Previous Topic: DB2FUNCNext Topic: DB2PKG

Protecting ResourcesDB2JAR

DB2JAR

Description

Identifies DB2 Java archive (JAR) files.

TSS Commands

The following TSS commands can be used with the DB2JAR keyword: CREATE, DELETE, ADDTO, REMOVE, PERMIT, REVOKE, ADMIN, DEADMIN, WHOOWNS, WHOHAS.

TSS ADDTO or REMOVE

Syntax
TSS ADD(acid) DB2JAR(schema.jar‑id,schema.jar‑id,...)
Prefix length

2‑26 characters

Capacity of list

1‑5 DB2 JAR files per TSS command.

Authority

Administrators must have DB2JAR(OWN) authority.

Masking

The DB2JAR resource class supports all masking characters.

Types

The DB2JAR keyword is used with the following ACID types: User, Profile, Department, Division, Zone, DCA, VCA, ZCA, LSCA, SCA, MSCA.

TSS PERMIT or REVOKE

Syntax
TSS PER(acid) DB2JAR(schema.jar‑id,schema.jar‑id,...)
JAR file name

2‑255 characters

Capacity of list

1‑5 packages per TSS command.

Accesses

The administrator can specify any or all of the following accesses: USAGE, ALL, NONE. The default access is USAGE.

Access Controls

The administrator can use any of the following methods to control access to JAR files: Expiration, Facility, Time/Day, Actions.

Types

The DB2JAR keyword is used with the following ACID types: User, Profile, DCA, VCA, ZCA, LSCA, SCA, MSCA.

TSS ADMIN or DEADMIN

Syntax
TSS ADMIN(acid) DB2JAR(authority level(s))
Authority

Administrators can specify any or all of the following authority levels: OWN, XAUTH, AUDIT, INFO, REPORT, ALL.

Types

The DB2JAR keyword is used with the following ACID types: User, DCA, VCA, LSCA, ZCA, SCA, MSCA.

Examples

TSS ADDTO/REMOVE

To give the Finance Department (FINDEPT) ownership of JAR file PAYJAR1 in the schema FIN, the administrator enters:

TSS ADD(FINDEPT) DB2JAR(FIN.PAYJAR1)

Ownership of JAR file PAYJAR1 in the schema FIN is removed by entering:

TSS REMOVE(FINDEPT) DB2JAR(FIN.PAYJAR1)
TSS PERMIT/REVOKE

The administrator wants to give USRMARK the authority to use the Jar file PAYJAR1 in the schema FIN:

TSS PERMIT(USRMARK) DB2JAR(FIN.PAYJAR1) ACCESS(USAGE)

To revoke USRMARK's authority the administrator enters:

TSS REVOKE(USRMARK) DB2JAR(FIN.PAYJAR1) ACCESS(USAGE)
TSS ADMIN/DEADMIN

To give FINVCA the ability to assign ownership of JAR files, to permit users to access JAR files within his scope, and audit the use of JAR files owned by the division, the administrator enters:

TSS ADMIN(FINVCA) DB2JAR(OWN,XAUTH,INFO)

To remove FINVCA's authority for JAR files, the administrator enters:

TSS DEADMIN(FINVCA) DB2JAR(OWN,XAUTH,INFO)
TSS WHOHAS

To determine who has access to the JAR file PAYJAR1 in the schema FIN, the administrator enters:

TSS WHOHAS DB2JAR(FIN.PAYJAR1)

CA Top Secret will respond by displaying all of the ACIDs that have access to this particular JAR file.

TSS WHOOWNS

To determine who owns the JAR file PAYJAR1 in the schema FIN, the administrator enters:

TSS WHOOWNS DB2JAR(FIN.PAYJAR1)