SQL Anywhere Studio Security Guide
Installation
This page describes operation of Adaptive Server Anywhere in a manner equivalent to a C2-security-certified configuration. It does not provide general-purpose information on the topic.
To operate in a C2 compliant configuration, your database must be C2 compliant as well. All connections to the database must use the integrated login mechanism. Standard connections to the database (for example, specifying a user ID and password) are not allowed in the certified configuration.
To create a C2 compliant database
Log in as sybase.
From the Start menu, choose Programs
Use the dbinit utility to create a database with the following restrictions:
You must use the -i
switch to disable jConnect support.
You must not use the -k
, or -n
switches.
You must put the database file in your C2 database folder.
If you specify a transaction log file using the -t
switch, or a transaction log mirror file using the -m
switch, the files specified must be in your C2 database folder.
For information on using the dbinit utility in the certified configuration, see Initialization utility. For information about the database folder, see Adaptive Server Anywhere software installation.
Once the database is created, you need to connect to the database.
This connection must only be used to set the min_password_length option and the DBA's password.
At a command prompt, type dbisqlc -c UID=DBA;PWD=SQL;DBF=file where file is the full path of the database file created above.
Interactive SQL appears after a few seconds.
For information on using the dbisqlc utility in the certified configuration, see Interactive SQL utility and Restrictions.
Type set option public.min_password_length=6 (or higher) and click Execute.
Type grant connect to DBA identified by newpw where newpw is the new password for the DBA account, and click Execute.
The new password must be at least as long as the number entered in step 5, and should not be easy to guess.
Type grant integrated login to sybase as user DBA, and click Execute.
Type set option public.login_mode='Integrated', and click Execute.
Exit Interactive SQL by clicking the X in the top right corner of the window.