I need to change a couple thousands of objects' authority to include *USE authority for a user group. These objects
reside in four libraries. I could apply EDTOBJAUT command on every object. But it's painfully slow and tedious. Any ways of changing authority at the library level and propagate authority changes to all objects under the library?
You might try doing a DSPOBJD of all the objects in the library to an outfile, then grant the authority that way. You might also consider securing the objects with an authorization list. Then grant the group's authority to the authorization list. Then change the Creation Authority (CRTAUT) value of the library and name the authorization list. When any new object is created into the library, it will automatically be secured with the authorization list. Note: Changing the library's CRTAUT value will not change the authority of existing objects - just newly created ones.
MORE INFORMATION ON THIS TOPIC
The Best Web Links: Tips, tutorials and more.
Search400's targeted search engine: Get relevant information on security.
Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.
Read this Search400 Featured Topic: Secure your iSeries
Dig deeper on iSeries system and application security
Related Q&A from Carol Woodbury
Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old ...continue reading
Look in the audit journal (QAUDJRN) on the AS/400 for an authority failure message with the name of the library as the object name. Use the ...continue reading
The UPPWEI field corresponds to the password expiration interval field, and its values "0" and "-1" represent the *SYSVAL and *NOXMAX commands.continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.