Skip to main content

Preparation

Before Bravura Security Fabric can list and manage database-level accounts in IBM DB2/UDB, you must:

  1. Install the client software.

  2. Configure a target system administrator.

  3. Create at least one template account.

Installing client software

Bravura Security Fabric communicates with the DB2 server via APIs provided by the DB2 Connect client. Before you can target DB2, you must install and configure the DB2 Connect client on the Bravura Security Fabric server.

Consult the documentation included with your DB2 client software for more information.

After you have configured the DB2 client, ensure that an ODBC system data source exists for each DB2 database that Bravura Security Fabric will target. To do this:

  1. Open Control Panel and select Administrative Tools > Data Sources (ODBC).

  2. Select the System DSN tab.

    The ODBC Data Source Administrator displays a list of data sources. DB2 data sources are indicated by the driver "IBM DB2 ODBC DRIVER".

    If a data source does not exist for the DB2 database that you want Bravura Security Fabric to target, click Add and create a new data source. See your Windows or DB2 help for more information.

  3. Note the system Data Source Name (DSN). You will need this name when adding the target to Bravura Security Fabric . This is usually the same as the DB2 database name.

Configuring a target system administrator

Bravura Security Fabric uses a designated account on the DB2 target system to list and manage accounts. Typically, the account used is db2admin, which is created during the installation of the DB2 server. You can also configure another account (for example, psadmin) with equal privileges to use as a target system administrator.

Ensure that you set and note the account’s password. You will be required to enter the login ID and password when you add the DB2 target system to Bravura Security Fabric .

Creating a template account

Bravura Security Fabric uses template accounts as models or "blueprints" for creating new DB2 accounts. The following example illustrates how you can create a template account in a DB2 database:

  1. Create a new Windows user with default privileges.

  2. Open the DB2 Control Center.

  3. Under your specified database, open the User and Group Objects folder, and highlight the DB Users section.

  4. Right click on DB Users and select Add.

  5. In the database tab, choose the previously created Windows user.

  6. Give this user the privileges that you want your template user to have.

  7. Click OK to create the user.

See your systems administrator or DB2 documentation for more information if required.

In this section: