Previous Topic: ACTION Keyword—Assign ActionsNext Topic: AFTER and BEFORE Keywords—Specify Profile Order

KeywordsACTION Keyword—Assign ActionsExamples: ACTION keyword

Examples: ACTION keyword

This example audits an ACID accessing CICSTEST:

TSS ADDTO(USER01) FACILITY(CICSTEST)
                  ACTION(AUDIT)

This example denies a user's attempts to logon to a facility:

TSS ADDTO(USER01) FACILITY(CICSPROD)
                  ACTION(DENY)

This example indicates that the user is allowed to sign on to CICS and everything the ACID does is audited:

TSS ADDTO(acid) FACILITY(CICS)
                ACTION(AUDIT)

In this example, USER01 is in WARN mode, and is not connected to PROF01, which allows access to MASTER.PAYROLL.FILE. Ordinarily, if USER01 attempted to access the MASTER.PAYROLL.FILE, he would be warned. This example fails USER01 if he attempts to access the MASTER.PAYROLL.FILE:

TSS PERMIT(USER01) DSNAME('MASTER.PAYROLL.FILE')
                   ACTION(FAIL)
                   ACCESS(NONE)

This example creates an audit record every time USER01 updates the PERS.PAY data set:

TSS PERMIT(USER01) DSNAME(PERS.PAY)
                   ACTION(AUDIT)
                   ACCESS(UPDATE)

This example issues message TSS7299I whenever USER01 accesses PERS.PAYROLL:

TSS PERMIT(USER01) DSNAME('PERS.PAYROLL')
                   ACCESS(R)
                   ACTION(NOTIFY)

In this example, USER01 is connected to a profile (PROF01) that allows him to access all terminals in the Accounting Department:

TSS PERMIT(PROF01)TERMINAL(K06L1234)

This example denies USER01 access to terminals K06L4567 and K06L1233:

TSS PERMIT(USER01)TERMINAL(K06L4567,K06L1233)
                  ACTION(DENY)

This example denies access and result in a failure in any mode:

TSS PERMIT(USER01)TERMINAL(K06L4567,K06L1233)
                  ACTION(FAIL,DENY)

This example allows USER05 to permit or revoke access to this resource to other users‑although the resource itself is not owned within his scope.

TSS PERMIT(USER05) DSNAME(SYS1.)
                   ACTION(ADMIN)

This example removes authority from USER05 to permit or revoke access to this resource. The resource itself is not owned within his scope.

TSS REVOKE(USER05) DSNAME(SYS1.)
                   ACTION(ADMIN)

Note: If the FACILITY keyword had been specified on the above command, the command would have been processed without an error. However, FACILITY restrictions are not in effect.

In this example with OTRAN, password re‑verification is indicated on the PERMIT by the ACTION(REVERIFY) parameter once the resource is owned:

TSS PERMIT(USER01) OTRAN(PROD)
                   ACTION(REVERIFY)