The Configure System Security (CFGSYSSEC) command activates security features of the system by turning on security auditing, changing system values, and modifying system supplied user profiles. To determine what features are turned on, issue the Retrieve CL Source (RTVCLSRC) command against the program QSECCFGS and examine the source file created by the RTVCLSRC command.

Restriction: You must have *ALLOBJ, *SECADM, and *AUDIT special authorities to use this command.

This command can be customized by the security administrator by following the steps below:

1. Issue the Retrieve CL Source (RTVCLSRC) command against the program QSECCFGS.
2. Edit the source code produced from the RTVCLSRC command and compile the new program. Make sure that the program is given a new name, is created into a library other than QSYS, and that the *PUBLIC authority is set to *EXCLUDE.
3. Issue the Change Command (CHGCMD) against the Configure System Security command and specify your new program for the PGM parameter. An example is listed below:

   CHGCMD CMD(QSYS/CFGSYSSEC) PGM(library_name/new_pgm_name)
   

   Note: If a product upgrade is done, the CFGSYSSEC command is reinstalled, or maintenance is applied to the CFGSYSSEC command, the CHGCMD will have to be issued again to customize the command.

DISCLAIMER: IBM cannot guarantee or imply reliability, serviceability, performance or function of the retrieved QSECCFGS source code and any programs. THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE EXPRESSLY DISCLAIMED.

Parameters

None

Top

Examples

CFGSYSSEC

This command allows you to configure the security features of your system.

Error messages

*ESCAPE Messages

CPFB304

User does not have required special authorities.