Adding Firewall Rules for Native Files
To add rules for native files showing which users may operate on them, press the F6 key on the Work with Native AS/400 File Security screen, as shown in Setting Firewall Rules for Native Files (STRFW > 4 > 1).
The Add Native AS/400 File Security screen appears:
| Add Native AS⁄400 File Security Type information, press Enter. File . . . . . Name, generic*, *ALL, F4 for list Library . . . . Name, *UNDFN, *ALL, F4 for list F3=Exit F4=Prompt F12=Cancel |
Enter information into the following fields:
File
The name of the file. This can also be a generic name ending in an asterisk ("*") or *ALL, which refer to all the relevant items in the library named in the next field for which more specific settings have not been created. To see a list of files, place the cursor in this field and press the F4 key.
Library
The name of the library containing the file. This can also be *UNDFN, which refers to an undefined library, or *ALL, which refers to all libraries for which more specific settings for that file have not been created. To see a list of libraries, place the cursor in this field and press the F4 key.
Press Enter to confirm these values. More fields appear on the screen:
| Add Native AS/400 File Security Type information, press Enter. File . . . . . . . *ALL Library . . . . . . *ALL Location Group ID . 1-254 Access is restricted by location Define user authority, press Enter. Y=Yes S=Skip (Allow, no log) User*, %Group Location |----- DATA -----|----------- FILE MANAGEMENT -------| Group profile Group ID | Read Write | Create Delete Rename Other | *PUBLIC More... F3=Exit F4=Prompt F11=Enable locations F12=Cancel |
In the Location Group ID field, you can specify a numbered location group from 1 through 254, as shown in . Only members of that group may operate on that file.
Each of the single-character fields may be set to Y for Yes or S to Skip (allowing the operation without logging).
In each line of the rest of the screen, you can indicate how a specified user or group may operate on the file:
User*, %Group, Group profile
The name or generic name of a user or group for whom you are creating these settings. To see a list of possible users or groups, press the F4 key.
Location Group ID
If location groups are enabled, this rule may be restricted to a given numbered location group. To enable location groups, press the F11 key.
DATA Read
If set to Y, the user or group may read the data in the file.
DATA Write
If set to Y, the user or group may write data to the file.
FILE MANAGEMENT Create
If set to Y, the user or group may create the file.
FILE MANAGEMENT Delete
If set to Y, the user or group may delete the file.
FILE MANAGEMENT Rename
If set to Y, the user or group may rename the file.
FILE MANAGEMENT Other
If set to Y, the user or group may perform other operations on the file.