Determining ID privileges and authorities

You can use the following methods to determine the privileges and authorities that a specific ID or role holds:

• Query the Db2 catalog to determine which IDs or roles hold particular privileges.
• Check on individual IDs that are associated with group IDs or roles. Some authorization IDs that you encounter are probably group IDs, to which many individual IDs can be connected. To see which IDs are connected to a group, obtain a report from RACF® or from whatever external security system you are using. These reports can tell you which IDs have the required privileges to use Db2 data sets and other resources.