Previous Topic: DB2SYS Resource Class—Secure DB2 Privileges and AuthoritiesNext Topic: DB2TABLE Resource Class—Secure DB2 Tables


Privileges

The administrator can specify the privileges: SYSADM, SYSOPR, BINDADD, BSDS, CREDBC, CRESG, DISPLAY, MONITOR1, MONITOR2, RECOVER, STOPALL, STOSPACE, TRACE, CREALIAS, SYSCTRL, ARCHIVE, and BINDAGENT.

Note: Unlike other DB2SYS privileges that have global scope, the BINDAGENT privilege only grants the holder the bind agent Authority for a specific .

Examples: DB2SYS resource class

This example gives the Investment Department (INVDEPT) ownership of the SYSADM privilege:

TSS ADDTO(INVDEPT) DB2SYS(SYSADM)

This example removes ownership of a system privilege:

TSS REMOVE(INVDEPT) DB2SYS(SYSADM)

This example authorizes USRJIM to create a storage group:

TSS PERMIT(USRJIM) DB2SYS(CRESG)

This example revokes USRJIM's Authority to create a storage group:

TSS REVOKE(USRJIM) DB2SYS(CRESG)

This example authorizes USRMARK as a bind agent for USRMIKE's packages:

TSS PERMIT(USRMARK) DB2SYS(BINDAGENT.USRMIKE)

This example revokes USRMARK's Authority as USRMIKE's bind agent:

TSS REVOKE(USRMARK) DB2SYS(BINDAGENT.USRMIKE)