3.2.4 Database Manager Configuration parameter: trust_allclnts

Information

This parameter is relied upon to determine whether each user (client) needs to be authenticated by the server or if the server should assume that each user (client) has already been sufficiently authenticated.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

To specify client-side authentication, issue the following command to set the parameter to 'YES':
db2=> update dbm cfg using trust_allclnts YES

To specify server-side authentication, issue the following command to set the parameter to 'NO':
db2=> update dbm cfg using trust_allclnts NO

See Also

https://workbench.cisecurity.org/files/162