The following is an overview of the process used to set up and activate security on an XDB Server. This procedure must be
performed by someone with super-user authority.
Note: The following procedure assumes a single-server environment. If you are working in a multi-server environment or you are using
a "global" security server, see your
SQL Option Server Administration Guide for additional setup procedures.
- From the main menu, click
Tools > SQL Option for DB2 > Configuration > Server Configuration.
- From the XDB Server or from any client workstation attached to the XDB Server, use Options to select the XDB Server, specify
your super-user ID, and enable security. Set the options as follows:
- On the Connect tab, select the XDB Server on which you want to set up security.
- On the Connect tab, specify your super-user ID (e.g., INSTALL).
- On the Security tab, enable the Client Security option.
- Use SQLWizard to create a "user ID" and password for each user of this XDB Server. Only the users that you define during this
step will be allowed to log on to the Server, and they must present the proper user ID/password combination when they do so.
Note: Apart from permitting access to an XDB Server, the user ID you create in this step 2 also serves as a user's default AuthID.
You can override this default assignment by assigning a Secondary ID to the user, or the user can change it using the SET
CURRENT SQLID command.
When you create a user ID, you must also specify whether that user will have user or super user privileges. A super user can
access any table on the Server and can perform operations such as creating and dropping locations. An XDB Server is shipped
with one super user called INSTALL. You can create others at your discretion. However, super-user privileges should be limited
to a few trusted users with database administration expertise. There are other classes of privileges you can assign to other
users using the GRANT command. For details, see your
SQL Option Server Administration Guide and topics for the
GRANT command.
- When you are finished creating users, run the Options utility at each user's workstation and turn on the
Client Security option. You must also inform your users of the user ID and password you assigned to them in step 3. Once they log on, they
can change their password using SQLWizard's
Change Password command.