Creating Native Object Security Planning
- To work with Native Object Security, select 2. Native Objects in the Compliance for PCI, SOX, HIPAA etc. menu (STRCMP).
- The Native Object Compliance menu appears.
| AUNOCMN Native Object Compliance iSecurity⁄NOC System: S520 Select one of the following: Native Object Compliance Create Templates Based on Current Status 1. Work with Templates 41. Wizard to Create Templates 42. Re-Use Wizard Templates Compare Current to Template 11. Work with Exceptions Check⁄Set By Commands Setting Results 21. Print 51. Display Error Log 22. OUTFILE (Output File) 23. PDF file (E-Mail Output) 24. HTML file (E-Mail Output) 25. Print and Set to Template 26. OUTFILE, and Set to Template Selection or command ===> F3=Exit F4=Prompt F9=Retrieve F12=Cancel F13=Information Assistant F16=AS⁄400 main menu |
- Select 1. Work with Templates. The Work with Native Object Security Templates window appears.
| Work with Native Object Security Templates System: S520 Subset Object . . . Type options, press Enter. Library . . 1=Select 3=Copy 4=Delete Type . . . . 6=Global template change 9=Explanation Attribute . . System . . . *ALL Audit Opt Library Type Object Attribute System Aut. List Value QGPL *ALL *ALL *ALL *ALL *NONE SMZJ *CMD *ALL S520 *NONE SMZJ *DTAARA JADUMP *ALL S520 *NONE SMZJ *DTAARA JRREL *ALL S520 *NONE SMZJ *FILE *ALL *ALL S520 *NONE SMZJ *MENU GSLCKMNU DSPF S520 SECURITY4P SMZJ *MENU JDMAIN DSPF S520 SECURITY4P SMZJ *MENU JRBLJR DSPF S520 SECURITY4P SMZJ *MENU JRDAPP DSPF S520 SECURITY4P SMZJ *MENU JRDFILE DSPF S520 SECURITY4P SMZJ *MENU JRDSET DSPF S520 SECURITY4P SMZJ *MENU JRMAIN DSPF S520 *NONE More... F3=Exit F5=Refresh F6=Add F8=Print F12=Cancel F13=Repeat F14=Clear Repeat |
- Press F6 to create a new native object security planning. The Add Native Object Security Template screen appears.
| Add Native Object Security Template System: S520 Type information, press Enter. Object . . . . *ALL Name, generic*, *ALL Library . . . Name Type . . . . . *ALL *ALL, *FILE, *PGM, *DTAARA... Attribute . . . *ALL *ALL, RPGLE, RPG, CLP, DSPF, PF-DTA... System . . . . *ALL Name, *ALL Note: Type=*ALL is valid only for Object=*ALL. F3=Exit F4=Prompt F12=Cancel |
|
Parameters |
Description |
|---|---|
|
Object |
Name = enter object name generic* = type the first few letters of the object name and ‘*’ to view a list of optional objects names. *ALL = all the objects in the library |
|
Library |
Name = enter library name |
|
Type |
Enter object type. Press F4 for a full list of types. *ALL is only valid if Object is also *ALL |
|
Attribute |
Enter object attribute. Press F4 for a full list of attribute. |
|
System |
Name = enter the system name *ALL = all systems |
- Enter the parameters for the object you want to define and press Enter. The second Add Native Object Security Template appears.
| Add Native Object Security Template System: S520 Object . . : AU#MNT Type . . . : *PGM Library . : SMZ4 Attribute . : *ALL System . . : S520 Type information to verify, press Enter. (Blank fields are not verified) Authorization list . Name, *NONE Owner . . . . . . . . Name Primary group . . . . Name, *NONE Audit value . . . . . *USRPRF, *ALL, *CHANGE, *NONE Replace specific aut. N Y=Yes, A=Add, N=No change Object ----------Object----------- ------------Data------------ User Authority Opr Mgt Exist Alter Ref Read Add Upd Dlt Execute More... F3=Exit F4=Prompt F10=Insert current object authority F12=Cancel |
|
Parameters |
Description |
|---|---|
|
Authorization list |
Name = enter authorization list name *NONE Press F4 to view a list of the authorization list |
|
Owner |
Name = enter object name |
|
Primary Group |
Another owner of the object Name = enter primary group name *NONE Press F4 to view a list of groups |
|
Audit Value |
When to record object access *USRPRF = Every access to the object done by a specific user profile will be recorded *ALL = Every access to the object will be recorded *CHANGE = only changes in the object are recorded *NONE = |
|
Replace specific aut. |
Y=Yes, replace current authorization A=Add to the current authorizations N=No change |
|
User/Object Authority |
User = Type a specific User Name or press F4 to view a list of Users Object Authority =Type one of the following options *ALL *USE *EXCLUDE *CHANGE *AUTL (Only available for User *PUBLIC) Define the actions a user can perform on a specific object within the library:
|
- Enter the parameters for the object you want to define and press Enter.