Setting Firewall Rules Manually based on Native Objects with the Rule Wizard

NOTE: You can only set Firewall rules manually with the rule wizard if you have set the Wizard type to *STD when opening the wizard.

To set rules manually based on the users or groups requesting the activity in the Rule Wizard, open the Plan User Security screen, as shown in Analyzing Recent Data on Users and Groups with the Rule Wizard (STRFW  > 2 > 41/42).

​                       ​ Plan Security for Native Objects​                                                                     ​      Subset: Type . . .​     ​         ​ Type choices, press Enter.​                             ​ Library  .​           ​    ​ 1=Display statistics​  ​ 2=Allow by use​                 ​ Object . .​           ​    ​ 4=Delete​ ​ 5=DSPFWLOG​  ​ 6=Create Rule​                  ​ User . . .​           ​    ​ 7=WRKOBJ​ ​ 8=EDTOBJAUT​ ​ 9=Add similar​   ​ Higher level only (Y-Yes)​  ​             ​ G=Groups​ ​ U=Users  ​   ​ E=CHGUSRPRF​ ​ O=WRKOBJ​  ​ C>R=Current to Revised      ​    ​ Specify revised authority in the R column.​   ​ Y/S​ Alw/Skip​ ​ Y=Allow, S=Skip​                                                     ​ N​ Rejected​ ​ N=Reject​            ​ Non-existing objects marked with red.​        ​ Y/S​ Alw/Skip (fr higher level)​                                                    ​ N​ Rejected (fr higher level)​        ​ Rd ​ ​ Wrt​ ​ Crt​ ​ Dlt​ ​ Rnm​ ​ Otr​                           ​ User Group/​         ​ Opt​ C>R​ ​ C>R​ ​ C>R​ ​ C>R​ ​ C>R​ ​ C>R​ Type​ Object​    ​ Library   ​ *User     ​ Entries ​  ​  ​ ​ Y​  ​ ​ N​  ​ ​ N​  ​ ​ N​  ​ ​ N​  ​ ​ N​  ​ FILE​ MNTLOG    ​ QNEWNAVSRV​ QWEBADMIN ​       2 ​  ​  ​ ​ Y​  ​ ​ N​  ​ ​ N​  ​ ​ N​  ​ ​ N​  ​ ​ N​  ​ FILE​ QINAVMNTRG​ QNEWNAVSRV​ QWEBADMIN ​      30 ​  ​  ​ ​ Y​  ​ ​ Y​  ​ ​ Y​  ​ ​ Y​  ​ ​ Y​  ​ ​ S​  ​ FILE​ QAS9AUDLOG​ QSRVAGT   ​ QSRVAGT   ​       6 ​                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       ​       Bottom​  ​ F3=Exit   F6=Add New   F8=Print   F12=Cancel   F17=Allow by use globally​        ​                                                                                 ​

Enter new values in the second field of each column for which you want to change access in the rows for the appropriate rule. You can enter Y to accept requests or N to reject requests.

NOTE: While the Current line may show a V for servers for which access is determined by the verbs used, the setting can only be changed to that via the Modify Server Verb Authority screen, as shown in Modifying Firewall Settings for a User based on Server Verbs.

In this example, to accept requests to read the file ADTSLAB in the library DLT211 by the user RLTOOLS, type Y in the second column under Rd in the last line on the screen.

When you have entered the letters for the changes in the appropriate columns, enter 6 in the Opt field for the rule.

The rule that you have changed disappears from the screen. You can see its changed value by checking the Definitions screen for that object, as shown in Setting Firewall Rules for Native Objects.