Setting Up Security

Restriction: This topic applies to Windows environments only.

The following is an overview of the process used to set up and activate security on an XDB Server. This procedure must be performed by someone with super-user authority.

Note: The following procedure assumes a single-server environment. If you are working in a multi-server environment or you are using a "global" security server, see your SQL Option Server Administration Guide for additional setup procedures.
  1. From the main menu, click Run > Tools > Data Tools > SQL Option for DB2 > Configuration > Server Configuration.
  2. From the XDB Server or from any client workstation attached to the XDB Server, use Options to select the XDB Server, specify your super-user ID, and enable security. Set the options as follows:
    • On the Connect tab, select the XDB Server on which you want to set up security.
    • On the Connect tab, specify your super-user ID (e.g., INSTALL).
    • On the Security tab, enable the Client Security option.
  3. Use SQLWizard to create a "user ID" and password for each user of this XDB Server. Only the users that you define during this step will be allowed to log on to the Server, and they must present the proper user ID/password combination when they do so.
    Note: Apart from permitting access to an XDB Server, the user ID you create in this step 2 also serves as a user's default AuthID. You can override this default assignment by assigning a Secondary ID to the user, or the user can change it using the SET CURRENT SQLID command.

    When you create a user ID, you must also specify whether that user will have user or super user privileges. A super user can access any table on the Server and can perform operations such as creating and dropping locations. An XDB Server is shipped with one super user called INSTALL. You can create others at your discretion. However, super-user privileges should be limited to a few trusted users with database administration expertise. There are other classes of privileges you can assign to other users using the GRANT command. For details, see your SQL Option Server Administration Guide and topics for the GRANT command.

  4. When you are finished creating users, run the Options utility at each user's workstation and turn on the Client Security option. You must also inform your users of the user ID and password you assigned to them in step 3. Once they log on, they can change their password using SQLWizard's Change Password command.
Parent topic: Implement Security and Authority