Concept
In a secure operating environment, each user is authorized to access only the data necessary to perform their job. Usually, only a select few have a valid need to freely access the database (such as an administrator).
Determine whether you want to allow each user read-only access to all the data in your database through CA Dataquery. CA Dataquery allows you to give users authorization for unlimited read-only access to the database and performs no further table security check on the user when they have this authorization (except restricted conditions in DQL Mode). CA Datacom/DB security or an external security product is always in effect. We suggest you limit this authorization to only a few administrators.
If a user is assigned unlimited read-only access by specifying Y (yes) for the DATA AUTHORIZED parameter on the User Table Maintenance panel, that user can access all tables, rows, and columns in your database that are not protected by CA Datacom/DB security, or do not have any restrictions assigned to the user or his groups. This user can also access personal tables of anyone.
If you specify N (no) for this field, that user can access only those tables (and their rows and columns) that you specifically assign to that user using the SECURITY CONTROL administrative function. The user can still access other users' personal tables in SQL Mode, if privileges are granted to him.
Regardless of the DATA AUTHORIZED parameter setting, authorize the user, if data is to be modified from DQL Language queries (for INSERT, UPDATE, and ERASE specifically).
|
Copyright © 2014 CA.
All rights reserved.
|
|