Home
SecurityYou can secure your HCL OneDB™ database server and the data that is stored in your HCL OneDB™ databases. You can encrypt data, secure connections, control user privileges and access, and audit data security.
Security in HCL OneDB™The HCL OneDB™ Security Guide documents methods for keeping your data secure by preventing unauthorized viewing and altering of data or database objects, including how to use the secure-auditing facility of the database server.
Securing data
Label-Based Access ControlYou can use label-based access control (LBAC), an implementation of multi-level security (MLS), to control who has read access and who has write access to individual rows and columns of data.
ExemptionsExemptions modify security credentials of users by disabling one or more of the IDSLBACRULES for a component type in a security policy.
Granting exemptionsThe GRANT EXEMPTION statement gives a user an exemption from one or more access rules of a security policy.

Granting exemptions

The GRANT EXEMPTION statement gives a user an exemption from one or more access rules of a security policy.

Before you begin

You must hold the DBSECADM role to grant exemptions.

About this task

Procedure

Grant an exemption by issuing the GRANT EXEMPTION statement, as described in the HCL OneDB™ Guide to SQL: Syntax.

Example

The following statement grants user maria an exemption from the IDSLBACWRITETREE rule in security policy company:

GRANT EXEMPTION
ON RULE IDSLBACWRITETREE
FOR company
TO maria

What to do next

To grant a user exemptions from all IDSLBACRULES of a security policy, specify ALL in place of the policy name in the statement. Typically, this type of exemption is practical for a user who is responsible for loading and unloading data in protected tables.