Archives of the TeradataForum
Message Posted: Mon, 30 Nov 2009 @ 23:22:06 GMT
| Subj: | | Re: Setup Teradata Manager without access to SQL |
| |
| From: | | Fred W Pluebell |
The global MONSESSION permission includes the ability to view the SQL and "EXPLAIN". If you don't need ANY information about individual
sessions, you can grant MONRESOURCE without MONSESSION.
Teradata Manager profiles only limit which tools you are allowed to launch on the client side. You could potentially give individual users no
monitor permissions and use the Monitor Object, PM/API, or Open API UDFs to write your own application that connects to Teradata with a privileged
"service" UserName but filters what individual users are allowed to see.
The Teradata Viewpoint portal does provide more granular security, e.g. you can allow someone to view resource consumption at the session level
but not to drill down to the SQL, you can let users view session details only for "their" queries, etc.
| 
