fed_noauth - Bypass federated authentication configuration parameter
This parameter determines whether federated authentication will be bypassed at the instance.
CAUTION:
When the FED_NOAUTH database manager configuration
parameter is set to yes, authentication is set to server or server_encrypt, and the
FEDERATED database manager configuration parameter is set to yes, then
authentication at the instance is bypassed. Any provided credentials will be accepted by the
instance, Db2 instance will not make any attempt to validate them.
- Configuration type
- Database manager
- Applies to
-
- Database server with local and remote clients
- Database server with local clients
- Partitioned database server with local and remote clients
- Parameter type
- Configurable online
- Propagation class
- Immediate
- Default [range]
- No [Yes; No]
When fed_noauth is set to yes, authentication is set to server or server_encrypt, and federated is set to yes, then authentication at the instance is bypassed. It is assumed that authentication will happen at the data source. Exercise caution when fed_noauth is set to yes. Authentication is done at neither the client nor at Db2®. Any user who knows the SYSADM authentication name can assume SYSADM authority for the federated server.