GRANT REMOTE DBA statement [MobiLink] [SQL Remote]

Use this statement to grant remote DBA privileges to a user ID.

Syntax 
GRANT REMOTE DBA
TO userid, ...
IDENTIFIED BY password
Remarks

This statement grants a limited set of DBA permissions ideal for synchronization users. The remote DBA privilege avoids having to grant full DBA privileges, thereby avoiding security problems associated with distributing DBA user IDs and passwords.

In MobiLink, REMOTE DBA authority is recommended for the SQL Anywhere synchronization client (dbmlsync). See Permissions for dbmlsync.

In SQL Remote, REMOTE DBA authority enables the Message Agent to have full access to the database to make any changes contained in the messages.

For SQL Remote, the REMOTE DBA privilege has the following properties:

  • No distinct permissions when not connected from the Message Agent. A user ID granted REMOTE DBA authority has no extra privileges on any connection apart from the Message Agent. Even if the user ID and password for a REMOTE DBA user is widely distributed, there is no security problem. As long as the user ID has no permissions beyond CONNECT granted on the database, no one can use this user ID to access data in the database.
  • Full DBA permissions when connected from the Message Agent.
Permissions

Must have DBA authority.

Side effects

Automatic commit.

See also
Standards and compatibility

  • SQL/2003   Vendor extension.

Copyright © 2008, iAnywhere Solutions, Inc. - SQL Anywhere 11.0.0