Managing access by other users

Users must be authorized to access the employee table or the payroll table. Exceptions occur when any unauthorized user tries to access the tables.

About this task

The following users are authorized to access the employee and payroll tables:

Department managers
Members of the payroll operations department
Payroll managers
The payroll update program

The audit report lists each exception in full. Auditors check each exception to determine whether it was a planned operation by the users with SYSADM or DBADM authority, or the employee table owner.

The audit report also lists denials of access to the tables. Those denials represent attempts by unauthorized IDs to use the tables. Some are possibly accidental; others can be attempts to violate the security system.

After running the periodic reports, the security planners archive the audit records. The archives provide a complete audit trail of access to the employee data through Db2.