friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
master
ibm-information-center/dist/eclipse/plugins/i5OS.ic.rbam6_5.4.0.1/rbam6autexpand.htm

90 lines
5.4 KiB
HTML
Raw Permalink Blame History

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="reference" />
<meta name="DC.Title" content="AUT parameter" />
<meta name="abstract" content="You use the authority (AUT) parameter in create, grant, and revoke commands." />
<meta name="description" content="You use the authority (AUT) parameter in create, grant, and revoke commands." />
<meta name="DC.Relation" scheme="URI" content="rbam6expand.htm" />
<meta name="DC.Relation" scheme="URI" content="../books/sc415302.pdf" />
<meta name="copyright" content="(C) Copyright IBM Corporation 1998, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 1998, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rbam6autexpand" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>AUT parameter</title>
</head>
<body id="rbam6autexpand"><a name="rbam6autexpand"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">AUT parameter</h1>
<div><p>You use the authority (AUT) parameter in create, grant, and revoke
commands.</p>
<div class="section"><p>The authority (AUT) parameter specifies the authority granted
to all users of an object. It also specifies an authorization list that is
used to secure the object. Four object types allow the AUT parameter to contain
an authorization list: LIB, PGM, DTADCT, and FILE. Public authority is an i5/OS™
object attribute that controls the base set of rights to that object for all
users having access to the system. These rights can be extended or reduced
for specific users. If you specify an authorization list, the public authority
in the authorization list is the public authority for the object. The owner
of an object has all authority to the object at its creation.</p>
<p>If the
object is created as a private object or with the limited authority given
to all users, the owner can grant more or less authority to specific users
by specifically naming them and stating their authority in the <span class="cmdname">Grant
Object Authority (GRTOBJAUT)</span> command. The owner also can withdraw
specific authority from specific users, or from all users (publicly authorized
and/or specifically authorized) by using the <span class="cmdname">Revoke Object Authority
(RVKOBJAUT)</span> command or the <span class="cmdname">Edit Object Authority (EDTOBJAUT)</span> command.</p>
</div>
<div class="section"><h4 class="sectiontitle">Values allowed</h4><dl><dt class="dlterm">*LIBCRTAUT</dt>
<dd>The public authority for the object is taken from the value on the CRTAUT
parameter of the target library (the library that is to contain the object).
The public authority is determined when the object is created. If the CRTAUT
value for the library changes after the object is created, the new value does
not affect any existing objects.</dd>
<dt class="dlterm">*USE</dt>
<dd>You can perform basic operations on the object, such as running a program
or reading a file. The user cannot change the object. *USE authority provides
object operational authority, read authority, and execute authority.</dd>
<dt class="dlterm">*CHANGE</dt>
<dd>You can perform all operations on the object except those limited to the
owner or controlled by object existence authority and object management authority.
You can change and perform basic functions on the object. Change authority
provides object operational authority and all data authority.</dd>
<dt class="dlterm">*ALL</dt>
<dd>You can perform all operations except those limited to the owner or controlled
by authorization list management authority. Your can control the object's
existence, specify the security for the object, change the object, and perform
basic functions on the object. You also can change ownership of the object.</dd>
<dt class="dlterm">*EXCLUDE</dt>
<dd>You cannot access the object.</dd>
<dt class="dlterm">*EXECUTE</dt>
<dd>You can run a program or procedure or search a library or directory.</dd>
<dt class="dlterm"><var class="varname">authorization-list-name</var></dt>
<dd>Specify the name of the authorization list whose authority is used.</dd>
</dl>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rbam6expand.htm" title="This section contains the expanded descriptions of some of the parameters commonly used in the CL commands.">Commonly used parameters</a></div>
</div>
<div class="relinfo"><strong>Related information</strong><br />
<div><a href="../books/sc415302.pdf" target="_blank">iSeries Security Reference</a></div>
</div>
</div>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink