileges on the tables | The messaging engine user ID needs CREATETAB authority on the database and USE privilege on the table space as well as CREATEIN privilege on the schema. |
Oracle | The messaging engine user ID needs at least SESSION privilege to connect to the database. If the same user ID owns both the data store schema and the messaging engine that is connecting to the database, the messaging engine has sufficient privilege to manipulate the tables. Otherwise, the messaging engine needs SELECT, INSERT, UPDATE and DELETE object privileges on the tables that comprise the data store, and DROP ANY TABLE system privilege to enable use of the TRUNCATE TABLE statement. | The messaging engine user ID requires sufficient privilege to create relational tables and indexes in the data store schema. The messaging engine also requires a space quota in the default tablespace of the owner of that schema. |
SQL Server | Configure the SQL Server for SQL Server and Windows authentication.
This allows authentication to be based on an SQL server login ID and password.
The messaging engine user ID can be the owner of the tables, or be a member of a group that has sufficient authority to issue TRUNCATE TABLE statements. |
The messaging engine user ID needs CREATE TABLE statement privilege. |
Sybase | The messaging engine user ID can be the owner of the tables, or be a member of a group that has sufficient authority to issue TRUNCATE TABLE statements. | The messaging engine user ID needs CREATE TABLE permission. |
Informix | The messaging engine user ID must have CONNECT privilege on the database. It must also have SELECT, INSERT, UPDATE and DELETE authority on the tables. | The messaging engine user ID must have RESOURCE privilege on the database. |
Cloudscape | If user authentication is enabled, you must authorize the messaging engine user
ID to access the database. Remember: The default database that
is generated by the messaging engine has
no security mechanisms enabled.
|
You need no additional privileges. |