EXEMPTION Clause

The REVOKE EXEMPTION statement modifies the security credentials of the specified user (or list of users) by enabling one or all of the rules of a specified security policy from which the user had been exempt. 

Read syntax diagramSkip visual syntax diagram
EXEMPTION Clause

|--EXEMPTION ON RULE--+-IDSLBACREADARRAY-----------------+------>
                      +-IDSLBACREADTREE------------------+   
                      +-IDSLBACREADSET-------------------+   
                      +-IDSLBACWRITEARRAY--+-----------+-+   
                      |                    +-WRITEDOWN-+ |   
                      |                    '-WRITEUP---' |   
                      +-IDSLBACWRITESET------------------+   
                      +-IDSLBACWRITETREE-----------------+   
                      '-ALL------------------------------'   

                      .-,--------------.   
                      V                |   
>--FOR--policy--FROM----+------+--user-+------------------------|
                        '-USER-'           

Element Description Restrictions Syntax
policy Security policy for which the exemption is revoked Must exist in the database Identifier
user User to whom the exemption is to be revoked Must be the authorization identifier of a user Owner name

Only a user who holds the DBSECADM role can issue the REVOKE EXEMPTION statement.

Parent topic: Security Administration Options
Related reference:
RENAME SECURITY statement
DROP SECURITY statement
CREATE SECURITY LABEL statement
CREATE SECURITY LABEL COMPONENT statement
ALTER SECURITY LABEL COMPONENT statement
CREATE SECURITY POLICY statement
Copyright© 2021 HCL Technologies Limited