View previous topic :: View next topic
|
Author |
Message |
ruodeer
New User
Joined: 06 Jul 2007 Posts: 58 Location: home
|
|
|
|
Hello everyone, I am confused about Primary & Secondary Authorization ID,could you help me out to clear ?
I know one user can have only one Primary ID and several Secondary ID.And the Secondary ID is kind of RACF Group name which could be connected by user (Primary ID)
My question is what is the advantage of Secondry ID, can I say Secondary ID must be RACF Group name?Could some friends here can provide some scenario to explain?thanks. |
|
Back to top |
|
|
murmohk1
Senior Member
Joined: 29 Jun 2006 Posts: 1436 Location: Bangalore,India
|
|
|
|
Ruodeer,
Quote: |
My question is what is the advantage of Secondry ID |
Assuming you had granted a privilege to the user using your primary id(racf id) and your id got deleted because of some reasons.... All the privileges granted by your id will be revoked (cascading effect). To avoid this situation, generally secondary id (group id) is created and your racf id will be included in that group. |
|
Back to top |
|
|
ruodeer
New User
Joined: 06 Jul 2007 Posts: 58 Location: home
|
|
|
|
thanks for your timely reply murmohk1.
Does that mean the Primary ID holds some RACF privileges(such as access specific data),and Second ID holds other priviledges,and the use holds the Primary ID's priviledge plus Secondary ID's priviledge?
and Secondary ID must be group name,right? |
|
Back to top |
|
|
ruodeer
New User
Joined: 06 Jul 2007 Posts: 58 Location: home
|
|
|
|
one more thing: If using DB2 via TSO, must the Primary ID be the TSO ID, if no, how can I get the Primary ID other than TSO ID?thanks. |
|
Back to top |
|
|
|