SMF Module

Smart Access Control

Enterprise-grade user provisioning and privilege management for Netezza®. Automate the tedious, error-prone parts of access management and integrate with your existing directory services.

Discuss Your Access Management Learn About SMF

The Problem

Access Management on Netezza Is Harder Than It Should Be

Netezza’s native access control model is capable but low-level. Granting and revoking privileges is done at the SQL level, one statement at a time. There is no concept of role templates, no LDAP sync, and no audit trail unless you build one yourself.

In practice, this means access management becomes a mix of tribal knowledge and manual scripts. Users leave organisations but their accounts stay active. New users get provisioned inconsistently. Compliance audits require someone to manually reconstruct who had access to what and when.

Smart Access Control solves this by sitting above Netezza’s native model and adding the automation and governance layer that enterprise environments need.

Common Complaints We Hear

  • !“We can’t easily tell who has access to our sensitive schemas.”
  • !“Provisioning a new user means running a dozen SQL statements manually.”
  • !“We have no automated way to de-provision leavers on Netezza.”
  • !“Our AD groups don’t map cleanly to Netezza roles.”
  • !“Access reviews before audit take days of manual effort.”
  • !“Developers sometimes have production access they shouldn’t.”

What It Does

Full Lifecycle Access Management

LDAP & Active Directory Integration

Smart Access Control syncs with your organisation’s directory service. Users provisioned in AD are automatically reflected in Netezza. Leavers are de-provisioned on schedule. No manual intervention required.

Role-Based Access Templates

Define role templates that map to business functions: analyst read-only, ETL developer, data steward, DBA. Provisioning a new user becomes a matter of assigning the right template, not running SQL.

Bulk Provisioning & De-provisioning

Onboard a new team or project group in minutes. Remove access for an entire department in a single operation. All changes are logged with timestamps and operator identity.

Privilege Audit Reports

Generate a full report of who has access to what, across every schema and table. Schedule monthly or trigger on demand. Output to PDF or CSV for compliance submissions.

Separation of Duties Enforcement

Define rules that prevent conflicting privileges from being granted to the same user. For example, a developer cannot hold both ETL write access and production read access simultaneously.

Change Audit Log

Every privilege change — grant, revoke, role assignment, template application — is recorded with the operator identity, timestamp, and reason. Queryable from SMF Control Studio.

Integration

Connects to Your Existing Directory

Smart Access Control connects to your Active Directory or LDAP server and maps directory groups to Netezza role templates. This is a one-time configuration step. After that, user lifecycle management is driven entirely by your HR and IT processes — not by a Netezza DBA running SQL scripts.

Synchronisation runs on a configurable schedule or can be triggered on demand via the SMF Control Studio interface. Conflicts are flagged for review rather than silently resolved.

Ask About LDAP Setup
Integration Architecture
Active Directory / LDAP
SMF Access Control Engine
Role Templates
Audit Log
Netezza NPS / PostgreSQL
Resources

Documentation and Videos

Access Control Introduction

Watch a short video covering row-level and column-level access control, dynamic security views, and LDAP/Active Directory synchronisation.

Watch Video

IBM Cost of a Data Breach Report

Read the IBM Security research on the average cost of data breaches across industries, and why database access control is a critical investment.

Download PDF

Frequently Asked Questions

Common Questions

Capabilities

  • Smart Access Control is a module within the Smart Management Framework (SMF) from Smart Associates that manages user provisioning, role assignment, and access governance for IBM Netezza. It synchronises with LDAP, Active Directory, and Microsoft Entra ID to automate user lifecycle management and enforce access policies.

  • Yes. Smart Associates Smart Access Control synchronises with LDAP, Active Directory, and Microsoft Entra ID (formerly Azure AD). Users and groups defined in the directory are automatically reflected in Netezza, eliminating the need for manual provisioning.

  • Smart Access Control supports bulk provisioning through role templates. Administrators define standard role configurations for job functions such as analyst, developer, or data steward, and those templates are applied to batches of users at once — significantly reducing onboarding time.

  • A privilege audit report from Smart Associates Smart Access Control provides a comprehensive view of who has access to what within Netezza — listing users, their roles, group memberships, and object-level permissions. These reports support compliance reviews, access recertification, and security audits.

Compliance & Security

  • Smart Associates Smart Access Control includes separation of duties controls that prevent users from holding incompatible privilege combinations — for example, being both a data loader and an auditor for the same dataset. Policy violations are flagged automatically for remediation.

  • Yes. Because Smart Access Control synchronises with Active Directory or Entra ID, when a user account is disabled or removed from the directory, their Netezza access is automatically revoked — eliminating the risk of orphaned accounts accumulating over time.

  • Smart Access Control provides the access governance controls required to demonstrate GDPR compliance: access to personal data is limited to authorised individuals, reviewed regularly, and revoked promptly when no longer required. Privilege audit reports provide the evidence needed for data protection audits.

  • Role templates in Smart Associates Smart Access Control are pre-configured sets of Netezza privileges that correspond to standard job functions. Rather than configuring access for each user individually, administrators assign a template and the correct set of permissions is applied automatically and consistently.

Getting Started

  • Native Netezza user management requires manual SQL commands to create users and assign roles, with no audit trail, no directory synchronisation, and no separation of duties enforcement. Smart Associates Smart Access Control adds a web-based interface, directory sync, automated lifecycle management, and compliance reporting on top of native capability.

  • Smart Associates Smart Access Control is part of the SMF platform, which currently ships on IBM Netezza (PDA and Hammerhead) with planned support for PostgreSQL, Oracle, and Databricks. Check the SMF product page for the latest platform availability.

  • Smart Access Control is a module of the Smart Management Framework (SMF). SMF modules are available as part of Netezza Support Plus Managed contracts. Contact Smart Associates to confirm which modules are included in a specific contract tier.

  • Visit smart-associates.biz/solutions/smart-access-control/ or contact Smart Associates to arrange a demonstration and discuss how Smart Access Control integrates with your existing directory infrastructure.

Time to Take Control of Your Access Model?

Tell us about your current setup. We will assess the gap and design an integration that works with your existing directory service.

Talk to an Engineer
Related Articles

From the Blog

Data Governance
Netezza

Database Activity Monitoring: Why It Matters

Database Activity Monitoring (DAM) is key to cybersecurity. Learn how to use DAM for real-time monitoring, anomaly detection, and compliance.

Read article
CP4D With Smart Database Replication
Cloud Pak for Data

Smart Management Frameworks for OpenShift

By containerizing Smart Management Frameworks it allows us to bring our replication software to Netezza users on IBM’s Cloud Pak for Data System.

Read article
Scales showing Replication Services on one side and Smart DB Replication on the other
Netezza

How Smart Database Replication Compares to Netezza Replication Services

Netezza Performance Server version 11.2.2 now includes Replication Services. Although at first glance this sounds very similar to what our Smart Database Replication product also does, in fact there are many points of differentiation between the two offerings that customers should be aware of before deciding which is the best approach for them. Let’s explore some of these.

Read article
View All Articles