Home Page for the TeradataForum

Archives of the TeradataForum

Message Posted: Tue, 11 Jan 2011 @ 11:25:24 GMT

  <Prev Next>   <<First <Prev

Subj:   Re: User Lockdown
From:   DWellman


Sorry but you can't do this. PUBLIC means 'all users' and it is exactly that. Also, Teradata will not revoke rights that are not physically present in the dbc.accessrights table. A rc=0 from the REVOKE command really just means that the accessright is no longer there.

If you have this requirement then I think that you cannot use PUBLIC at all.

Probably the easiest way is to:

- revoke required rights from public

- create a role that has all of the public rights granted to it

- grant this role to all your users except those that should NOT have the public rights

An alternative would be to create two user hiearchies.

- hierarchy#1 contains most of your users. Create/Give your users to this hiearchy (before the next step). Grant the 'public' rights to the user at the top of this hierarchy using the 'all' option.

- hiearchy#2 contains the 'other' users.

As with a lot of questions like this: what are you trying to achieve ?



Ward Analytics Ltd: Information in motion (www.ward-analytics.com)

  <Prev Next>   <<First <Prev
  Top Home Privacy Feedback  
Copyright for the TeradataForum (TDATA-L), Manta BlueSky    
Copyright 2016 - All Rights Reserved    
Last Modified: 15 Jun 2023