Typical Types of Users and Their Access Rights

Customization › Implementing Security with SAF › How to Use External Security › Typical Types of Users and Their Access Rights

Typical Types of Users and Their Access Rights

Administrators typically create the following types of users and assign the equivalent access rights to CA Spool resources:

SUPER users can issue all commands, including update, change, and delete commands. SUPER users are fully authorized users. After CA Spool validates that a user is a SUPER user, it performs no further security checks.
OPER users are operators. They can issue all Authorization Level 1 and most Authorization Level 2 commands except REINIT and SHUTDOWN. OPER users can update, change, and delete resources across multiple network groups.
JUNIOR users can display all resources in CA Spool, update all printers in the groups 1 and 2, and update all files in groups 1 and 2.
JUNIOR users are supervisors for a department. They can access multiple network groups of printers and their files. JUNIOR users can issue Authorization Level 1 commands in the network groups to which they belong.
ORDINA users can display and update all printers in group 1. They can browse all files in group 1, but can only update the files.
ORDINA users can access a network group of printers. They can see all files in the same network group, but they can access only the files that they created. ORDINA users also can issue Authorization Level 1 commands in the network groups to which they belong.
TINY users can display and update the printer (by default, PRT1A) and files for their network group. They can browse and update the files with a destination of that printer.
TINY users can issue level 1 commands for the printers and files for their network group.

Administrators typically define the default group number for the user to match the group number of the printer to which the user's group is assigned.

Administrators make this determination by examining the CAIQPARM DEFNODE and NODE statements for those printers.

The typical users in the previous list are the basis for the users in the “Sample Commands for Defining Users According to Role” in the next three sections. Those sections explain how to secure CA Spool using one of the following external security products: