Maintenance User Security

To increase security, prevent unauthorized access to the database, and restrict maintenance user access to Replication Server, secure the maintenance user with password encryption, and set an expiration interval for the password.

Replication Server defines the maintenance user ID and password with the Replication Server create connection command or system management tools such as rs_init that you use for creating a connection to the replicate database.

Replication Server logs in to the replicate data server as the maintenance user for replication. The maintenance user must have the permissions to execute replicated stored procedures, and to execute DML operations such as insert, delete, and update on replicate tables.To enable replication of DDL operations such as create table using the maintenance user, the maintenance user must have set session authorization permission to perform DDL operation as the original user.

• Maintenance User Password Protection
  Use hide_maintuser_pwd to configure password protection for the maintenance user and restrict maintenance user access to Replication Server.
• Maintenance User Password Status
  Use the rs_helpuser stored procedure to display the password status of the maintenance user.
• Maintenance User Password Expiration Interval
  Use maintuser_pwd_expiration to set the password expiration interval for the maintenance user at the server level.
• Guidelines and Limitations for Maintenance User Security Configuration
  There are several considerations for maintenance user security configuration.
• Disabling Maintenance User Password Protection
  Disable maintenance user password protection for the connection to a replicate Adaptive Server database.
• Recovering from RSSD or Replicate Database Failure
  If hide_maintuser_pwd is on and the RSSD, ERSSD or replicate Adaptive Server database fails, you may need to reset the maintenance user password after you use a backup to recover from the failure.