Predefined XDB Server Authorities for GRANT and REVOKE

To assign privileges to a given AuthID in two or more locations, the XDB Server Administrator (super user) can set up groups. Each GroupID is then assigned privileges for one location. The groups that represent the locations for which the user is to be allowed privileges are then assigned to the user's AuthID.

To allow a user to have unlimited privileges throughout the system (all locations), the user's Primary AuthID must be given super-user privileges.

Note:

Only a super user can create locations, drop locations, edit (update) system tables, and assign super-user status to another user. Super-user privileges can be assigned with the ADMIN menu commands, or by editing the USERTYPE column in the user's record in the SYSXDB.SYSACFUSERS table.

Users cannot grant privileges to themselves and cannot revoke privileges from themselves. Likewise, GRANT and REVOKE commands have no effect on users whose AuthIDs (or SecondaryIDs or GroupIDs) are the same as the AuthID portion of an object's name.