Once the security plan for your site is developed, and the CA Dataquery users are identified, you must define each CA Dataquery user to CA Dataquery. When you add or modify a user definition, CA Dataquery stores that definition in the User Table (DQU). (If the user table is enabled, you can execute queries against it. Use the table name DATAQUERY-DQU.) You can define or modify a user by using online CA Dataquery. It is a fast, simple and efficient method.
CA Dataquery provides two options on the CA Dataquery Administrative Menu (USERS and PROFILE) for adding and maintaining users.
Obtaining Authorizations
Within the CA Dataquery system exists a System Option Table created by a macro (DQOPTLST) with a number of parameters which define the CA Dataquery system at each customer's site (see Tailoring the CA Dataquery System Option Table). These parameters define system-wide limits on such things as:
Within the environment defined by the System Option Table, the CA Dataquery Administrator classifies people with signons as CA Dataquery Administrators, users, or associate users. Within those classifications, the CA Dataquery Administrator can define what each user is allowed to do, and can override a few of the System Option Table parameters regarding system storage allotments for individual users. Table and field authorizations are handled in other ways. See Securing Data Access for DQL Use and Limiting Access to Columns and Rows for details.
Within the individual user authorizations set up by the CA Dataquery Administrator, each user can change some personal specifications by accessing and changing the user's User Profile panel. (Associate users can only access their profiles if the System Option Table parameter ASUPPRO= is set to YES.)
The flexibility of User Table Maintenance makes it possible to assign authorizations according to actual work responsibilties. When you authorize a new user as an associate user, that user becomes limited to functions accessible by PF key on the associate user panels. For an associate user, you can only add the following authorizations on the User Table Maintenance panel:
To authorize a person as a user, do not select Associate User. You can add any or all of the above authorizations.
The only difference between a user and an administrator is that the administrator is a user who has been given one or more of the following authorizations:
External Security
If CA Dataquery is externally secured, all CA Dataquery security functions and user authorizations must be done through the external security package. When an external security package is in effect, users' access to databases and tables is controlled by that package. External security overrides CA Dataquery security at the database and table level. See the CA Datacom Security Reference Guide for details on external security.
Users Option
You can enter information online with the USERS option to:
For more information about the System Option Table parameters, see Tailoring the CA Dataquery System Option Table.
When a user is added with a private SQL authorization specified, such as is required for SQL use, CA Dataqueryautomatically creates a schema in CA Datacom Datadictionary for the SQL authorization ID. A schema defines the individual user's SQL environment. Users must have a schema associated with an authorization ID to use SQL. A schema contains all table, view and privilege definitions owned by a given authorization ID. Any definitions created by the user are automatically added to the schema for the authorization ID specified when he creates the SQL object.
Note: A system utility (DQUSERMT) allows you to maintain the user in batch. See Performing User Table Maintenance (DQUSERMT).
Profile Option
The PROFILE option, <PF10> on the Directory of CA Dataquery Users panel, allows the modification of the individual user-defined profile option defaults for the following CA Dataquery functions and actions:
|
Copyright © 2014 CA.
All rights reserved.
|
|