Modifying Firewall Settings for an Application Group

To modify Firewall settings for an application group, enter 1 in the Opt field for the group on the Work with Application Groups screen, shown in Setting Firewall Rules for Application Groups (STRFW > 3 > 5), then press Enter.

The Modify Application Group Security screen appears.

​                       ​  Modify Application Group Security​                                                                                                           ​  Type choices, press Enter.​                                                                                                                                        ​  Application Group . . . . .​  ​  %#ACCOUNT ​      ​  %#name​                                                                                                               ​  Authorities              ​                                                        ​  >​  1. Services               ​                 ​  FTP, SQL, NDB, DDM, ...​                                                                                              ​   ​  6. Check objects authority by​              ​  Assign alt. users to services​                                                                                        ​  Selection ===>​               ​   ​                                                                                                                                    ​  Description . . . . . . . .​  ​                                                     ​  Check (in FW) Native auth .​  ​  3​               ​  1=Allow all, 2=Reject all, 3=Yes​    ​  Check (in FW) IFS auth. . .​  ​  3​               ​  1=Allow all, 2=Reject all, 3=Yes​                                                                                                                                                                                                                                                                                                                                        ​  F3=Exit​         ​  F4=Prompt​                                       ​  F8=Print​         ​  F9=Object security​                 ​  F10=Logon security​           ​  F12=Cancel​       ​                                                                                                                                                                   ​

The read-only Application Group field shows the name of the group.

Through the options in the Authorities and Locations list, you can create specific filters for the group that can override the server's general settings. A close-arrow (">") before an item shows that its settings have already been changed from the default to a new value.

1. Services

To create filters based on services (such as FTP, SQL, NBD, or DDM), enter 1 in the Selection field. The Add User to Server Security screen appears, as shown in Adding Firewall Settings for a User based on Services.

6. Check objects authority by

To have the user assume the authority of a different user when using particular servers, type 6 in the Selection field and press Enter. The Work with Alternative Users screen appears, as shown in Adding Firewall Settings for a User to Assume Different Authority for a Server.

The fields below these control other aspects of user security:

Description

A free-form text description of the group.

Check (in FW) Native auth

To allow the group to access all native objects, type 1.

To reject all attempts by the group to access native objects,, type 2.

To check all attempts by the group to access native objects against Firewall settings set elsewhere, type 3.

Check (in FW) IFS auth

To allow the group to access all IFS objects, type 1.

To reject all attempts by the group to access IFS objects,, type 2.

To check all attempts by the group to access IFS objects against Firewall settings set elsewhere, type 3.