In UDS/SQL-openUTM applications, openUTM ensures that the user is identified correctly and passes the relevant information (openUTM user ID, openUTM host name, openUTM application name and KSET name) to UDS/SQL. UDS/SQL uses this information to construct the UDS/SQL user name and the UDS/SQL user group name as follows:

UDS/SQL user group name       =  openUTM host name +
                                 openUTM application name +
                                 KSET name
UDS/SQL user name             =  openUTM host name +
                                 openUTM application name +
                                 openUTM user ID

Underscore characters are added internally to some user names and user group names.

The UDS/SQL user group name is used for checking authorization; the UDS/SQL user name is of no importance in this version. In UDS/SQL openUTM applications, the assignment of UDS/SQL users to UDS/SQL user groups is superfluous. If it is necessary to change the assignment of users to given user groups, these changes only need be made by the openUTM administrator.

The load parameter PP PRIVACY-CHECK can be used by the UDS/SQL database administrator to modify or turn off the privacy check (see PRIVACY-CHECK in chapter "DBH load parameters").

To provide a clearer picture of the general organization of UDS/SQL and openUTM, the openUTM concept of access privileges is described briefly below.