TRUE or FALSE? regarding "JDE" user database permissions

johnk

johnk

Member
1) User account/id "JDE" should never have permissions to create a table in another owners schema - IE, TESTDTA.

2) User account/id "JDE" should never be used as system/proxy user for business users.

App and Tools version 9.2
Oracle database
Linux servers
 
1) True - doesn't need it. You can cheat sometimes, but it's not required for install / setup / etc. The datasource owner/password should be enough.

2) And yes - you shouldn't use it as the db user. I think we've all had the nightmare pop up scenario where a user keeps typing in that JDE password wrong over and over again and then all of E1 is dead at least once... Save it for the deployment server / admin activity.
 
Although, what "shouldn't" be used might be different from whats delivered "out of the box".

Standard JDE "out of the box" provides permissions to create tables in other users' schema.
Standard JDE is often used as the system/proxy user for users (like "JDE").

Also - whats delivered "out of the box" is the ability for all users to run all applications.....so its common sense to ensure security is modified to align within business practice.
 

Similar threads

  • Poll
JDE CNC role disappearing?
Replies
5
Views
412
jdeKernel
seeni.nithin
E9.1 JDE Database Default Accounts Password Reset for LDAP enabled systems.
Replies
4
Views
3K
seeni.nithin
seeni.nithin
tiradoj
E9.2 The Chaos That is Web Deployment in 9.2.7.1 using P96470W
Replies
11
Views
2K
harshteki
E1 9.2.0.0: JDB9900436 - Cannot determine database driver name for driver type "O"
Replies
0
Views
5K
jmouw2001
Larry_Jones
Controlling which Media Object Queue that User File Attachments go into
Replies
2
Views
4K
Larry_Jones
Larry_Jones
Back
Top