ASA SQL Reference
SQL Statements
Use this statement to provide DBA privileges to a user ID, but only when connected from the Message Agent.
GRANT REMOTE DBA
TO userid, ...
IDENTIFIED BY password
REMOTE DBA authority enables the Message Agent to have full access to the database in order to make any changes contained in the messages, while avoiding security problems associated with distributing DBA user IDs passwords.
REMOTE DBA has the following properties.
No distinct permissions when not connected from the Message Agent. A user ID granted REMOTE DBA authority has no extra privileges on any connection apart from the Message Agent. Even if the user ID and password for a REMOTE DBA user is widely distributed, there is no security problem. As long as the user ID has no permissions beyond CONNECT granted on the database, no one can use this user ID to access data in the database.
Full DBA permissions when connected from the Message Agent.
Must have DBA authority.
Automatic commit.
The Message Agent and replication security
REVOKE REMOTE DBA statement [SQL Remote]
SQL/92 Vendor extension.
SQL/99 Vendor extension.