CREATE DEFAULT USER statement (UNIX, Linux)

Syntax

(1)

Usage

CREATE DEFAULT USER is a special case of the CREATE USER statement. After you use the CREATE DEFAULT USER statement to define default user properties, you can use the CREATE USER statement (but omitting the PROPERTIES clause) to create new users who have default user properties.

Only a DBSA can issue the CREATE DEFAULT USER statement. With a non-root installation, the user who installs the server is the equivalent of the DBSA, unless the user delegates DBSA privileges to a different user.

The USERMAPPING configuration parameter must be set to a value (ADMIN or BASIC) that enables support for mapped users before default users who were created with the CREATE DEFAULT USER statement can connect to the database server. A DBSA can issue the CREATE DEFAULT USER statement to map default users to properties that correspond to the appropriate level of authorization. The USERMAPPING configuration parameter must be set to ADMIN to enable a default user to have a server administrative privilege with the AUTHORIZATION keyword, where AAO, BARGROUP, DBSA, and DBSSO are the keyword options for specific administrative privileges.

You must also enter values in the SYSUSERMAP table of the sysusers database to map users with the appropriate user properties, so that the mapped user statements of SQL can work correctly.

REVOKE ACCESS TO PUBLIC;

DROP DEFAULT USER;

Execution of the CREATE DEFAULT USER statement can be audited with the CRUR audit code, which is the same mnemonic as for the CREATE USER statement.

For more information about the PROPERTIES options to the CREATE DEFAULT USER statement, see the CREATE USER statement (UNIX, Linux).