Manage UNIX with UNIXPRIV Class Profiles

Resource names in the UNIXPRIV class are associated with UNIX privileges. Define profiles in the UNIXPRIV class to:

Grant superuser privileges to specified users who do not have superuser authority. This minimizes the number of superuser authority assignments and reduces your security risk.
Use CA Top Secret authorization to grant UNIX privileges.

Example: authorizing superuser privileges

This example gives user01 superuser privileges to the UNIX chown command.

Enter the command:
```
TSS ADD(UNIXDEPT) UNIXPRIV(SUPERUSER.FILESYS.CHOWN)
```
A profile is defined in the UNIXPRIV class to protect the resource called SUPERUSER.FILESYS.CHOWN.
Enter the command:
```
TSS PERMIT(user01) UNIXPRIV(SUPERUSER.FILESYS.CHOWN ACCESS(READ)
```
READ access is the only access allowed. User01 is allowed to issue the chown command to change ownership of any file.