« previous next »
Pages: [1]

Author Topic: CMOD/DB2 vs Security Requirement  (Read 1414 times)

teera_aoo

  • Jr. Member
  • **
  • Posts: 18
    • View Profile
CMOD/DB2 vs Security Requirement
« on: April 24, 2019, 09:59:42 AM »
I have implemented CMOD to Bank, and there is security requirement about Database user account.

They are not allow DB2 instance owner to used by any application. They assume that CMOD is application tier
However, in my opinion CMOD is Report Repository, and ARCHIVE user is just service account
(that does not interactive with DB2 like another application style)

How can I explain, have some documents, or workaround to passed this security requirement?

This CMOD system will be migrated from CMOD Old version that installed by default options
(CMOD Instance owner is ARCHIVE that is ARCHIVE DB2 instance owner)

Logged

Justin Derrick

  • IBM Content Manager OnDemand Consultant
  • Administrator
  • Hero Member
  • *****
  • Posts: 2231
  • CMOD Guru for hire...
    • View Profile
    • Tenacious Consulting
Re: CMOD/DB2 vs Security Requirement
« Reply #1 on: April 24, 2019, 11:03:36 AM »
CMOD requires this access to manage tables, tablespaces, and tablespace containers.  It's possible to turn this off, but it's not advised, as it creates problems that must be fixed with manual intervention every time.

-JD.
Logged
IBM CMOD Professional Services: http://TenaciousConsulting.com
Call:  +1-866-533-7742  or  eMail:  jd@justinderrick.com
IBM CMOD Wiki:  https://CMOD.wiki/
FREE IBM CMOD Education & Webinars:  https://CMOD.Training/

Interests: #AIX #Linux #Multiplatforms #DB2 #TSM #SP #Performance #Security #Audits #Customizing #Availability #HA #DR
Pages: [1]
« previous next »