Show TOC

GRANT KERBEROS LOGIN StatementLocate this document in the navigation structure

Creates a Kerberos-authenticated login mapping from one or more Kerberos principals to an existing database user ID. This allows a user who has successfully logged in to Kerberos (user who has a valid Kerberos ticket-granting ticket) to connect to a database without having to provide a user ID or password.

Quick Links:

Go to Parameters

Go to Standards

Go to Permissions

Syntax
GRANT KERBEROS LOGIN
  TO <client-Kerberos-principal [, …]>
  AS USER <userID [,...]>
Parameters

(back to top)

  • userID must be the name of an existing user or role that has a login password. Separate multiple userIDs with commas.
Standards

(back to top)

  • SQL–other syntaxes are vendor extensions to ISO/ANSI SQL grammar.

  • SAP Database products–the security model is different in SAP ASE and SAP IQ, so other syntaxes differ.

Permissions

(back to top)

Requires the MANAGE ANY USER system privilege.

Related Information