After the XDB Server Administrator (super user) has set up the AuthIDs, SecondaryIDs and groups, the privileges and authority for each can be defined. This is accomplished with the SQL GRANT and REVOKE commands. You can set up the granted privileges before or after turning on security. However, any grants you issue when security is off will not take effect until you turn security on.