IBM Data & AI

 Welcome to the IBM Data & AI Ideas Portal for Clients! 

We welcome and appreciate your feedback on IBM Data & AI Products to help make them even better than they are today!
Before you submit an idea, please perform a search first as a similar idea may have already been reported in the portal.  If a related idea is not yet listed, please create a new idea and include with it a description which includes expected behavior as well as why having this feature would improve the service and how it would address your use case.
IBM Employees:
Clients:
  • Our team welcomes any feedback  and suggestions you have for improving our offerings / products!  This forum allows us to connect your offering / product improvement ideas with IBM product and engineering teams.
  • If you have not registered on this portal please click on the following link and register.  To complete registration you will need to open the email you will receive from Aha to confirm your identity. http://ibm.biz/IBM-Data-and-AI-Portal-Register
Additional Information:
  • The shorter URL for this site is: https://ibm.biz/IBM-Data-and-AI-Ideas
  • To view our roadmaps: http://ibm.biz/Data-and-AI-Roadmaps
  • Reminder: This is not the place to submit defects or support needs, please use normal support channel for these cases
  • Please do not use the Ideas Portal for reporting bugs - we ask that you report bugs or issues with the product by contacting IBM support.

DB2 LUW: Db2 utility to back up and restore the permissions and ownership values of Db2 files/directories

Requesting Rproduct improvement for Db2 Linux, Unix and Windows.

Problem description:

This RFE solves a problem or deficiency within an IBM database product, Db2 Linux, Unix and Windows.

The problem is that users (with authority) mistakenly change ownership and or permissions on Db2 files, directories and/or links causing Db2 to fail. This is a common problem that occurs far too often. Typically a system administrator will recursively change ownership and permissions on Db2 directories and files. Recursive means that this is a mass change, where all file system objects (ie files, directories and links) in the path are changed. The system administrator usually is trying to solve a problem and ends up creating a much bigger problem.

Db2 has specific requirements for:
o File and directory permissions. File and directory permissions controls what users can access, read, write or execute the files.
o Ownership of files and directories. Ownership of files and directories control what users can access, read, write or execute the files.
o Permissions and ownership on links

Incorrect permissions or ownership settings on files, directories or links (also known as file system objects) that are used by Db2 can cause Db2 to become inoperative.

Db2 file system objects are used to support: Db2 Code, Db2 Instances and Db2 Databases

Db2 file system objects do not all have the same ownership and permissions. File system objects all have a mix of different ownership's and permissions. Changing ownership or permissions on any of these files can cause Db2 to become non-operational.

If the system administrator issues a recursive change command you cannot just back out the change with another recursive command. A recursive command will incorrectly set all the Db2 files and directories to the same owners and permission, where some Db2 file system objects need different ownership and permissions.

When Db2 is installed with multiple instances and databases under one directory tree stucture (ie mount point) and a recursive change is made all instances and databases built under that mount point will be impacted. This will make Db2 inoperable across multiple instances and databases. Resetting the permissions and ownership to fix them is time consuming and is not a trivial task. This becomes a persuasive problem when this mistake is made on a Db2 production server where multiple instances and databases are impacted. Resolving this situation is time consuming and requires extended database outage time to fix.

Proposed solution:

My solution is to create a Db2 utility (tool) to back up and restore the Db2 permissions and ownership values of Db2 files/directories/links to the correct settings via a backup and restore process. This will allow a very quick resolution to the problem so any Db2 outage would be minimized. The tool would be similar to the "db2cfexp / db2cfimp - Connectivity configuration export/import tool".

The tool would provide support for three separate areas: Db2 Code, Db2 Instances and Db2 Databases

The below description breaks down how the tool could be designed:
Db2 Code - Backup the file system objects settings
Db2 Code - Restore the file system objects settings
Db2 Instance - Backup the file system objects settings
Db2 Instance - Restore the file system objects settings
Db2 Database - Backup the file system objects settings
Db2 Database - Restore the file system objects settings

Creating this simple tool is very easy to do. The benefits of providing this tool would be significant to our customers.
  • Guest
  • Jan 3 2019
  • Future Consideration
Why is it useful?
Who would benefit from this IDEA?
How should it work?
Idea Priority Medium
Priority Justification
Customer Name IBM
Submitting Organization
Submitter Tags
  • Attach files
  • and 6 more

NOTICE TO EU RESIDENTS: per EU Data Protection Policy, if you wish to remove your personal information from the IBM ideas portal, please login to the ideas portal using your previously registered information then change your email to "anonymous@euprivacy.out" and first name to "anonymous" and last name to "anonymous". This will ensure that IBM will not send any emails to you about all idea submissions