Question: I am new to DB2 and have a question about the post SQL0286N A default table space could not be found - DBA DB2 I want to access a database schema from a client on my desktop. However, I am not sure how to grant my windows username to the new schema Answer: On Windows , users and groups in db2 are handled by the OS, use OS tools to find the list of users. You can then use various commands within DB2 to confirm privileges. And execute any GRANT statements This includes local Windows users and Active Directory... Read more →

Fully protecting DB2 against an external attack requires solid design and regular Audits. Exposing some surface area to external connections ,creates an attack opportunity. As a DBA being aware of potential weaknesses and designing secure systems is a top priority. These are some areas of focus when designing a DB2 security audit. The foundation of DB2 security is a solid DB2 security policy. Any audit should be comparing the results with the security policy 1) Do not use standard ports for DB2. Protect the DB2 server against scans. On Linux, you will have to define a port/service before making remote... Read more →

This DB2 Security Policy sample is a basis for applying DB2 security good practise and regular audits. A DB2 environment is characterised by various developers(internal), administrators (internal) and third party access (external). The DB2 security policy should reflect these different requirements. A DB2 Security Policy is the foundation for implementing security. Regular audits should be carried out , comparing the environment with the security policy. Any discrepancies can be fixed. Read more on DB2 security audit The DB2 security is broken into separate categories. Not all policies are relevant for every organisation. As a DBA , it may not be... Read more →

Question: How do I prepare a database audit? I need to review regularly database security and configurations. Answer: In summary, a database audit is made up of SELECT statements which report database security details. For example, access to a sensitive stored procedure which displays customer financial details or a database configuration which exposes a risk to dropping the database. Part of the skill of preparing a set of SELECT statements for database details is in the preparation Use this list as a guide to structure the database audit 1) Do you understand the applications? 2) Database servers Inventory 3) Inventory... Read more →