Q
Manage Learn to apply best practices and optimize your operations.

Moving to security level 30

On the AS/400, the key to moving from security level 20 to level 30 is determining where users will get their authority since the system removes user's *ALLOBJ when the system is IPLed. IBM's iSeries Security Reference Manual provides steps to take when moving between security levels.

I am moving a level security 30. Is there a manual or check list to do it?
Chapter 2 of the iSeries Security Reference Manual has the steps to take to move between the various security levels. The key to moving from security level 20 to level 30 is determining where users will get their authority since the system removes user's *ALLOBJ when the system is IPLed. I suggest using adopted authority to allow applications to work and setting the *PUBLIC authority of objects to *EXCLUDE or, at most, *USE. You can test out your new security architecture before IPLing to the new security level. Make all of the program changes (change them to adopt authority), set the *PUBLIC authority of the objects and remove several users' *ALLOBJ. When they come in the next day, they'll be testing the new architecture and no other users will be affected.
This was last published in August 2008

Dig Deeper on iSeries system and application security

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

SearchDataCenter

Close