CMOD/DB2 vs Security Requirement

Previous topic - Next topic
Print
Go Down Pages1
User actions

teera_aoo

April 24, 2019, 04:59:42 PM
I have implemented CMOD to Bank, and there is security requirement about Database user account.

They are not allow DB2 instance owner to used by any application. They assume that CMOD is application tier
However, in my opinion CMOD is Report Repository, and ARCHIVE user is just service account
(that does not interactive with DB2 like another application style)

How can I explain, have some documents, or workaround to passed this security requirement?

This CMOD system will be migrated from CMOD Old version that installed by default options
(CMOD Instance owner is ARCHIVE that is ARCHIVE DB2 instance owner)

Justin Derrick

#1
April 24, 2019, 06:03:36 PM
CMOD requires this access to manage tables, tablespaces, and tablespace containers.  It's possible to turn this off, but it's not advised, as it creates problems that must be fixed with manual intervention every time.

-JD.
Call:  +1-866-533-7742  or  eMail:  jd@justinderrick.com
IBM CMOD Wiki:  https://CMOD.wiki/
FREE IBM CMOD Webinars:  https://CMOD.Training/
IBM CMOD Professional Services: https://CMOD.cloud

Interests: #AIX #Linux #Multiplatforms #DB2 #TSM #SP #Performance #Security #Audits #Customizing #Availability #HA #DR
Print
Go Up Pages1
User actions
SMF 2.1.4 © 2023, Simple Machines
ProCurve Theme Made By : TwitchisMental