SYSRESAUTH catalog table

The SYSRESAUTH table records CREATE IN and PACKADM ON privileges for collections; USAGE privileges for distinct types; USE privileges for buffer pools, storage groups, and table spaces; and REVOVKE privileges for Java archive (JAR) files. The schema is SYSIBM.

Column name Data type Description Use
GRANTOR
VARCHAR(128)
NOT NULL
 Authorization ID of the user who granted the privilege. G
GRANTEE
VARCHAR(128)
NOT NULL
 Authorization ID of the user who holds the privilege. Could also be PUBLIC for a grant to PUBLIC. G
QUALIFIER
VARCHAR(128)
NOT NULL
 Qualifier of the table space (the database name) if the privilege is for a table space (OBTYPE='R'). The schema name of the user-defined data type if the privilege is for a distinct type (OBTYPE='D'). The schema name of the JAR file if the privilege is for a JAR file (OBTYPE='J'). The value is PACKADM if the privilege is for a collection (OBTYPE='C') and the authority held is PACKADM. Otherwise, the value is blank. G
NAME
VARCHAR(128)
NOT NULL
 Name of the buffer pool, collection, Db2 storage group, distinct type, or table space. Could also be ALL when USE OF ALL BUFFERPOOLS is granted. G
CHAR(1)
NOT NULL
 Internal use only. I
AUTHHOWGOT
CHAR(1)
NOT NULL
 Authorization level of the user from whom the privileges were received. This authorization level is not necessarily the highest authorization level of the grantor.
blank
Not applicable
A
PACKADM (on collection *)
C
DBCTRL
D
DBADM
E
SECADM
G
ACCESSCTRL
L
SYSCTRL
M
DBMAINT
P
PACKADM (on a specific collection)
S
SYSADM
T
DATAACCESS
 G
OBTYPE
CHAR(1)
NOT NULL
 Type of object:
B
Buffer pool
C
Collection
D
Distinct type
R
Table space
S
Storage group
J
JAR file (Java™ archive file)
 G
CHAR(12)
NOT NULL
 Internal use only. I
DATEGRANTED
CHAR(6)
NOT NULL
 Not used. N
TIMEGRANTED
CHAR(8)
NOT NULL
 Not used. N
USEAUTH
CHAR(1)
NOT NULL
 Whether the privilege is held with the GRANT option:
G
Privilege is held with the GRANT option
Y
Privilege is held without the GRANT option

The authority held is PACKADM when the OBTYPE is C (a collection) and QUALIFIER is PACKADM. The authority held is CREATE IN when the OBTYPE is C and QUALIFIER is blank.

 G
IBMREQD
CHAR(1)
NOT NULL
 A value of Y indicates that the row was provided with the Db2 product code. For all other values, see Release dependency indicators.

The value in this field is not a reliable indicator of release dependencies.

 G
GRANTEDTS
TIMESTAMP
NOT NULL WITH
DEFAULT
 Time when the GRANT statement was executed. G
GRANTEETYPE
CHAR(1)
NOT NULL WITH
DEFAULT
 Indicates the type of grantee:
blank
Authorization ID
L
Role
Start of changeREnd of change
Start of changeInternal use onlyEnd of change
 G
GRANTORTYPE
CHAR(1)
NOT NULL WITH
DEFAULT
 Indicates the type of grantor:
blank
Authorization ID
L
Role
 G
Start of changeSYS_STARTEnd of change Start of change
TIMESTAMP(12)
NOT NULL
GENERATED ALWAYS
AS ROW BEGIN
End of change		 Start of changeReserved for future IBM® use.The row-begin column of the SYSTEM_TIME period, for system-period data versioning.End of change Start of changeGEnd of change
Start of changeSYS_ENDEnd of change Start of change
TIMESTAMP(12)
NOT NULL
GENERATED ALWAYS
AS ROW END
End of change		 Start of changeReserved for future IBM use.The row-end column of the SYSTEM_TIME period, for system-period data versioning.End of change Start of changeGEnd of change
Start of changeTRANS_STARTEnd of change Start of change
TIMESTAMP(12)
NOT NULL
GENERATED ALWAYS
AS TRANSACTION
START ID
End of change		 Start of changeReserved for future IBM use. End of change Start of changeGEnd of change