Home Page for the TeradataForum
 

Archives of the TeradataForum

Message Posted: Tue, 11 Jan 2011 @ 11:25:24 GMT


     
  <Prev Next>   <<First <Prev
Next>
Last>>
 


Subj:   Re: User Lockdown
 
From:   DWellman

Hi,

Sorry but you can't do this. PUBLIC means 'all users' and it is exactly that. Also, Teradata will not revoke rights that are not physically present in the dbc.accessrights table. A rc=0 from the REVOKE command really just means that the accessright is no longer there.

If you have this requirement then I think that you cannot use PUBLIC at all.

Probably the easiest way is to:

- revoke required rights from public

- create a role that has all of the public rights granted to it

- grant this role to all your users except those that should NOT have the public rights


An alternative would be to create two user hiearchies.

- hierarchy#1 contains most of your users. Create/Give your users to this hiearchy (before the next step). Grant the 'public' rights to the user at the top of this hierarchy using the 'all' option.

- hiearchy#2 contains the 'other' users.


As with a lot of questions like this: what are you trying to achieve ?


Cheers,

Dave

Ward Analytics Ltd: Information in motion (www.ward-analytics.com)



     
  <Prev Next>   <<First <Prev
Next>
Last>>
 
 
 
 
 
 
 
 
 
  
  Top Home Privacy Feedback  
 
 
Copyright for the TeradataForum (TDATA-L), Manta BlueSky    
Copyright 2016 - All Rights Reserved    
Last Modified: 15 Jun 2023