friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
master
ibm-information-center/dist/eclipse/plugins/i5OS.ic.cl_5.4.0.1/crtautl.htm

198 lines
7.1 KiB
HTML
Raw Permalink Blame History

<!doctype html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head><META http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>Create Authorization List (CRTAUTL)</title>
<link rel="stylesheet" type="text/css" href="../rzahg/ic.css">
</head>
<body bgcolor="white">
<script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<a name="CRTAUTL.Top_Of_Page"></a>
<h2>Create Authorization List (CRTAUTL)</h2>
<table width="100%">
<tr>
<td valign="top" align="left"><b>Where allowed to run: </b>All environments (*ALL)<br>
<b>Threadsafe: </b>No
</td>
<td valign="top" align="right">
<a href="#CRTAUTL.PARAMETERS.TABLE">Parameters</a><br>
<a href="#CRTAUTL.COMMAND.EXAMPLES">Examples</a><br>
<a href="#CRTAUTL.ERROR.MESSAGES">Error messages</a></td>
</tr>
</table>
<div> <a name="CRTAUTL"></a>
<p>The Create Authorization List (CRTAUTL) command creates an authorization list. Authorization lists are used to give a set of users specific authorities to an object or a set of objects. Each user has the authorities to all of the objects. When an authorization list is granted authority to an object, the users on the list get authority to the object. The authorities they receive are those specified for them in the authorization list.
</p>
<p>A user's authority on an authorization list can be overridden by granting the user specific authority to the object. Specific authorities override the user's authority specified in the authorization list. Specific authorities override the user's group authority, if both are specified.
</p>
<p>If public authority specified for the object is *AUTL, then the public authority specified on the authorization list is used.
</p>
<p><b>Restrictions:</b>
</p>
<ul>
<li>Authorization lists cannot be used to secure user profiles or other authorization lists.
</li>
<li>Only one authorization list can be used to secure an object.
</li>
</ul>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTAUTL.Top_Of_Page">Top</a></td></tr>
</table>
<hr size="2" width="100%">
<div>
<h3><a name="CRTAUTL.PARAMETERS.TABLE">Parameters</a></h3>
<table border="1" cellpadding="4" cellspacing="0">
<!-- col1="10" col2="15" col3="30" col4="10" -->
<tr>
<th bgcolor="aqua" valign="bottom" align="left">Keyword</th>
<th bgcolor="aqua" valign="bottom" align="left">Description</th>
<th bgcolor="aqua" valign="bottom" align="left">Choices</th>
<th bgcolor="aqua" valign="bottom" align="left">Notes</th>
</tr>
<tr>
<td valign="top"><a href="#CRTAUTL.AUTL"><b>AUTL</b></a></td>
<td valign="top">Authorization list</td>
<td valign="top"><i>Name</i></td>
<td valign="top">Required, Positional 1</td>
</tr>
<tr>
<td valign="top"><a href="#CRTAUTL.TEXT"><b>TEXT</b></a></td>
<td valign="top">Text 'description'</td>
<td valign="top"><i>Character value</i>, <b><u>*BLANK</u></b></td>
<td valign="top">Optional</td>
</tr>
<tr>
<td valign="top"><a href="#CRTAUTL.AUT"><b>AUT</b></a></td>
<td valign="top">Authority</td>
<td valign="top"><b><u>*CHANGE</u></b>, *ALL, *USE, *EXCLUDE</td>
<td valign="top">Optional, Positional 2</td>
</tr>
</table>
<table width="100%">
<tr><td align="right"><a href="#CRTAUTL.Top_Of_Page">Top</a></td></tr>
</table>
</div>
<div> <a name="CRTAUTL.AUTL"></a>
<h3>Authorization list (AUTL)</h3>
<p>Specifies the authorization list to be created.
</p>
<p>This is a required parameter.
</p>
<dl>
<dt><b><i>name</i></b></dt>
<dd>Specify the name to be given to the authorization list object.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTAUTL.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTAUTL.TEXT"></a>
<h3>Text 'description' (TEXT)</h3>
<p>Specifies the text that briefly describes the object.
</p>
<dl>
<dt><b><u>*BLANK</u></b></dt>
<dd>No text is specified.
</dd>
<dt><b><i>character-value</i></b></dt>
<dd>Specify no more than 50 characters, enclosed in apostrophes.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTAUTL.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTAUTL.AUT"></a>
<h3>Authority (AUT)</h3>
<p>Specifies the authority you are giving to users who do not have specific authority for the object, who are not on an authorization list, and whose group profile or supplemental group profiles do not have specific authority for the object.
</p>
<dl>
</dl>
<dl>
<dt><b><u>*CHANGE</u></b></dt>
<dd>The user can perform all operations on the object except those limited to the owner or controlled by object existence (*OBJEXIST) and object management (*OBJMGT) authorities. The user can change and perform basic functions on the object. *CHANGE authority provides object operational (*OBJOPR) authority and all data authority. If the object is an authorization list, the user cannot add, change, or remove users.
</dd>
</dl>
<dl>
</dl>
<dl>
<dt><b>*ALL</b></dt>
<dd>The user can perform all operations except those limited to the owner or controlled by authorization list management (*AUTLMGT) authority. The user can control the object's existence, specify the security for the object, change the object, and perform basic functions on the object. The user also can change ownership of the object.
</dd>
</dl>
<dl>
</dl>
<dl>
<dt><b>*USE</b></dt>
<dd>The user can perform basic operations on the object, such as running a program or reading a file. The user cannot change the object. Use (*USE) authority provides object operational (*OBJOPR), read (*READ), and execute (*EXECUTE) authorities.
</dd>
</dl>
<dl>
</dl>
<dl>
<dt><b>*EXCLUDE</b></dt>
<dd>The user cannot access the object.
</dd>
</dl>
<dl>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTAUTL.Top_Of_Page">Top</a></td></tr>
</table>
<hr size="2" width="100%">
<div><h3><a name="CRTAUTL.COMMAND.EXAMPLES">Examples</a> </h3>
<p>
<pre>
CRTAUTL AUTL(PROGMR) AUT(*CHANGE)
TEXT('Programmers authorization list')
</pre>
</p>
<p>This command creates an authorization list (PROGMR). If an object whose authority comes from the authorization list has specified USER(*PUBLIC) as AUT(*AUTL), the users who do not have specific authority and whose group does not have specific authority to the object are given *CHANGE authority for the object secured by this authorization list.
</p>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTAUTL.Top_Of_Page">Top</a></td></tr>
</table>
<hr size="2" width="100%">
<div><h3><a name="CRTAUTL.ERROR.MESSAGES">Error messages</a> </h3>
<p><b><u>*ESCAPE Messages</u></b>
</p>
<dl>
<dt><b>CPF2122</b></dt>
<dd>Storage limit exceeded for user profile &amp;1.
</dd>
<dt><b>CPF22AD</b></dt>
<dd>Group profile for user not found.
</dd>
<dt><b>CPF22A6</b></dt>
<dd>User creating an authorization list must have *ADD authority to his user profile
</dd>
<dt><b>CPF2204</b></dt>
<dd>User profile &amp;1 not found.
</dd>
<dt><b>CPF2217</b></dt>
<dd>Not authorized to user profile &amp;1.
</dd>
<dt><b>CPF2222</b></dt>
<dd>Storage limit is greater than specified for user profile &amp;1.
</dd>
<dt><b>CPF2278</b></dt>
<dd>Authorization list &amp;1 already exists.
</dd>
<dt><b>CPF2289</b></dt>
<dd>Unable to allocate authorization list &amp;1.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTAUTL.Top_Of_Page">Top</a></td></tr>
</table>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink