In a Vertica database, there are three types of users:
-
Database administrator (DBADMIN)
-
Object owner
-
Everyone else (PUBLIC)
This is the multi-page printable view of this section. Click here to print.
Types of database users
In a Vertica database, there are three types of users:.
1 - Database administration user
On installation, a new Vertica database automatically contains a user with superuser privileges.
On installation, a new Vertica database automatically contains a user with superuser privileges. Unless explicitly named during installation, this user is identified as dbadmin. This user cannot be dropped and has the following irrevocable roles:
With these roles, the dbadmin user can perform all database operations. This user can also create other users with administrative privileges.
Important
Do not confuse the dbadmin user with the DBADMIN role. The DBADMIN role is a set of privileges that can be assigned to one or more users.
The Vertica documentation often references the dbadmin user as a superuser. This reference is unrelated to Linux superusers.
Creating additional database administrators
As the dbadmin user, you can create other users with the same privileges:
-
Create a user:
=> CREATE USER DataBaseAdmin2; CREATE USER -
Grant the appropriate roles to new user
DataBaseAdmin2:=> GRANT dbduser, dbadmin, pseudosuperuser to DataBaseAdmin2; GRANT ROLEUser
DataBaseAdmin2now has the same privileges granted to the original dbadmin user. -
As
DataBaseAdmin2, enable your assigned roles with SET ROLE:=> \c - DataBaseAdmin2; You are now connected to database "VMart" as user "DataBaseAdmin2". => SET ROLE dbadmin, dbduser, pseudosuperuser; SET ROLE -
Confirm the roles are enabled:
=> SHOW ENABLED ROLES; name | setting ------------------------------------------------- enabled roles | dbduser, dbadmin, pseudosuperuser
2 - Object owner
An object owner is the user who creates a particular database object and can perform any operation on that object.
An object owner is the user who creates a particular database object and can perform any operation on that object. By default, only an owner (or a superuser) can act on a database object. In order to allow other users to use an object, the owner or superuser must grant privileges to those users using one of the GRANT statements.
Note
Object owners are PUBLIC users for objects that other users own.See Database privileges for more information.
3 - PUBLIC user
All non-DBA (superuser) or object owners are PUBLIC users.
All non-DBA (superuser) or object owners are PUBLIC users.
Note
Object owners are PUBLIC users for objects that other users own.Newly-created users do not have access to schema PUBLIC by default. Make sure to GRANT USAGE ON SCHEMA PUBLIC to all users you create.