Salesforce

Cannot Revoke Permissions Granted by the Default DBA

Printable View
« Go Back

Information

 
TitleCannot Revoke Permissions Granted by the Default DBA
URL Name21703
Article Number000152897
EnvironmentProduct: Progress
Version: 9.x
Product: OpenEdge
Version: 10.x, 11.x
OS: All supported platforms
Question/Problem Description
DBA cannot revoke user privileges granted by the default DBA (the creator of the database).

Users have been added to the database.

Default DBA has been deactivated.
Steps to Reproduce
Clarifying Information
Error Message
Defect Number
Enhancement Number
Cause
This is expected behavior. The operating system user who creates the database automatically becomes the default DBA. This user can create additional users and grant them DBA privileges as well. However, once users are created in the database the default DBA becomes disabled. Any privileges granted by the default DBA to other users cannot be revoked by the newly created DBAs. Therefore, it is important to grant DBA access to at least one database user in order to have a valid DBA after the default DBA becomes disabled.
Resolution
To make changes to the permissions granted by the default DBA after the default DBA has become disabled:
 
1. Connect a SQL query tool such as SQL Explorer to the database as the new DBA user.

2. Add a user with the name of the default DBA (that is, the OS user name of the database creator) and give it DBA permissions. Use the following SQL statements, replacing "User" and "password" with the OS user name and password of the default DBA:
 
CREATE USER 'User','password';
GRANT DBA TO 'User';
COMMIT;

3. Reconnect to the database as the default DBA (the user who created the database). Privileges that were originally set by the default DBA can now be altered.
Workaround
Notes
References to Other Documentation:

Progress Articles:

 Basic Guide to Defining Progress SQL-92 Database Permissions & Security
 
Keyword Phrase
Last Modified Date11/20/2020 7:29 AM
Powered by