Concept
Because of the impact on security, the number of administrators with User Table Maintenance authorization should be kept to a minimum. You can authorize an administrator for all of the administrative tasks, or you can selectively authorize an administrator for one or more tasks. Evaluate the needs of your site thoroughly before making administrative assignments. CA Dataquery permits you to reassign any of these administrative functions if your needs change.
Administrative Menu (DQKH0)
=> --------------------------------------------------------------------------DQKH0 DATAQUERY: ADMINISTRATIVE MENU ------------------------------------------------------------------------------ Enter DESIRED OPTION NUMBER ===> __ 1. PROFILE - Display and update user profile 2. CONDITIONS - List create and maintain conditions 3. RESTRICTIONS - List create and maintain restrictions 4. PRINTER CONTROL - Request control functions for a network printer 5. JCL - List and maintain batch query JCL 6. DIAGNOSTICS - Produce storage dumps 7. LANGUAGE - Translate DATAQUERY text to another language 8. USERS - List and maintain DATAQUERY users 9. SETS - List and maintain saved sets 10. LIBRARY - Maintain query library member attributes 11. SECURITY CONTROL - Table and column security authorization ------------------------------------------------------------------------------- <PF1> HELP <PF2> RETURN
Panel Description
The following is a brief explanation of each administrative function as seen on the panel:
Display or update your profile. CA Dataquery allows each user (who is not an associate user) to modify their profile option defaults for CA Dataquery's online and batch features, primary and secondary language selections, and network printing options. The administrator can modify the profile of any user from the Directory of Dataquery Users panel. Several of the fields in a user profile default to values specified at the time the user is created or maintained using the USERS function discussed next. If you do not specify an option, it defaults to the DQSYSTBL system defaults.
Create, delete, view, or edit a condition. A condition (when listed in a restriction) allows a user or group of users access to some, but not all, of the rows in a table based on the content of one or more columns. The administrator names the condition, identifies the table and states the condition. For example, the condition may restrict access to all COMPANY rows containing a value of 20 in the column for sales ID and a value of DALLAS in the city column. You can print a report of each of the conditions with a list of the restrictions where the condition applies. Conditions are discussed in more detail in the section on Using Restricted Conditions in this guide.
Create, delete, view, or edit a restriction. A restriction is a list of conditions restricting user or group access to view or manipulate data. The administrator can restrict user access at the user level or at the group ID level of the user. Restrictions are discussed in the section on Using Restricted Conditions. You can print a report which lists all of the restrictions and the conditions within the restrictions.
Display a directory of outstanding network print requests. It allows a request to be canceled (flushed), restarted, or stopped.
Create, delete, view, or edit JCL members and PROCs. The JCL directory lists the JCL members and PROCs used for executing batch query jobs.
Display the CA Dataquery Request Table or request a storage dump in the form of a transaction dump or a module dump. DIAGNOSTICS is used only under the direction of CA Support for the purpose of resolving problems as quickly as possible. The administrator chooses where (terminal ID) and when the dump is turned on or off.
Translate, edit, delete, and display CA Dataquery panels, program literals, and vocabulary terms to another language. You can use this function to edit CA Dataquery to reflect a different language, language dialect, or terminology used in your company's daily business. The administrator also uses this function to place messages on the CA Dataquery bulletin board.
Add, delete, view, and update users, list active users, and send messages. The administrator can maintain name, password, accounting code, group level, and authorization of the user for administrative functions. The administrator can also override system defaults, list and deactivate active users, and send messages.
A CA Dataquery Administrator who is authorized for the USERS function, can establish any new user to CA Dataquery or change signon characteristics of the user as discussed previously. They can also assign system and group passwords. Administrators cannot delete themselves or turn off their USERS maintenance authorization.
The USERS authorization is the key to all other authorizations. Carefully control authorization to this function.
View, delete, and use all saved found sets. Anyone (except the associate user) who runs a query can save the resulting collection of data as a saved found set. The administrator can reuse the data in a found set, delete the found set, or view a listing of the found sets.
Create, delete, edit, execute, or submit a query, dialog, or term. The administrator can define or modify the extended definition of a query, dialog, or term which includes specifying it as private or public. They can also modify the groups assigned to the query, dialog, or term and to the author. The administrator can create queries, establish dialog definitions, and submit and validate queries. The LIBRARY function maintains the attributes (extended definitions) of the query library.
If QRYGRPS=YES is specified in the DQOPTLST macro, you can partition the public query library. Once a query, dialog, or term is designated as public, only an administrator with LIBRARY authorization can make changes to it and its extended attributes because queries designated PUBLIC belong to the group not the author. Group level assignments limit the scope of a query, dialog, or term to which the LIBRARY authorization extends. If the group level assignments do not match the administrator's group level assignments, the administrator cannot access the query, dialog, or term. If no group level assignment is made, the access is unlimited.
Enables access to data by authorizing DQL Mode users to a database and tables, tables to a user, or profile codes to a user as well as to copy profile codes and authorizations from user to another. This function provides table and column security authorization for a user.
Each of the administrative functions is a tool for the maintenance of your CA Dataquery system. Consider all aspects of your CA Dataquery security as discussed in this chapter before delegating responsibilities. (You can always make reassignments later.) It is useful to assign LIBRARY authorization to one user in each group so that this user can administer public queries, dialogs, and terms for the group. It is imperative that you carefully consider the needs of your site and allocate the authority to use each administrative function to the appropriate user. See Adding a New User, specifically the ASSOCIATE USER option.
|
Copyright © 2014 CA.
All rights reserved.
|
|