Limit Specific Users Update Authority

External Security Considerations › How Security Options Interact › Limit Specific Users Update Authority

Limit Specific Users Update Authority

Use security rules to limit user access to resources:

Grant users OPSADMIN and SSMADMIN access to the CA OPS/MVS RDF table.
Grant only one user ID, SSMADMIN, authority to read or update the CA OPS/MVS master SSM table (STCTBL).

You can limit update authority to specific users. The following security rule does a more specific security check when you limit the authority of your users.

Follow these steps:

Turn on external security.
```
EXTSECURITY=ON
```
Grant the user OPSADMIN UPDATE access to external security resource OP$MVS.SQL.*.

Use the following security rule to allow a specific user to access the STCTBL table:

)SEC SQL*
)PROC
IF SEC.AUSQTBLS <> 'STCTBL' THEN RETURN 'NOACTION'
IF SEC.OPAUJBNA = 'SSMADMIN' THEN
  RETURN ACCEPT
ELSE
  RETURN REJECT

External security check permits all other SQL calls.

Tell Technical Publications how we can improve this information