Type of user |
Database permissions |
Dataset permissions |
Notes |
Data viewer |
CONNECT to database |
SELECT on database object, SELECT on SYSIBM.SYSDUMMY1 |
If your database is configured to use shared ArcSDE log files (the default), additional privileges may be needed.
See Log file configuration options for more information. |
Data editor |
- CONNECT to database
- CREATEIN, ALTERIN, and DROPIN for the necessary schema
|
CONTROL, ALTER, DELETE, INSERT, SELECT, UPDATE REFERENCES, SELECT on SYSIBM.SYSDUMMY1 |
|
Data creator |
- CONNECT to database
- CREATETAB in database
- CREATEIN, ALTERIN, and DROPIN for the necessary schema
|
CONTROL on database objects, SELECT on SYSIBM.SYSDUMMY1 |
|
ArcSDE administrator |
- DBADM authority
- SYSMON authority (DB2 8.2 and higher)
Add the ArcSDE administrator user to an operating system group and grant SYSMON to the group.
|
|
The DBADM authority gives the ArcSDE administrator all privileges against all objects in the database and allows him or her to grant these privileges to others (an authority similar to system roles in other DBMS types). The SYSMON authority is needed to access the DB2 snapshot API, which is required to clean out defunct ArcSDE processes from the PROCESS_INFORMATION system table. |