Use the LOGON rule to control which terminals can logon to a user ID.
{ACCEPT | REJECT} requester LOGON [node] [("Options"]
Options:
[DAY dayname[‑dayname]] [EXPIRE mm/dd/yy [hh:mm:ss]] [HISTORY] [IPADDR | LDEV | NETID] [NOPASS] [NOTIFY] [TIME hhmm hhmm]
Accepts or rejects the LOGON request controlled by this rule.
Defines the set of terminal addresses this rule is to govern. Values for requester are explained in Specifying Terminal Addresses for the Requester Variable.
Specifies the member system node name, in a Single System Image complex, where a terminal real address is connected. Because the same terminal real address might be defined on multiple member names in a complex, the node name parameter is required when one specific terminal authorization is granted. If the node name is omitted, then the rule applies for the terminal address on any member node.
Note: The node parameter applies only to channel connected 3270 and logical device terminals.
The LOGON rule can take a number of options. All options are prefixed by an opening parenthesis, (.
These options specify the terminal type. If the terminal that this rule governs is not a channel connected 3270 terminal, select one of these options. You cannot set a wildcard as terminal type.
|
If requester is a: |
Specify this option: |
|---|---|
|
IPV4 or IPv6 address |
IPADDR |
|
Logical device |
LDEV |
|
Network ID |
NETID |
|
Real address (channel connected 3270) |
Do not specify |
Example: Allowing all terminal addresses and types to LOGON to the system
To allow all terminal addresses to LOGON to the system, regardless of terminal type, define a rule for each terminal type:
ACCEPT * LOGON * for LOGON from real addresses
ACCEPT * LOGON (IPADDR * for LOGON from IPV4 or IPV6 addresses
ACCEPT * LOGON (LDEV * for LOGON from logical devices
ACCEPT * LOGON (NETID * for LOGON from network IDs
Note: For more information about the options, see Common Rule Options.
|
Copyright © 2014 CA.
All rights reserved.
|
|