Creating Security Administrators › Administrative Authority › DATA Authorities

DATA Authorities

The DATA keyword designates which portions of a Security Record security administrators can display when they issue a TSS LIST command function.

The following operands are used with the DATA keyword:

ACIDS

Lists all ACIDs connected to the ACID entered in the LIST function. This keyword applies to lists of division, department and profile ACIDs.

ADMIN

Lists information about the ACID’s administrative authorities.

ALL

Lists all information pertaining to an ACID except for password, profile, and session key.

BASIC

Lists general ACID information, such as name, type, and facility.

CICS

Lists the values for CICS operator fields: OIDCARD, OPCLASS, OPIDENT, OPPRTY, SCTYKEY.

INSTDATA

Lists the installation data for an ACID.

LCF

Displays the commands and transactions that an ACID is confined to (via TRANSACTIONS/COMMAND) or restricted from (via XTRANS/XCOMMAND).

NAMES

Lists an ACID name, and the associated owner’s name.

PASSWORD

Lists the ACID’s password information (expiration date and interval).

PROFILE

Lists the profile(s) attached to the ACID.

RESOURCE

Lists information about resources owned by an ACID.

SESSKEY

Lists the session key used to verify that one LU is authorized to link to another LU for the purposes of APPC conversation processing.

SMS

Lists information about a default SMS data class.

SOURCE

Lists information about the ACID’s input device restrictions.

TSO

List TSO UADS data fields for an ACID.

WORKATTR

Lists the SYSOUT delivery and accounting information associated with the ACID.

XAUTH

Lists resources permitted by an ACID within his scope, including information about what access levels are allowed and which ACID owns the resource.

To give an administrator all DATA administrative authorities, specify the options:

• ALL
• PASSWORD
• SESSKEY—Due to the sensitive nature of passwords and SESSKEY information.
• PROFILE—Since the profiles connected to an ACID may not necessarily fall under the scope of the security administrator.

Example: assign data authority

This example gives the FINVCA security administrator the ability to display information concerning resources owned by an ACID.

TSS ADMIN(FINVCA) DATA(RESOURCE)

This example gives the FINVCA security administrator the authority to list every possible item of security record information:

TSS ADMIN(FINVCA) DATA(ALL,PROFILE,SESSKEY)