DB2 10.5 for Linux, UNIX, and Windows
DB2 10.5 for Linux, UNIX, and Windows
An LBAC rule set is a predefined set of rules that are used when comparing security labels. When the values of a two security labels are being compared, one or more of the rules in the rule set will be used to determine if one value blocks another.
Each LBAC rule set is identified by a unique name. When you create a security policy you must specify the LBAC rule set that will be used with that policy. Any comparison of security labels that are part of that policy will use that LBAC rule set.
Each rule in a rule set is also identified by a unique name. You use the name of a rule when you are granting an exemption on that rule.
How many rules are in a set and when each rule is used can vary from rule set to rule set.
There is currently only one supported LBAC rule set. The name of that rule set is DB2LBACRULES.