You can restrict a user’s ability to update or reference named columns in a table. For example, USER99 issues the GRANT statement below. This statement gives USER01 the ability to update the EMPLOYEE_NAME and EXMP columns of the PERSONEL.EMPLPAY table.
GRANT UPDATE(EMPLOYEE_NAME,EXMP) ON TABLE PERSONEL.EMPLPAY TO USER01
CA ACF2 Option for DB2 also enables you to restrict a user’s ability to update or reference only certain columns in a table. To do this, use the SERVICE and COLUMN parameters in an CA ACF2 Option for DB2 rule. The following example provides the same control as the SQL GRANT statement above:
$KEY(PERSONEL.EMPLPAY) $TYPE(TBL) $SYSID(****) $UIDOWNER(*****USER99) UID(*****USER01) SERVICE(UPDATE) - COLUMN(EMPLOYEE_NAME,EXMP) ALLOW
|
Copyright © 2011 CA Technologies.
All rights reserved.
|
|