Access to DB2 Security Wizard

Although all MS-Access security is inherited by the Access/DB2 application created by Scriptoria, this only protects the Access front-end application from unauthorized use. The corresponding (migrated) DB2 database (back-end) should also be secured.
 
Use the Access to DB2 Security Wizard to grant DB2 privileges equivalent to the table and query permissions assigned to selected Access users and groups to DB2 tables, views and procedures. DB2 privileges may also be revoked from selected users and groups with this Wizard.
 
Use this feature after you have created a “secure” Access database using the tools and methodologies provided by Access.
Note that Access user and group names must also be defined on the DB2 server (or client) operating system responsible for authentication. For example, if you are using DB2 for Windows NT, the Administrative Tools must be used to add groups and users that correspond with those defined to Access security.
For compatibility with DB2, user and group names must conform to the following rules:
·        Valid characters are A through Z, a through z, 0 through 9, #, @, $ and _.
·        The name must not begin with the characters 'SYS', 'IBM' or 'SQL'.
·        The name must not be ADMINS, GUESTS, LOCAL, PUBLIC, or USERS.
·        A delimited authorization ID must not contain lowercase letters. Lower case characters are saved as upper case by DB2.
·        With DB2 for OS/390, the maximum GRANTEE length is 8 characters; with DB2 UDB Version 6 and higher, the maximum length is 128 characters; with DB2 UDB version 5, the maximum length is 18 characters.

 
Use the Groups and Users list boxes to select the users and groups for whom you wish to grant or revoke privileges. Then choose Tables to assign privileges to all corresponding DB2 tables, Queries to assign privileges to all corresponding DB2 views and procedures, or choose Both.

Granting DB2 Privileges

Pressing Grant Privileges will create and deploy DB2 GRANT statements that implement Access table and/or query security, for all corresponding DB2 tables, views and procedures found in the current schema, for all selected users and groups.

Revoking DB2 Privileges

Pressing Revoke Privileges will create and deploy DB2 REVOKE statements for all DB2 object privileges assigned to the selected users and groups.