ALTER PROFILE

SQL Reference Guide > SQL Reference Guide > SQL Statements > ALTER PROFILE

Was this helpful?

ALTER PROFILE

Valid in: SQL, ESQL, OpenAPI, ODBC, JDBC, .NET

The ALTER PROFILE statement alters a user profile.

A profile provides default attributes for a user.

The ALTER PROFILE statement has the following format:

[EXEC SQL] ALTER [DEFAULT PROFILE | PROFILE profile_name]
[ADD PRIVILEGES( priv {,priv}) | DROP PRIVILEGES( priv {,priv})]
[WITH with_item {, with_item}]

with_item =
    NOPRIVILEGES | PRIVILEGES = ( priv {, priv} )
    | NOGROUP | GROUP = default_group
    | NOSECURITY_AUDIT | SECURITY_AUDIT = ( audit_opt {,audit_opt})
    | NOEXPIRE_DATE | EXPIRE_DATE = 'expire_date'
    | NODEFAULT_PRIVILEGES | DEFAULT_PRIVILEGES = ( priv {, priv} ) | ALL

ALTER DEFAULT PROFILE

Modifies the settings of a default profile.

ALTER PROFILE profile_name

Modifies the settings of the specified profile. The profile_name can be a delimited identifier. It must be an existing profile.

DEFAULT and a profile_name cannot be specified in the same statement.

ADD PRIVILEGES | DROP PRIVILEGES

Adds or drops privileges to or from the user profile.

Only one of the following can be specified in a single ALTER PROFILE statement:

ADD PRIVILEGES ( priv {, priv})

DROP PRIVILEGES ( priv {, priv})

NOPRIVILEGES

PRIVILEGES = ( priv {, priv} )

priv

Specifies a subject privilege, as described in CREATE USER.

Note: These are requestable privileges. They must be activated using the SET SESSION ADD PRIVILEGES statement.

GROUP = default_group

Specifies the default group for users with this profile. The group must exist.

Use the NOGROUP option to specify that the user is not assigned to a group.

Default: NOGROUP if the GROUP clause is omitted.

audit_opt

Defines security audit options, as described in CREATE USER.

EXPIRE_DATE = expire_date

Specifies an optional expiration date associated with each user using this profile. Any valid date can be used. When the expiration date is reached, the user is no longer able to log on.

If NOEXPIRE_DATE is specified, this profile has no expiration date.

DEFAULT_PRIVILEGES = ( priv {, priv} ) | ALL

Defines the privileges initially active.

priv

A subset of those privileges granted to the user.

ALL

All the privileges held by the profile are initially active.

NODEFAULT_PRIVILEGES

No privileges are initially active.

Fore more information, see CREATE PROFILE.

Embedded Usage

In an embedded ALTER PROFILE statement, the WITH clause can be specified using a host string variable (with :hostvar).

Permissions

You must have MAINTAIN_USERS privilege and be connected to the iidbdb database.

You must have MAINTAIN_AUDIT privilege to change security audit attributes.

Locking

The ALTER PROFILE statement locks iiprofile exclusively.

Related Statements

ALTER USER

CREATE PROFILE

CREATE USER

DROP PROFILE

Last modified date: 11/28/2023