The security administrator can create and change rules for any user ID at your site. The security administrator also determines which user IDs are to be assigned to each security group manager.
Give the security administrator authorization to use all rules commands on all users on the system. For example, create a list of all the commands used by the Rules Facility:
LIST *RULEALL CAN GENACI GROUP HISTORY JOURNAL LOGMSG,
QRULES RULEMAP RULES SYSWORD
User ID SAMM is the security administrator. To authorize user ID SAMM to use the commands in the list *RULEALL, add the following GRANT record to the AUTHORIZ CONFIG file (*ALL means all user IDs):
GRANT *RULEALL OVER *ALL TO SAMM
At some sites, the system administrator is also the security administrator. In this case, the system administrator is already authorized to use all commands on all users; no additional authorizations are required.
|
Copyright © 2014 CA.
All rights reserved.
|
|