You can apply for permissions on a database instance, a database, a table, a sensitive field, or a row of data in the Data Management (DMS) console. For database instances that run in Security Collaboration control mode, you can apply for permissions on data query, data export, and data change operations. After the application is approved, you can perform the approved operations.

Prerequisites

A database instance is created or imported in the DMS console.

Precautions

In this example, permissions on a database are applied for. The database instance to which the database belongs runs in Security Collaboration control mode.

Procedure

  1. Log on to the DMS console V5.0.
  2. In the top navigation bar, click Security and Specifications. The Permission tab appears.
  3. In the Access applyTickets section, click Access apply and select Database-Permission from the drop-down list.
  4. In the Select the databases, tables, or columns on which you want to apply for permissions. section of the page that appears, perform the following steps to add the database on which you want to apply for permissions:
    1. Enter the name of the database.
      Note You must search for the database by database name. Database instance IDs are not supported.
    2. Select the database on which you want to apply for permissions and click Add.
      Note
      • The default permissions on a database allow you to access low-sensitivity fields in all tables of the database. These tables include the tables that you may create later.
      • The default permissions on a table allow you to access low-sensitivity fields only in the table. If the schema of the table is changed, the permissions on the table are not affected.
      • If you have the default permissions on a database and a table and you want to access a medium-sensitivity field or a high-sensitivity field in the table, you must apply for the permissions to access the field.
  5. In the Select Permission section, configure the following parameters.
    Parameter Description
    Permission The permissions for which you want to apply. Valid values:
    • Query: the permissions to execute SQL statements on the SQL Console tab to query the data of the object on which you want to apply for permissions.
    • Change: the permissions to submit tickets to modify or synchronize data in a database or table. You cannot modify data without approval.
    • Export: the permissions to submit tickets to export data from the object on which you want to apply for the permission. You cannot export data without approval.
    Duration The validity period of the permissions.
    Reason The reason for which you want to apply for the permissions.
  6. Click Submit.
  7. After the application for the permissions is approved, you can view the permissions on the Accessible Assets tab of the Home tab. You can also use the permissions to query data on tabs, such as the SQL Console tab.