Privileges determine what a user is authorized to do with the data and the database. Assign privileges based on the type of work the person does within the organization.
Users connecting to Teradata from ArcGIS require privileges on specific Teradata system tables and the user data they need to access. As a Teradata administrator, you create groups based on what users need to do in the database, grant privileges to the groups, and add the appropriate database users to each group.
Teradata grants SELECT privileges on system tables to PUBLIC by default. If you revoke those privileges, you must grant privileges to individual groups or users.
The following table lists three groups of users who will connect from ArcGIS and the minimum privileges they require to query, edit, or create data.
Type of user | Required privileges | Purpose |
---|---|---|
Data viewer | SELECT ON SYSSPATIAL.SPATIAL_REF_SYS SELECT ON SYSSPATIAL.GEOMETRY_COLUMNS | Required to read ST_GEOMETRY metadata for spatial operations. |
SELECT ON <table1>,<table2>, <tablen> | Allows data viewers to query data in specific tables. | |
UDTUSAGE ON SYSUDTLIB | Required to preview features. | |
Data editor* Data editors require the same privileges as data viewers, plus these additional privileges. | INSERT, UPDATE, DELETE on other users' tables | Grant the editing operations you want editors to perform on specific tables. |
Data creator Data creators require the same privileges as data viewers, plus these additional privileges. | INSERT ON SYSSPATIAL.SPATIAL_REF_SYS UPDATE ON SYSSPATIAL.GEOMETRY_COLUMNS EXECUTE FUNCTION ON SYSSPATIAL EXECUTE PROCEDURE ON SYSSPATIAL | Required to update ST_GEOMETRY metadata when creating or updating spatial data. Alternatively, you can grant SELECT, EXECUTE PROCEDURE, and EXECUTE FUNCTION on the sysspatial database to the user. |
CREATE TABLE DROP TABLE | Required to create tables and feature classes in the database. |
*You can edit data published to a feature service that has editing capabilities enabled.
Additional, optional privileges you may want to grant data creators include the following:
- CREATE VIEW and DROP VIEW
Grant these privileges if you want to allow the data creator to create views on tables. This might be needed if the data creator owns feature classes that contain a spatial column that is not named shape. To use the data with ArcGIS, a view must be created on the feature class that aliases the spatial column to a column named shape.
- CREATE TRIGGER and DROP TRIGGER
These privileges are required to create tessellation indexes, which use side tables that are updated via a trigger.
- CREATE INDEX
This is required for data creators to create attribute indexes on their tables.