CREATE DEFAULT USER statement (UNIX, Linux)

Use the CREATE DEFAULT USER statement to define the properties set of the default internally authenticated user. This statement is an extension to the ANSI/ISO standard for the SQL language.

Syntax

(explicit id gractd001) gractd001 CREATE DEFAULT USER WITH <Properties> []

Usage

CREATE DEFAULT USER is a special case of the CREATE USER statement. After you use the CREATE DEFAULT USER statement to define default user properties, you can use the CREATE USER statement (but omitting the PROPERTIES clause) to create new users who have default user properties.

Only a DBSA can issue the CREATE DEFAULT USER statement. With a non-root installation, the user who installs the server is the equivalent of the DBSA, unless the user delegates DBSA privileges to a different user.

The USERMAPPING configuration parameter must be set to a value (ADMIN or BASIC) that enables support for mapped users before default users who were created with the CREATE DEFAULT USER statement can connect to the database server. A DBSA can issue the CREATE DEFAULT USER statement to map default users to properties that correspond to the appropriate level of authorization. The USERMAPPING configuration parameter must be set to ADMIN to enable a default user to have a server administrative privilege with the AUTHORIZATION keyword, where AAO, BARGROUP, DBSA, and DBSSO are the keyword options for specific administrative privileges.

You must also enter values in the SYSUSERMAP table of the sysusers database to map users with the appropriate user properties, so that the mapped user statements of SQL can work correctly.

You cannot specify a password, or account lock, or account unlock information in the CREATE DEFAULT USER statement. This statement is equivalent to the GRANT ACCESS TO PUBLIC PROPERTIES statement. The equivalent syntax to
REVOKE ACCESS TO PUBLIC;
is this:
DROP DEFAULT USER;
To alter the properties of the default internally authenticated user, you can issue the ALTER DEFAULT USER WITH PROPERTIES statement.

Execution of the CREATE DEFAULT USER statement can be audited with the CRUR audit code, which is the same mnemonic as for the CREATE USER statement.

For more information about the PROPERTIES options to the CREATE DEFAULT USER statement, see the CREATE USER statement (UNIX, Linux).

1 See the Properties clause in the CREATE USER statement (UNIX, Linux)