WebSphere logo Classic Federation Server for z/OS, Version 9.1
WebSphere logo Classic Replication Server for z/OS, Version 9.1
WebSphere logo Classic Data Event Publisher for z/OS, Version 9.1
WebSphere logo Data Integration Classic Connector for z/OS, Version 9.1


Granting privileges and privileges for performing actions on data servers

If you want users of Classic Data Architect to perform actions in a metadata catalog on a data server, such as run SQL scripts or view objects, you must grant privileges to those users. You must also grant system-level privileges to any users who need to run commands on a data server.

About this task

The Privileges page of the Properties view for a database in a data design project only lists privileges. Adding privileges to the list does not automatically grant those privileges on a data server.

To grant a privilege, you must create the privilege in the Privileges page, generate the GRANT statement for that privilege, and then run the GRANT statement on a data server.

Procedure

To grant privileges for performing actions in a metadata catalog on a data server:

  1. Select the database in your data design project.
  2. In the Properties view, click the Privileges tab. The table on the Privileges page lists the users who have one or more privileges.
  3. Create a new privilege. Click the yellow icon (New privilege) In the Grant System or Database Privilege window and specify these values:
    Grantee
    Type the ID of the user or group that you want to grant the privilege to, or select PUBLIC to grant the privilege to all users.
    Type
    Select either SYSTEM or one of the following types:
    $ADABAS
    Allows grantees to create, drop, and view Adabas tables and views on a data server.
    $CFI
    Allows grantees to create, drop, and view a metadata catalog on a data server.
    $DATACOM
    Allows grantees to create, drop, and view CA-Datacom tables and views on a data server.
    $IDMS
    Allows grantees to create, drop, and view CA-IDMS tables and views on a data server.
    $IMS
    Allows grantees to create, drop, and view IMS™ tables and views on a data server.
    $SEQUENT
    Allows grantees to create, drop, and view sequential tables and views on a data server.
    $SP
    Allows grantees to create, drop, and view stored procedures on a data server.
    $VSAM
    Allows grantees to create, drop, and view CICS® VSAM and native VSAM tables and views on a data server.
    Privilege
    If you selected SYSTEM in the Type field, select one of the following privileges:
    SYSADM
    Grants all privileges on all objects that are in a metadata catalog. Users with this privilege can grant privileges and privileges to other users.
    SYSOPR
    Grants remote operator privileges to display reports for and manage a data server.
    DISPLAY
    Grants remote operator privileges for displaying reports for a data server.
  4. When you want to promote the privileges to a data server, right-click the database and select Generate DDL. In the Generate DDL wizard, follow these steps:
    1. On the Options page of the wizard, deselect all check boxes except Fully qualified names, Quoted identifiers, and GRANT statements.
    2. On the Objects page, deselect all of the check boxes.
    3. On the Save and Run DDL page, specify the name of the SQL file that the will wizard will create. Verify that the GRANT statements are correct. Select the Run DDL on server check box.
    4. On the Select Connection page, select the connection to the data server, or create a new connection to a data server.
    5. On the Summary page, verify the actions that the wizard will perform and click Finish.
    6. In the Data Output view (which is by the Properties view by default), verify that the SQL statements ran successfully on the data server.
Related tasks
Configuring Classic Data Architect
Revoking privileges for performing actions on data servers
Related reference
Database properties


Feedback

Update icon Last updated: 2007-07-11