I need to change a couple thousands of objects' authority to include *USE authority for a user group. These objects reside in four libraries. I could apply EDTOBJAUT command on every object. But it's painfully slow and tedious. Any ways of changing authority at the library level and propagate authority changes to all objects under the library?
You might try doing a DSPOBJD of all the objects in the library to an outfile, then grant the authority that way. You might also consider securing the objects with an authorization list. Then grant the group's authority to the authorization list. Then change the Creation Authority (CRTAUT) value of the library and name the authorization list. When any new object is created into the library, it will automatically be secured with the authorization list. Note: Changing the library's CRTAUT value will not change the authority of existing objects - just newly created ones.
MORE INFORMATION ON THIS TOPIC
The Best Web Links: Tips, tutorials and more.
Search400's targeted search engine: Get relevant information on security.
Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.
Read this Search400 Featured Topic: Secure your iSeries
Dig Deeper on iSeries system and application security
Related Q&A from Carol Woodbury
Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old ... Continue Reading
When error messages arise concerning attempts to use a permanent system object without authority, find the source of the issue by looking for an AF ... Continue Reading
The UPPWEI field corresponds to the password expiration interval field, and its values "0" and "-1" represent the *SYSVAL and *NOXMAX commands. Continue Reading