How to set or grant SELECTINAUTH for a schema in DB2 11.5

Question

I'm running DB2 11.5 and want to grant select, insert, update or delete rights for all tables in a specific schema. SELECTINAUTH etc. seems to be perfect for this.

When I'm looking to the SYSCAT.SCHEMAAUTH Catalog View I can see the following columns:

• ALTERINAUTH
• CREATEINAUTH
• DROPINAUTH
• SELECTINAUTH
• INSERTINAUTH
• UPDATEINAUTH
• DELETEINAUTH

The first 3 privileges can be granted by e.g. GRANT ALTERINAUTH ON SCHEMA TO USER . But this don't work for the last 4 columns.

The Knowledge Center tells that this are implicit privileges, but I can't find any hint, how a user or a group can get this privileges implicit or explicit.

Does anybody know when or how e.g. INYSERTINAUT is set to Y?

Answer 1

I got the following information from IBM: "So currently the usage of SELECTINAUTH, INSERTINAUTH, UPDATEINAUTH is only available in DB2 Warehouse" and "Schema authorization is one of these features and we have publicly stated (at IDUG conferences etc) that we will be brought to Db2 in an update to 11.5.".

It can be enabled with db2set DB2_ENABLE_SCHEMA_AUTHORIZATION=true, but it's not documented and therefore not supported yet. (as IBM explained).