Once the security plan for your site is developed, and the CA Dataquery users are identified, define each CA Dataquery user to CA Dataquery. When you add or modify a user definition, CA Dataquery stores that definition in the User Table (DQU). (If the user table is enabled, you can execute queries against it. Use the table name DATAQUERY-DQU.) You can define or modify a user by using online CA Dataquery. It is a fast, simple and efficient method.
CA Dataquery provides two options on the CA Dataquery Administrative Menu (USERS and PROFILE) for adding and maintaining users.
Obtaining Authorizations
Within the CA Dataquery system exists a System Option Table created by a macro (DQOPTLST) with a number of parameters which define the CA Dataquery system at each customer site (see the CA Dataquery Administrator Guide). These parameters define system-wide limits on such things as:
Within the environment defined by the System Option Table, the CA Dataquery Administrator classifies people with signons as CA Dataquery Administrators, users, or associate users. Within those classifications, the CA Dataquery Administrator can define what each user is allowed to do, and can override a few of the System Option Table parameters regarding system storage allotments for individual users. Table and field authorizations are handled in other ways. For more information, see Securing Data Access for DQL Use and Limiting Access to Columns.
Within the individual user authorizations set up by the CA Dataquery Administrator, each user can change some personal specifications by accessing and changing the user's User Profile panel. (Associate users can only access their profiles if the System Option Table parameter ASUPPRO= is set to YES.)
The flexibility of User Table Maintenance makes it possible to assign authorizations according to actual work responsibilities. When you authorize a new user as an associate user, that user becomes limited to functions accessible by PF key on the associate user panels. For an associate user, you can only add the following authorizations on the User Table Maintenance panel:
To authorize a person as a user, do not select Associate User. You can add any or all of the authorizations described in the list.
The only difference between a user and an administrator is that the administrator is a user who has been given one or more of the following authorizations:
External Security
If CA Dataquery is externally secured, all CA Dataquery security functions and user authorizations must be done through the external security package. When an external security package is in effect, user access to databases and tables is controlled by that package. External security overrides CA Dataquery security at the database and table level. For more information about external security, see Using External Security for CA Datacom.
Users Option
You can enter information online with the USERS option to:
Note: For more information about the System Option Table parameters, see the CA Dataquery Administrator Guide.
When a user is added with a private SQL authorization specified, such as is required for SQL use, CA Dataquery automatically creates a schema in CA Datacom Datadictionary for the SQL authorization ID. A schema defines the SQL environment of the individual user. Users must have a schema associated with an authorization ID to use SQL. A schema contains all table, view and privilege definitions owned by a given authorization ID. Any definitions created by the user are automatically added to the schema for the authorization ID specified when they creates the SQL object.
Note: A system utility (DQUSERMT) allows you to maintain the user in batch.
Profile Option
The PROFILE option, <PF10> on the Directory of CA Dataquery Users panel, allows the modification of the individual user-defined profile option defaults for the following CA Dataquery functions and actions:
|
Copyright © 2014 CA.
All rights reserved.
|
|