User Account Requirements for DB2 and DB2 MultiNode Agents

The DB2 iDataAgent requires a user account that has sufficient privileges to perform the following:

  • Perform backup and restore operations

  • Access Windows and Unix registry keys

  • Stop and start DB2 services on Windows and Unix clients

By default, the DB2 user with administrator privileges is used to perform backups and restores. You can change the user to a non-DB2 administrator user that has the following privileges:

Operating System

The User Account Must

Windows

Be a Local Administrator of the computer on which the DB2 database resides. The user must have read and write permissions on the Commvault folder and the DB2 folder: archive, audit error or retrieve path.

UNIX

Be a member of the user group assigned during the iDataAgent install.

All

  • Be part of the SYSMAINT_GROUP and SYSCTRL_GROUP authorities.

    db2 update dbm cfg using SYSMAINT_GROUP <user_name or user_group>

    db2 update dbm cfg using SYSCTRL_GROUP <user_name or user_group>

  • Have DBADM privileges on the database.

    db2 grant dbadm on database to <new_user>

You provide the user account credentials when you configure an instance. You can change the user account at the Client Computer Group, Instance, or Backup Set levels. Accounts configured at each level are used for all entities within that level.

Note: If you configure user account credentials at the client computer group level with the Override Higher Levels Settings check box selected, the instance and backup set do not inherit credentials.

Loading...