77 lines
4.5 KiB
HTML
77 lines
4.5 KiB
HTML
<?xml version="1.0" encoding="UTF-8"?>
|
|
<!DOCTYPE html
|
|
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
|
<html lang="en-us" xml:lang="en-us">
|
|
<head>
|
|
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
|
|
<meta name="security" content="public" />
|
|
<meta name="Robots" content="index,follow" />
|
|
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
|
|
<meta name="DC.Type" content="concept" />
|
|
<meta name="DC.Title" content="Special authorities" />
|
|
<meta name="abstract" content="This topic describes special authorities that can be specified for a user." />
|
|
<meta name="description" content="This topic describes special authorities that can be specified for a user." />
|
|
<meta name="DC.Relation" scheme="URI" content="rzamvauthtypes.htm" />
|
|
<meta name="DC.Relation" scheme="URI" content="rzamvmonitorspecauth.htm" />
|
|
<meta name="DC.Relation" scheme="URI" content="rzamvauditsecofraction.htm" />
|
|
<meta name="copyright" content="(C) Copyright IBM Corporation 2006" />
|
|
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2006" />
|
|
<meta name="DC.Format" content="XHTML" />
|
|
<meta name="DC.Identifier" content="specialauth" />
|
|
<meta name="DC.Language" content="en-us" />
|
|
<!-- All rights reserved. Licensed Materials Property of IBM -->
|
|
<!-- US Government Users Restricted Rights -->
|
|
<!-- Use, duplication or disclosure restricted by -->
|
|
<!-- GSA ADP Schedule Contract with IBM Corp. -->
|
|
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
|
|
<link rel="stylesheet" type="text/css" href="./ic.css" />
|
|
<title>Special authorities</title>
|
|
</head>
|
|
<body id="specialauth"><a name="specialauth"><!-- --></a>
|
|
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
|
|
<h1 class="topictitle1">Special authorities</h1>
|
|
<div><p>This topic describes special authorities that can be specified
|
|
for a user.</p>
|
|
<p>The system security level determines what the default special authorities
|
|
are for each user class. When you create a user profile, you can select special
|
|
authorities based on the user class. Special authorities are also added and
|
|
removed from user profiles when you change security levels.</p>
|
|
<p>You can specify these special authorities for a user:</p>
|
|
<dl><dt class="dlterm">*ALLOBJ</dt>
|
|
<dd>All-object special authority allows a user authority to perform all operations
|
|
on objects.</dd>
|
|
<dt class="dlterm">*AUDIT</dt>
|
|
<dd>Audit special authority allows a user to define the auditing characteristics
|
|
of the system, objects, and system users.</dd>
|
|
<dt class="dlterm">*IOSYSCFG</dt>
|
|
<dd>System configuration special authority allows a user to configure <span>communication, and</span> input and output devices
|
|
on the system.</dd>
|
|
<dt class="dlterm">*JOBCTL</dt>
|
|
<dd>Job control special authority allows a user to control batch jobs and
|
|
printing on the system.</dd>
|
|
<dt class="dlterm">*SAVSYS</dt>
|
|
<dd>Save system special authority allows a user to save and restore objects.</dd>
|
|
<dt class="dlterm">*SECADM</dt>
|
|
<dd>Security administrator special authority allows a user to work with user
|
|
profiles on the system.</dd>
|
|
<dt class="dlterm">*SERVICE</dt>
|
|
<dd>Service special authority allows a user to perform software service functions
|
|
on the system.</dd>
|
|
<dt class="dlterm">*SPLCTL</dt>
|
|
<dd>Spool control special authority allows unrestricted control of batch jobs
|
|
and output queues on the system.</dd>
|
|
</dl>
|
|
<p>For more information on special authorities, see <span class="q">"Using System Security
|
|
(QSecurity) System Value"</span> in the <cite>iSeries™ Security Reference</cite>. </p>
|
|
</div>
|
|
<div>
|
|
<div class="familylinks">
|
|
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzamvauthtypes.htm" title="This article discusses the types of authority that can be authorized and used on the server.">Types of authority</a></div>
|
|
</div>
|
|
<div class="relconcepts"><strong>Related concepts</strong><br />
|
|
<div><a href="rzamvmonitorspecauth.htm" title="This topic describes the SECBATCH menu options and commands used to monitor special authorities.">Monitor special authorities</a></div>
|
|
<div><a href="rzamvauditsecofraction.htm" title="A security officer or security administrator is responsible for the security on a system. A security officer has *ALLOBJ and *SECADM special authority.">Audit the Security Officer's actions</a></div>
|
|
</div>
|
|
</div>
|
|
</body>
|
|
</html> |