Modifying Firewall Rules for Commands

To modify rules for a command showing which users may run it, enter 1 in the Opt field for that command on the Work with Native AS/400 Command Security screen, as shown in Setting Firewall Rules for Commands (STRFW > 4 > 6).

The Modify Native AS/400 Command screen appears:

                    ​ Modify Native AS/400 Command Security​                      
                                                                                 
 Type information, press Enter.                                                ​ 
                                                                                
  ​
 Command . . . . . .​  RMVLIBLE  ​                                              
  ​
 Library . . . . . .​  *ALL      ​                                              
  ​ Location Group ID .​             ​ 1-254​   ​ Access is restricted by location​   
                                                                                
 Define user authority, press Enter.​                                            
  ​
 Y=Yes​                                                                        
 ​
 User*, %Group​  Location​  ​ Run​                                                 
 ​
 Group profile​  Group ID​  ​ Command​                                             
  ​ *PUBLIC   ​     ​    ​     ​ Y       ​  ​       ​  ​       ​  ​       ​  ​       ​  ​      
  ​
                ​    ​     ​         ​  ​       ​  ​       ​  ​       ​  ​       ​  ​      
  ​
                ​    ​     ​         ​  ​       ​  ​       ​  ​       ​  ​       ​  ​      
  ​
                ​    ​     ​         ​  ​       ​  ​       ​  ​       ​  ​       ​  ​      
  ​
                ​    ​     ​         ​  ​       ​  ​       ​  ​       ​  ​       ​  ​      
  ​
                ​    ​     ​         ​  ​       ​  ​       ​  ​       ​  ​       ​  ​      
  ​
                ​    ​     ​         ​  ​       ​  ​       ​  ​       ​  ​       ​  ​      
  ​
                ​    ​     ​         ​  ​       ​  ​       ​  ​       ​  ​       ​  ​      
                                                                  ​
      More...​ 
 F3=Exit​  ​ F4=Prompt​   ​ F11=Enable locations ​    ​ F12=Cancel​                    
                                                                                
                                                                                

The read-only Command and Library fields show the command and library to which these rules apply.

In the Location Group ID field, you can specify a numbered location group from 1 through 254, as shown in . Only members of that group may run that command.

In each line of the rest of the screen, you can indicate whether a specified user or group may run the command:

User*, %Group, Group profile

The name or generic name of a user or group for whom you are creating these settings. To see a list of possible users or groups, press the F4 key.

Location Group ID

If location groups are enabled, this rule may be restricted to a given numbered location group. To enable location groups, press the F11 key.

Run Command

If set to Y, the user or group may run the command.