CREATE DEFAULT USER statement (UNIX™, Linux™)
Use the CREATE DEFAULT USER statement to define the properties set of the default internally authenticated user. This statement is an extension to the ANSI/ISO standard for the SQL language.
Syntax
Usage
CREATE DEFAULT USER is a special case of the CREATE USER statement. After you use the CREATE DEFAULT USER statement to define default user properties, you can use the CREATE USER statement (but omitting the PROPERTIES clause) to create new users who have default user properties.
Only a DBSA can issue the CREATE DEFAULT USER statement. With a non-root installation, the user who installs the server is the equivalent of the DBSA, unless the user delegates DBSA privileges to a different user.
The
USERMAPPING configuration parameter must be set to a value (ADMIN
or BASIC) that enables support for mapped users before default users
who were created with the CREATE DEFAULT USER statement can connect
to the database server. A DBSA can issue the CREATE DEFAULT USER statement
to map default users to properties that correspond to the appropriate
level of authorization. The USERMAPPING configuration parameter must
be set to ADMIN to enable a default user to have a server administrative
privilege with the AUTHORIZATION keyword, where AAO
, BARGROUP
, DBSA
,
and DBSSO
are the keyword options for specific administrative
privileges.
You must also enter values in the SYSUSERMAP table of the sysusers database to map users with the appropriate user properties, so that the mapped user statements of SQL can work correctly.
GRANT
ACCESS TO PUBLIC PROPERTIES
statement. The equivalent syntax
to REVOKE ACCESS TO PUBLIC;
is this:DROP DEFAULT USER;
To
alter the properties of the default internally authenticated user,
you can issue the ALTER DEFAULT USER WITH PROPERTIES
statement. Execution of the CREATE DEFAULT USER statement can be audited with the CRUR audit code, which is the same mnemonic as for the CREATE USER statement.
For more information about the PROPERTIES options to the CREATE DEFAULT USER statement, see the CREATE USER statement (UNIX, Linux).