Authorization for special MainView AutoOPERATOR functions


Depending on how a MainView AutoOPERATOR EXEC is scheduled, it is assigned a specific type of origin. The origin is checked against a matching USERID member before default security options are checked. Additional USERID members may be needed for the following origins:

Target type

Description

target ID of the remote system

for an EXEC scheduled through a message from a target

subsystem ID of the remote BBI-SS PAS

for an EXEC scheduled from a BBI-SS PAS message or one that is time-initiated

jobname or RACF USERID

for an externally initiated EXEC

Command authorization

Users must be authorized to issue commands or use applications against a BBI-SS PAS target system. Command authorization is defined in user authorization members of the BBPARM data set.

A summary of authorization commands for MainView AutoOPERATOR follows:

For all MainView AutoOPERATOR options

Command

Description

EXEC

authority to schedule EXECs

MVSCMD

authority to issue MVS commands

RULEAUTH

Rules processor authorization which can be READ, UPDATE, or none

For the MainView AutoOPERATOR for IMS option only

Command

Description

IMSCMD

authority to issue IMS commands

IMSMSG

authority to send IMS messages to LTERMs

IMSTRAN

authority to issue IMS transactions

For the MainView AutoOPERATOR for z/OS option only

Command

Description

RESAUTH

allowed to issue authorized SYSPROG commands

For more information about issuing Advanced SYSPROG commands and the security exit, refer to the MainView AutoOPERATOR Options User Guide.

A description of how to use these commands is in the MainView Security Reference Guide. The comment field of the USERID member of the BBPARM data set also describes the commands and their valid parameters.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*