Database Permissions

Attention: This feature is in Early Adopter Program (EAP) release status. We will continue the development of additional features and provide additional interfaces via patch updates and future releases. Please contact Micro Focus SupportLine if you require further clarification.

If your data files are stored within a database, or your COBOL environment uses a database to perform any operations, you will require certain database permissions to interact with the database. These permissions will vary depending on the actions being performed and the database provider used.

The following lists show the permissions required for administrative users (users who typically create datastores and databases) and everyday users (users accessing data files within a database or operating within an environment where a database is performing some function). These lists should enable an administrator to create distinct database roles suited for the user type.

Administrative roles

For users who are required to create datastores and region\cross-region databases, ensure that they have permissions to the following operations:

SQL Server and Azure SQL Databases

  • ALTER TABLE ADD PRIMARY KEY
  • ALTER TABLE ALTER|DROP COLUMN
  • ALTER TABLE DROP CONSTRAINT
  • CREATE DATABASE
  • CREATE/DROP TABLE
  • CREATE PROCEDURE
  • CREATE FUNCTION
  • INSERT permissions for tables
  • EXECUTE permissions for stored procedures and functions
  • ALTER TABLE ALTER COLUMN SET DATA

PostgreSQL

  • ALTER TABLE DROP COLUMN
  • ALTER TABLE ALTER COLUMN SET DATA
  • CREATE DATABASE
  • CREATE/DROP TABLE
  • CREATE/DROP TYPE
  • CREATE INDEX
  • CREATE FUNCTION
  • INSERT permissions for tables
  • EXECUTE permissions for functions

Db2

  • ALTER TABLE ALTER COLUMN SET DATA
  • CREATE DATABASE
  • CREATE BUFFERPOOL
  • CREATE TABLESPACE
  • CREATE SCHEMA
  • CREATE TABLE
  • CREATE INDEX
  • CREATE PROCEDURE
  • CREATE FUNCTION
  • INSERT permissions for tables
  • EXECUTE permissions for stored procedures and functions

All other users

For users who handle data files that are stored in a database, or are running in an environment where some of the operations are handled using a region or cross-region, ensure that they have permissions to the following operations:

SQL Server and Azure SQL Databases

  • ALTER TABLE ADD PRIMARY KEY
  • ALTER TABLE ALTER|DROP COLUMN
  • ALTER TABLE DROP CONSTRAINT
  • CREATE/DROP TABLE
  • CREATE PROCEDURE
  • CREATE FUNCTION
  • INSERT permissions for tables
  • EXECUTE permissions for stored procedures and functions
  • ALTER TABLE ALTER COLUMN SET DATA

PostgreSQL

  • ALTER TABLE DROP COLUMN
  • ALTER TABLE ALTER COLUMN SET DATA
  • CREATE/DROP TABLE
  • CREATE INDEX
  • CREATE FUNCTION
  • SELECT/INSERT/UPDATE/DELETE permissions for tables
  • EXECUTE permissions for functions

Db2

  • ALTER TABLE ALTER COLUMN SET DATA
  • CREATE/ALTER/DROP TABLE
  • CREATE INDEX
  • CREATE/DROP PROCEDURE
  • CREATE FUNCTION
  • SELECT/INSERT/UPDATE/DELETE permissions for tables
  • EXECUTE permissions for stored procedures and functions