Designated jobs and online users (or profiles) can be restricted to enter the system from designated terminals and readers. This is source of origin security. Adding SOURCE to a profile affects all users attached to that profile.
To restrict a user to a specified terminal, enter the command:
TSS ADDTO(acid) SOURCE(terminalID)
Examples: grant access by source of origin
This example restricts USER01 to signing on from terminal C5NY002 only:
TSS ADDTO(USER01) SOURCE(C5NY002)
Terminal C5NY002 does not have to be defined to CA Top Secret to be a source. However, if the specified terminal is a protected resource, be sure the user is permitted to access it:
TSS PERMIT(USER01) TERMINAL(C5NY002)
A source of origin restriction overrides TERMINAL authorization. If USER01 has a source restriction of C5NY002 and USER01 is permitted to access terminal C5NY007 as shown above, an attempt by USER01 to sign on from C5NY007 results in a security violation.
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|