Sybase IQ defines the rules to be followed when establishing a user’s database connection in a database object called a login policy. A login policy is a named object in the database that consists of a set of options. Each login policy is associated with a set of options called login policy options. See CREATE LOGIN POLICY statement Chapter 1, “SQL Statements,” in Reference: Statements and Options.
You must have DBA privileges to create new login policies or assign an existing login policy to a user. Login policies cannot be inherited through the user group hierarchy. For the SQL command syntax to manage policies, see “SQL syntax for login management”.
Each new database is created with a default login policy, called the root policy. You can modify the option values for the root login policy, but you cannot drop the policy. When a user account is created without specifying its login policy, the user becomes part of the root login policy. Any options that are not explicitly set when creating a login policy inherit their values from the root policy.
See ”Managing login policies overview”in SQL Anywhere Server - Database Administration.
You can execute login management commands on any multiplex server and they get automatically propagated to all servers in the multiplex. As recommended for any DDL for performance reasons, these commands should be executed on the coordinator. For details, see “Multiplex login management,” in Chapter 1, “Managing Multiplex Servers,” in Using Sybase IQ Multiplex.
Migrating databases to Sybase IQ 15.0 removes existing login management settings and replaces certain stored procedures and system tables with new ones listed in “New and changed system tables” and “New and changed stored procedures”. To recreate login management settings after migration, use the SQL syntax in the following section.
