Securing the Lawson Database Driver Configuration File

If your security and data access strategy includes determination of the database user and password in the database driver configuration file, you should restrict knowledge of the IBM DB2 Lawson user name and password to the database administrator and anyone else in your organization who must perform database administration tasks. Use this procedure to secure the IBM database driver configuration file.

  1. Use the chmod command to secure the Lawson IBM database driver configuration file. For example, if the name of your product line is PROD, type:

    chmod 400 $LAWDIR/prod/IBM

  2. Give the Enterprise Server access to the Lawson IBM database driver configuration file by making the Lawson user, lawson, the owner of the file. For example, if the name of your product line is PROD, type:

    chown lawson $LAWDIR/prod/IBM

  3. Execute the ibmdb database driver as the Lawson user, lawson.

    Edit the ladb.cfg file and add the following line:

    LAWSONUID     1
    Note: If you add or change the LAWSONUID parameter, you must stop and start the Lawson database server (ladb) to implement your change. For more information on starting and stopping ladb, see the Lawson Administration: Server Setup and Maintenance guide.