Creating an Authority-Based Group

Add a new group to the database using the Create Group wizard.

Prerequisites
Database Version Authority-Based Group Permissions
SAP Sybase IQ 15.3 and 15.4 You must have one of:
  • DBA authority
  • Both USER ADMIN and PERMS ADMIN authorities
SAP Sybase IQ 16.0 Not supported.
Task
  1. In the Perspective Resources view, select the resource, and select Resource > Administration Console.
  2. In the left pane, expand IQ Servers > Security > Authority-Based, and then select Groups.
  3. Click the arrow next to Groups and select New.
    The Create Group Wizard appears.
  4. On the Welcome page, specify:
    Option Description
    Select a resource for which the group will be created: Select a resource from the list.
    Note: If the selected resource does not support authority-based security, an error message appears.
    What do you want to name the new group? Enter a unique name for the new group.
  5. Click Next.
  6. On the Specify a Password page, specify:
    Area Description
    Enable password Select to allow the group to connect to the database with password security. Leave this option unselected to disable the password and confirm password options.
    Password Enter the password for the group. Characters appear as asterisks when typed.
    Confirm password Confirms the password. The contents of the two password fields must match exactly.
    Requires password change on next login Select to force a password change the next time the group logs in. Characters appear as asterisks when typed.
    Login policy Select a login policy from the list.
  7. Click Next.
  8. (Optional) On the Select Authorities page, select the authorities you want to assign to the new group:
    Authority Description
    Backup Grants the ability to perform database backups.
    DBA Grants the ability fully administer the database.
    Multiplex Admin Grants the ability for Multiplex server administration
    Operator Grants the ability to backup and checkpoint databases, perform system monitoring, and drop connections.
    Perms Admin Grants the ability to manage data permission, groups, authorities, and passwords.
    Profile Grants the ability to perform application and procedure profiling, request log creation and analysis, and by the Index Consultant.
    Read client file Grants the ability to read from a file on the client computer, for example when loading data.
    Read file Grants the ability to the group to execute SELECT statements against a file using the OPENSTRING clause.
    Remote DBA Grants Remote DBA authority to any table the group can access. To ensure that actions are secure, run the SQL Remote Message agent using a user ID with this type of authority.
    Resource Grants the ability to create database objects.
    Space Admin Grants the ability to perform dbspace management (including CREATE permission) and read-only selective database restoration.
    User Admin Grants the ability to manage users, external logins, and login policies management.
    Validate Grants the ability to validate tables, materialized views, and indexes.
    Write client file Grants the ability to write to a file on the client computer, for example when downloading data.
  9. Click Next.
  10. (Optional) On the Specify a comment page, enter a comment for this user.
  11. Click Finish.
Parent topic: Authority-Based Groups
Related tasks
Deleting an Authority-Based Group
Converting an Authority-Based Group to a User
Adding Authority-Based Users and Groups to Groups
Removing Authority-Based Users or Groups from a Group
Viewing or Modifying Authority-Based Group Options
Generating Authority-Based Group DDL Commands
Viewing or Modifying Authority-Based Group Properties
Adding an Authority to a Group
Removing an Authority from a Group
Authenticating a Login Account for a Managed Resource
Related reference
Authority-Based Group Privilege Summary