Removing Administrative Rights Only on a Table or Column Permission from a User or Role

Remove administrative rights only from a permission granted to a user, user-extended role, or standalone role, on a table or column.

Prerequisites
Database Version Role-Based Database Object Privileges
SAP Sybase IQ 15.3 and 15.4 Not supported.
SAP Sybase IQ 16.0 You must have one of:
  • MANAGE ANY OBJECT PRIVILEGE system privilege
  • You have administrative rights to the permission being modified
  • You own the database object
Task
The REVOKE command applies to the database object permission itself, not to any administrative right granted on the permission. Therefore, to remove the administrative right only and leave the database object permission intact, do not use the Revoke button. Rather, regrant the specific permission without administrative rights. Only the original grantor can remove the administrative rights only from a granted permission. If another grantor regrants the same permission without administrative rights, a new permission without administrative rights is granted, but the original permission with administrative rights remains and takes precedence over any other non-administrative grants of the same permission to the same user or role.
  1. In the Perspective Resources view, select the resource, and select Resource > Administration Console.
  2. In the left pane, expand IQ Servers > Security > Role-Based, and then select Users, User-Extended Roles, or Standalone Roles.
  3. Select a user, user-extended role, or standalone role in the right pane either:
    • Click the arrow to the right of the name and select Properties, or
    • From the Administration Console menu bar, select Resource > Properties.
  4. In the left pane, select Permissions.
  5. In the right pane, click Grant.
  6. On the Welcome page, based on the table level of the permission to be regranted, select Tables or Table columns. Click Next.
  7. On the Permissions page, select the permissions from which the administrative rights are being revoked.
  8. Click Finish to close the permissions wizard.
  9. (Optional) To view details on the permissions currently granted on a table or column, expand the table name in the Name column.
  10. Do one of:
    • Click OK to update any changes to the database and exit the properties view.
    • Click Cancel to cancel any changes not updated to the database and exit the properties view.
Parent topic: Role-Based Table or Column Permissions
Related concepts
About the User or Role Table Permissions List
Following the User or Role Table Permissions Grant Trail
Related tasks
Adding Permissions on a Table or Column to a User or Role
Removing Permissions on a Table or Column from a User or Role
Adding Administrative Rights on a Granted Table or Column Permission to a User or Role
Authenticating a Login Account for a Managed Resource
Related reference
Role-Based Database Object Permissions Privilege Summary