|
View previous topic :: View next topic
|
| Author |
Message |
pravin madoori
New User
Joined: 29 Jan 2007
Posts: 25
Location: Hyderabad
|
|
|
|
Let there is an administrator RACF id [ say XYZ] for MVS system. I want to give surrogate access authority to ABC id for XYZ id. How this can be done. What is the command.
Can I delete this surrogate access with "Rdelete" command.
Can above thins be done through CLAS. :?: |
|
| Back to top |
|
 |
dick scherrer
Moderator Emeritus
Joined: 23 Nov 2006
Posts: 19244
Location: Inside the Matrix
|
|
|
|
Hellp,
Talk with your security department.
What will be needed (if your organization permits) is new rules/permissions for the id(s) in question. In some sites a user may give others permission, but cannot take permissions. If your site permits, the "new" permissions will need to be added to the id being granted the additional access. |
|
| Back to top |
|
|
cpuhawg
Active User
Joined: 14 Jun 2006
Posts: 331
Location: Jacksonville, FL
|
|
|
|
If your shop uses RACF, you can use the following commands as long as the USERID issuing the RACF commands has the SPECIAL attribute on their userid:
| Code: |
RDEF SURROGAT XYZ.SUBMIT UACC(NONE) OWNER(SYSADM)
PE XYZ.SUBMIT CLASS(SURROGAT) ID(ABC) ACCESS(READ)
SETROPTS RACLIST (SURROGAT) REFRESH
|
This change will allow user ABC to submit batch jobs with a USER=XYZ in the job card. |
|
| Back to top |
|
|
pravin madoori
New User
Joined: 29 Jan 2007
Posts: 25
Location: Hyderabad
|
|
|
|
Dick, thank you for your suggestion.
cpuhawg, thank you for giving solution.
I tried it another way also.
From VM, CLAS command, it can be done.
Options are,
option 2 then 9 then id XYZ , then option 3 "Add User IDs to the access list [ABC]",lets us add a single surrogate. Make sure you use that option and NOT 1. |
|
| Back to top |
|
|
|
|
