Modify whether a role administrator can administer a role only or can also use the
underlying system privileges and roles of the role being administered.
Prerequisites
| Database Version |
Role Administrator Privileges |
|---|
| SAP Sybase IQ 15.3 and 15.4 |
Not supported. |
| SAP Sybase IQ
16.0 |
You must have one of:- Administrative rights over the role being
managed
- MANAGE ROLES system privilege if the role being
granted has a global role administrator
|
- The SAP Sybase IQ resource is authenticated and
running.
- The selected resource supports role-based
security
Task- In the Perspective Resources view, select the resource, and
select .
- In the left pane, expand , and then select User-Extended Roles.
- Select a role from the right pane and do one of:
- Click the arrow to the right of the name and select Manage
Grantees, or
- From the Administration Console menu bar, select .
Warning! When adding a grantee which
is also
a role, be sure you select the correct menu option.
Each option has different inheritance outcomes. To review the differences, see
Security Implications of the Managing Grantees and Managing Roles
Options.
A list of users or roles currently granted to the
role appears.
Any user or role with Administrative
only or Administrative and role in the
Grant Option column is a role administrator.
- Select an administrator whose administrative rights are to be modified.
- Click in the Grant Option column, click the arrow,
and select the administrative rights to be granted.
| Grant Option |
Description |
|---|
| Administrative only |
Grantee can grant and revoke the selected role to other users and
roles, but cannot use its underlying system privileges. |
| Administrative and role |
Grantee can grant and revoke the selected role to other users and
roles and use its underlying system privileges. |
- Do one of:
- Click OK to update any changes to the
database and exit the properties view.
- Click Apply to update any changes to the database, but
remain in the properties view.
- Click Cancel to cancel any changes not
updated to the database and exit the properties view.