Grants KERBEROS LOGIN privileges to a user.
Creates a Kerberos-authenticated login mapping from one or more Kerberos
principals to an existing database user ID. This allows a user who has successfully
logged in to Kerberos (user who has a valid Kerberos ticket-granting ticket) to connect
to a database without having to provide a user ID or password.
Syntax
GRANT KERBEROS LOGIN
TO client-Kerberos-principal [, …]
AS USER userID [,...]
Parameters
- userID – must be the name of an existing user
or role that has a login password. Separate multiple userIDs
with commas.
Standards
-
SQL – other syntaxes are vendor extensions to ISO/ANSI SQL
grammar.
-
Sybase – the security model is different in
Adaptive Server Enterprise and
SAP Sybase IQ, so other syntaxes differ.
Permissions
Requires the
MANAGE
ANY USER system privilege.