The output queue controls how printer output files (also called
spooled files) are processed and who has the authority to perform actions
on the output queue and associated printer output.
Because most of the information that you print on the iSeries™ system
is created as printer output, security is necessary to prevent unauthorized
users access to confidential or sensitive material. Authority to check, data
authorization, operator control, spool control, or being the owner allows
you to access and makes changes to an output queue or printer output file.
You need one of the following authorities to perform any action on an output
queue or printer output:
- Authority to check
- You must be the owner of the queue or have data authorization.
- Display data
- When this authority is set to *YES, it allows you to perform such actions
as viewing, moving, sending output to another system, and copying printer
output.
- Operator control
- If this attribute is set to *YES, users with *JOBCTL special authority
are authorized to perform actions like hold, release, and delete printer output
from the output queue. Other actions on printer output, output queues, and
writers are allowed as well and are documented in the iSeries Security Reference.
- Spool control
- Allows the user to perform all operations on printer output. The user
must have *EXECUTE authority to the library the output queue is located in
to perform any actions on the output queue.
- Owner
- This allows the user who owns the output queue to change or delete printer
output.
Note: The default authority to the output queue is *USE public authority.
Display Data authority is set to *NO (meaning not just anyone can view printer
output). Authority to check is *OWNER (so that the output queue owner can
manipulate the printer output). Operator Control is set to *YES (meaning a
user with *JOBCTL can hold, release, and delete printer output).
For more information about authorities needed to work with output queues,
see Appendix D in the Security Reference Manual.