Authorization for special MainView AutoOPERATOR functions
Depending on how a MainView AutoOPERATOR EXEC is scheduled, it is assigned a specific type of origin. The origin is checked against a matching USERID member before default security options are checked. Additional USERID members may be needed for the following origins:
Target type | Description |
---|---|
target ID of the remote system | for an EXEC scheduled through a message from a target |
subsystem ID of the remote BBI-SS PAS | for an EXEC scheduled from a BBI-SS PAS message or one that is time-initiated |
jobname or RACF USERID | for an externally initiated EXEC |
Command authorization
Users must be authorized to issue commands or use applications against a BBI-SS PAS target system. Command authorization is defined in user authorization members of the BBPARM data set.
A summary of authorization commands for MainView AutoOPERATOR follows:
For all MainView AutoOPERATOR options
Command | Description |
---|---|
EXEC | authority to schedule EXECs |
MVSCMD | authority to issue MVS commands |
RULEAUTH | Rules processor authorization which can be READ, UPDATE, or none |
For the MainView AutoOPERATOR for IMS option only
Command | Description |
---|---|
IMSCMD | authority to issue IMS commands |
IMSMSG | authority to send IMS messages to LTERMs |
IMSTRAN | authority to issue IMS transactions |
For the MainView AutoOPERATOR for z/OS option only
Command | Description |
---|---|
RESAUTH | allowed to issue authorized SYSPROG commands For more information about issuing Advanced SYSPROG commands and the security exit, refer to the MainView AutoOPERATOR Options User Guide. A description of how to use these commands is in the MainView Security Reference Guide. The comment field of the USERID member of the BBPARM data set also describes the commands and their valid parameters. |