sql0551n - privilege granted to group

v9.7 FP5


In dev env, I granted DBADM with DATAACCESS to group X.

When a user who is part of group X tries to create a view, he's getting:

SQL0551N "USER" does not have the required authorization or privilege to
perform operation "SELECT" on object "xxxxxxxx".
SQLSTATE=42501


This is due to "Group privileges are not considered for any table or view specified in the CREATE VIEW statement."

The same applies to create trigger, open cursor, etc...
IBM Restrictions on the use of group privileges when executing DDL statements or binding packages - United States


So, I created role X and granted DBADM to this role and then granted role X to this user. create view is working.

However, I don't want to grant anything to specific user IDs. If I grant role X to the group, create view is failing for the same reason as before because "Roles granted to groups are not considered for packages containing SQL, views, materialized query tables (MQT), triggers and SQL routines."


Are there any other options? To allow users to create views, etc... without granting them explicit privileges?