Viewing or Modifying User-Extended Role Properties

View or change user-extended role properties such as password, login policy and database object permissions.

Prerequisites

Database Version	Role-Based User-Extended Role Privileges
SAP Sybase IQ 15.3 and 15.4	Not Supported.
SAP Sybase IQ 16.0	View any user-extended role property page – none. Modify a password – you must have the CHANGE PASSWORD system privilege. Modify a login policy, or refresh LDAP DN – you must have the MANAGE ANY USER system privilege. Modify a user-extended role comment – you must have one of: MANAGE ROLES system privilege Administrative rights over the role begin commented For privileges relating to user-extended role permissions, see: Role-Based Database Object Permissions Privilege Summary

Database Version

Role-Based User-Extended Role Privileges

SAP Sybase IQ 15.3 and 15.4

Not Supported.

SAP Sybase IQ 16.0

View any user-extended role property page – none.

Modify a password – you must have the CHANGE PASSWORD system privilege.

Modify a login policy, or refresh LDAP DN – you must have the MANAGE ANY USER system privilege.

Modify a user-extended role comment – you must have one of:

MANAGE ROLES system privilege
Administrative rights over the role begin commented

For privileges relating to user-extended role permissions, see:

Role-Based Database Object Permissions Privilege Summary

The SAP Sybase IQ resource is authenticated and running.
The selected resource supports role-based security

Task

In the Perspective Resources view, select the resource, and select Resource > Administration Console.
In the left pane, expand IQ Servers > Security > Role-Based, and then select User-Extended Roles.
Select a user-extended role from the right pane and either:
- Click the arrow to the right of the name and select Properties, or
- From the Administration Console menu bar, select Resource > Properties.
The User-Extended role Properties view appears

View or edit the properties.

When you are modifying properties, you need not click Apply before changing screens; however, doing so saves any changes.
If you do not have privileges to modify properties, SAP Control Center displays the properties view in read-only mode.

Area	Description
General	Name – (Read only) Name of the user-extended role. Enable Password – Allows the user-extended role to connect to the database with password security. Clearing this option disables the Password and Confirm Password options. Password – The password for the user-extended role. Characters appear as asterisks. Confirm password – A field for confirming the password that you typed in the Password text box. The contents of the two fields must match exactly. Password creation time – Date and time when the password was created. Change password on next login – Select to force the user-extended role to change the password at the next login. Note: This functionality is not currently implemented in SAP Control Center. When logging in to SAP Control Center, a user will not be prompted to change their password. He or she will be prompted, however, when logging in to SAP Sybase IQ outside of SAP Control Center (for example, using Interactive SQL). Login policy – Select a login policy for the user-extended role from the list. Last login time – Last time the user-extended role successfully logged in. Failed login attempts – Number of times the user-extended role has tried to log in with an incorrect password. Locked – Displays false if the account is unlocked. Displays true if the user-extended role has exceeded the allowed number of failed login attempts. Unlock now –Unlocks the account if Locked is true. Comment – A text field for adding an optional comment about the user-extended role.
Permission	See Role-Based User and Role Object Permissions.

Area

Description

General

Name – (Read only) Name of the user-extended role.

Enable Password – Allows the user-extended role to connect to the database with password security. Clearing this option disables the Password and Confirm Password options.

Password – The password for the user-extended role. Characters appear as asterisks.

Confirm password – A field for confirming the password that you typed in the Password text box. The contents of the two fields must match exactly.

Password creation time – Date and time when the password was created.

Change password on next login – Select to force the user-extended role to change the password at the next login.

Note: This functionality is not currently implemented in SAP Control Center. When logging in to SAP Control Center, a user will not be prompted to change their password. He or she will be prompted, however, when logging in to SAP Sybase IQ outside of SAP Control Center (for example, using Interactive SQL).

Last login time – Last time the user-extended role successfully logged in.

Failed login attempts – Number of times the user-extended role has tried to log in with an incorrect password.

Locked – Displays false if the account is unlocked. Displays true if the user-extended role has exceeded the allowed number of failed login attempts.

Unlock now –Unlocks the account if Locked is true.

Comment – A text field for adding an optional comment about the user-extended role.

Permission

See Role-Based User and Role Object Permissions.

Do one of:
- Click OK to update any changes to the database and exit the properties view.
- Click Apply to update any changes to the database, but remain in the properties view.
- Click Cancel to cancel any changes not updated to the database and exit the properties view.