A fix is available
APAR status
Closed as program error.
Error description
"Trusted Context & Roles - Support SCHEMA, new owner columns, roles and trusted context - GEN, Masking"
Local fix
New function
Problem summary
**************************************************************** * USERS AFFECTED: Users of DB2 Administration Tool for z/OS * * who use trusted context or roles. This APAR * * delivers new functionality for Trusted * * Context and Roles. * **************************************************************** * PROBLEM DESCRIPTION: See problem summary for a list of * * items added by this APAR. * **************************************************************** * RECOMMENDATION: Apply The PTF. * **************************************************************** 1) The GEN and DDL commands are now available on the Trusted Contexts panel (ADB2AN), and the Roles panel (ADB2ARL). These commands can be used to generate DDL for a trusted context or role. 2) Enhances the GRANT panels to support a value of ROLE <role name> in the TO field. e.g. on Grant Database Privileges panel (ADB2GD), ROLE <role name> is supported in the TO field. ... GRANT Specify Y or G (for with grant option) or ' ' (for none) ... ON DATABASE TO To ===> ROLE JRDROLE1, AUTH1, ROLE JRDR 3) Enhances the REVOKE panels to support a value of ROLE <role name> in the FROM and BY fields. 4) Adds new mask types to support masking a trusted context name and a role name. These new masks will apply to the following types of statements that contain a reference to a trusted context name or role name: GRANT, REVOKE, CREATE ROLE, DROP ROLE, COMMENT ON ROLE, and CREATE TRUSTED CONTEXT - New TCNAME mask to mask a trusted context name - New ROLE mask to mask a role name. - New DBROLE, TSROLE, TBROLE, and IXROLE masks to mask a role associated with the respective object. (note: this is implemented now for future use. There are no externals that use these masks now.). 5) The GRANT options on the GEN options panel (ADB2GEN,ADB2GENS,ADB2GEN6) have been enhanced to give the user the choice to generate grants to just authorization IDs (A), just role names (R), both (Y), or none (N). e.g. on panel ADB2GEN, there are new values A and R for the GRANT option GRANT access ON DATABASE . . Y (Y,N,A,R)
Problem conclusion
New support has been added to trusted contexts and roles.
Temporary fix
Comments
APAR Information
APAR number
PK84531
Reported component name
DB2 ADMIN TOOL
Reported component ID
568851500
Reported release
720
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2009-04-10
Closed date
2009-12-18
Last modified date
2010-01-05
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
UK53039
Modules/Macros
GOCCMP GOCGAJOB GOCTCHK GOCTIMC GOCTREO GOCTRUN GOCTUNL GOC2CMF GOC2CMP GOC2CMR GOC2CMS GOC2CMT GOC2IGN
Fix information
Fixed component name
DB2 OBJECT COMP
Fixed component ID
5697G6400
Applicable component levels
R720 PSY UK53039
UP09/12/25 P F912
Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSAUVH","label":"IBM Db2 Object Comparison Tool for z\/OS"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"720","Edition":"","Line of Business":{"code":"LOB10","label":"Data and AI"}}]
Document Information
Modified date:
12 February 2021