Before you revoke system authority from an SQLID, you can run a Revoke Impact Report.
Procedure
To revoke system authority from an SQLID:
On the DB2 Administration Menu (ADB2)
panel, specify option
1, and press Enter.
On the System Catalog (ADB21)
panel, in the
Grantee field, specify the authorization ID with which you want to revoke,
specify the AO command, and press Enter.
The authorization options are displayed on the System Catalog (ADB21)
panel.
Specify the UA command, and press Enter.
A summary for the SQL ID is displayed on the User Authorizations Summary
(ADB2AUS) panel.
Specify the AU line command, and press Enter:
On the System Privileges Authorizations
(ADB2AZ) panel, specify the
R line command and press Enter. This actions starts the revoke process and
its associated Revoke Impact Report.
On the Revoke System Privileges
(ADB2RZ) panel, in the
Report Revoke Impacts field, specify YES, and press
Enter.
Check the details on the Revoke Impact Report (ADB2RIP)
panel.
If the following message is
displayed, your user ID does not have the authority to execute the REVOKE statement:
Revoker does not have SYSADM/SYSCTRL/SECADM/ACCESSCTRL