Adding Firewall Rules for Commands

To add rules for commands showing which users may run them, press the F6 key on the Work with Native AS/400 Command Security screen, as shown in Setting Firewall Rules for Commands (STRFW > 4 > 6).

The Add Native AS/400 Command Security screen appears:

​                      ​ Add Native AS/400 Command Security​                                                                                                         ​ Type information, press Enter.                                                ​                                                                                     ​ Command . . . .​ ​           ​    ​ Name, generic*, *ALL, *NONE, F4 for list​        ​ Library . . . .​ ​           ​    ​ Name, *ALL, F4 for list  ​                     ​                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               ​ F3=Exit   F4=Prompt   F12=Cancel​                                                ​                                                                                                                                                                  ​

Enter information into the following fields:

Command

The name of the command. This can also be a generic name ending in an asterisk ("*") or *ALL, which refer to all the relevant items in the library named in the next field for which more specific settings have not been created. Once you have entered a library name in the next field, you can see a list of commands by placing the cursor in this field and pressing the F4 key.

Library

The name of the library containing the print file. This can also be *UNDFN, which refers to an undefined value, or *ALL, which refers to all libraries for which more specific settings for that print file have not been created. To see a list of libraries, place the cursor in this field and press the F4 key.

Press Enter to confirm these values. More fields appear on the screen:

​                     ​ Add Native AS/400 Command Security​                                                                                                          ​ Type information, press Enter.                                                ​                                                                                     ​ Command . . . . . .​ ​ TSTCMD    ​                                                 ​ Library . . . . . .​ ​ #LIBRARY  ​                                                 ​ Location Group ID .​ ​    ​        ​ 1-254​   ​ Access is restricted by location​                                                                                     ​ Define user authority, press Enter.​                                               ​ Y=Yes​                                                                          ​ User*, %Group​ ​ Location​  ​ Run​                                                   ​ Group profile​ ​ Group ID​  ​ Command​                                              ​  ​ *PUBLIC   ​     ​    ​     ​  ​       ​  ​       ​  ​       ​  ​       ​  ​       ​  ​         ​           ​     ​    ​     ​  ​       ​  ​       ​  ​       ​  ​       ​  ​       ​  ​         ​           ​     ​    ​     ​  ​       ​  ​       ​  ​       ​  ​       ​  ​       ​  ​         ​           ​     ​    ​     ​  ​       ​  ​       ​  ​       ​  ​       ​  ​       ​  ​         ​           ​     ​    ​     ​  ​       ​  ​       ​  ​       ​  ​       ​  ​       ​  ​         ​           ​     ​    ​     ​  ​       ​  ​       ​  ​       ​  ​       ​  ​       ​  ​         ​           ​     ​    ​     ​  ​       ​  ​       ​  ​       ​  ​       ​  ​       ​  ​         ​           ​     ​    ​     ​  ​       ​  ​       ​  ​       ​  ​       ​  ​       ​  ​                                                                         ​      More...​  ​ F3=Exit​  ​ F4=Prompt​   ​ F11=Enable locations ​    ​ F12=Cancel​                     ​                                                                                                                                                                  ​

In the Location Group ID field, you can specify a numbered location group from 1 through 254, as shown in . Only members of that group may run that command.

In each line of the rest of the screen, you can indicate whether a specified user or group may run the command:

User*, %Group, Group profile

The name or generic name of a user or group for whom you are creating these settings. To see a list of possible users or groups, press the F4 key.

Location Group ID

If location groups are enabled, this rule may be restricted to a given numbered location group. To enable location groups, press the F11 key.

Run Command

If set to Y, the user or group may run the command.