Overview of key DBA features in Toad for DB2 zOS Part XI

As a DB2 z/OS DBA, you're probably responsible for the security around your database objects and your database users. So granting and revoking privileges. With Toad for DB2 on z/OS, you could easily maintain those privileges. And we have a couple different perspectives. So, I'm connected to a DB2 z/OS subsystem. I've selected a table, and on the right hand side for just about every object, you'll see a grants tab. And this is going to display-- very quickly display the privileges that have been granted on that particular object. If you want to modify or add privileges, you would just right click and select Edit Table Privileges. This is a table. So this is going to come up with the Edit, Alter Table Privileges dialogue that allows you to very easily add a user. For example, I'm just going to click on a new user here and I'm going to quickly grant some privileges to the user. And I'm going to add another user, too. Click OK. And we've got some buttons on top here, allow you quickly grant all privileges. So I just, one click I granted all privileges, and that will generate a script. You can see that the script is going to grant access to those users I specified. And I could do the same thing with roles. I could, you know, add roles and grant authority to roles as well. So that is from the object perspective. And then from the user perspective, we have a Securities tab. So if you bring up Securities tab, you'll see that we have things like users, roles, trusted contents there. But from a given user, you can right click on a user and say alter user, and this will display the existing user's privileges. And from a perspective of the user, you could do things like add tables if you wanted to grant a user certain access to certain new tables. You could do that. And you could easily-- just like the previous control, you could very quickly grant access to a table. If you want to add another table-- all right, another table. And I'll use the controls up on top once again to grant the entire row. So you can see now, the entire row will be granted access, too. Show scripts and you can see that I've granted Select and Insert to-- for one table and Select Insert, Update, Delete, Altar for another table. So very easily and quickly, from a user's perspective, display all the users authorizations and add authorizations for that user. And then finally, another thing is that, at the subsystem level, if you select the subsystem on the right hand side, there's an administrative authorities tab. And this is a one stop shop in which we display high level authorities such as Sys Adm, Install, Sys Control, Sys Oper, things like that. And we allow you to see all those in this one display, and then also to be able to invoke the Alter User dialogue for the specific user. So that is managing security for DB2 z/OS with Toad for DB2 z/OS.