Granting privileges to remote users

A query that arrives at your local Db2 subsystem through the distributed data facility (DDF) is accompanied by an authorization ID. After connection processing, the ID can be translated to another value and be associated with secondary authorization IDs.

About this task

Db2 also uses the ID to determine if the connection is associated with a trusted context. As the end result of these processes, the remote query is associated with a set of IDs that is known to your local Db2 subsystem. You assign privileges to these IDs in the same way that you assign privileges to IDs that are associated with local queries.