Oracle Security conversion..

From: Uma <talashil_at_hotmail.com>
Date: 2 Jan 2004 12:08:07 -0800
Message-ID: <fd3302b1.0401021208.11410abc_at_posting.google.com>


Hi..

here is my question..

these are my Oracle scripts . I want the similar concepts in DB2

connect system/manager

/********************************************/

/* Create the two roles used by MWMS system */
/********************************************/
CREATE ROLE WMS_DBA;

CREATE ROLE WMS_USER;
CREATE ROLE WEB_USER;
/*************************************/

/* Grant privileges to the two roles */
/*************************************/
GRANT   
	ALTER ANY INDEX, ALTER ANY PROCEDURE, ALTER ANY ROLE, ALTER ANY
SEQUENCE, ALTER ANY TABLE, ALTER ANY TRIGGER, ALTER USER, COMMENT ANY TABLE,
        CREATE ANY INDEX, CREATE ANY PROCEDURE, CREATE ANY SEQUENCE, CREATE ANY SYNONYM, CREATE ANY TABLE, CREATE ANY TRIGGER, CREATE ANY VIEW, CREATE DATABASE LINK,
        CREATE PROCEDURE, CREATE PUBLIC DATABASE LINK, CREATE PUBLIC SYNONYM, CREATE SEQUENCE, CREATE SESSION, CREATE SYNONYM, CREATE TABLE, CREATE TRIGGER, CREATE USER,
        CREATE VIEW, DELETE ANY TABLE, DROP ANY INDEX, DROP ANY PROCEDURE, DROP ANY ROLE, DROP ANY SEQUENCE, DROP ANY SYNONYM, DROP ANY TABLE, DROP ANY TRIGGER, DROP ANY VIEW,
        DROP PUBLIC DATABASE LINK, DROP PUBLIC SYNONYM, DROP USER, EXECUTE ANY PROCEDURE, GRANT ANY ROLE, INSERT ANY TABLE, SELECT ANY SEQUENCE, SELECT ANY TABLE, UPDATE ANY TABLE
TO

        WMS_DBA WITH ADMIN OPTION; GRANT
        CREATE SESSION, SELECT ANY TABLE, EXECUTE ANY PROCEDURE TO

        WMS_USER;

/****************************************/

/* Drop the users identified as DBA's */
/****************************************/
DROP USER ABC CASCADE;
/****************************************/

/* Create the users identified as DBA's */
/****************************************/
CREATE USER ABC IDENTIFIED BY ABC DEFAULT TABLESPACE PKEYS_CWS TEMPORARY TABLESPACE TEMP;
/************************************************************/

/* Grant the WMS_DBA Role to the users identified as DBA's */
/************************************************************/
GRANT WMS_DBA TO ABC;
/*************************************************/

/* This grants unlimited tablespace to user MWMS */
/*************************************************/
GRANT UNLIMITED TABLESPACE TO ABC IDENTIFIED BY ABC; connect sys/change_on_install;
ALTER USER sys IDENTIFIED BY manager;
GRANT SELECT ON V_$SESSION TO WMS_USER;
GRANT SELECT ON V_$SESSION TO ABC;
GRANT SELECT ON dba_users TO WMS_USER;
GRANT SELECT ON dba_users TO ABC; Received on Fri Jan 02 2004 - 21:08:07 CET

Original text of this message