Previous Topic: Operator Commands RestrictionNext Topic: Spool Data Sets Protection

Protecting ResourcesSpecific Device Output Restrictions

Specific Device Output Restrictions

You can allow designated users to access the indicated output device in an unlimited or a restricted manner.

To restrict output to specific devices

  1. Establish ownership using TSS CREATE/ADDTO.

    This example gives USER01 routing control to all printers at a specific node:

    TSS ADDTO(USER01) WRITER(NODE01.LOCAL.PRT6)
  2. Authorize a user to control the output printing at a specific printer using TSS PERMIT. For example: 
    TSS PERMIT(USER02) WRITER(NODE01.LOCAL.PRT6)

Example: restrict output to specific devices

This example allows USER01 to route jobs to the SITE2 node.

TSS PERMIT(USER01) WRITER(JES3.NJE.SITE2)

Output Device Masking

Masking can be used to group output devices whose names share similar characteristics. These shared patterns can then be used as the operands of the WRITER parameter in TSS PERMIT entries.

Masked output devices are treated by CA Top Secret like a generic prefix. Any output device that begins with a mask is considered a match by the security validation algorithm, and the associated access authorizations are honored.

Output Device Access Levels

The output device access levels that can be specified are: