Database User Account Privileges

Fortify strongly recommends that you create accounts for users who perform the following tasks on the Fortify Software Security Center database:

• Perform runtime tasks

  A user who performs runtime tasks requires privileges to do the following:

  • Perform Data Manipulation Language (DML) operations to SELECT, UPDATE, INSERT, and DELETE data in all the database tables and views
  • Execute stored procedures.

• Execute migration scripts

  Important!  Fortify strongly recommends that you create a separate user account to be used for executing migration scripts.

  A user who executes migration scripts requires privileges to do the following:

  • Perform Data Manipulation Language (DML) operations to SELECT, UPDATE, INSERT, and DELETE data in all the database tables and views
  • Execute stored procedures

  • Perform Data Definition Language (DDL) operations to CREATE, ALTER, and DROP database tables, views, and indexes.

  • For Oracle databases, permission to enable sequences.
    

• Create and manage the database

  Important! Fortify strongly recommends that you create a separate user account to be used to create and manage the database.

  A user who creates and manages the database requires privileges to do the following:

  • Perform all the tasks for which the user who executes migration scripts has privileges.
  • Create a Fortify Software Security Center database in a dedicated instance.
  • Back up and then update the existing Fortify Software Security Center dedicated database instance.
  • Bind a Fortify Software Security Center user account to the dedicated database instance.

  • Assign a Fortify Software Security Center user account the read‑write privileges required to create, initialize, and manage the Fortify Software Security Center database. At a minimum, this user must have a database account that enables the web applicationA customer codebase evaluated by Fortify software. The top-level container for one or more application versions. When you work with a new codebase, the application and first application version are automatically created. An application includes one or more application versions that users create and configure. to connect to the database.

• Create and generate reports

  To add an extra measure of security to reporting, create a database user account with read-only access to the Fortify Software Security Center database, and then use the account credentials to configure enhanced security for your BIRT reports (see Configuring Security for BIRT Reporting).