Manage
Learn to apply best practices and optimize your operations.
Moving to security level 30
On the AS/400, the key to moving from security level 20 to level 30 is determining where users will get their authority since the system removes user's *ALLOBJ when the system is IPLed. IBM's iSeries Security Reference Manual provides steps to take when moving between security levels.
I am moving a level security 30. Is there a manual or check list to do it?
Chapter 2 of the
iSeries Security Reference Manual has the steps to take to move between the various security levels. The key to moving from security level 20 to level 30 is determining where users will get their authority since the system removes user's *ALLOBJ when the system is IPLed. I suggest using adopted authority to allow applications to work and setting the *PUBLIC authority of objects to *EXCLUDE or, at most, *USE. You can test out your new security architecture before IPLing to the new security level. Make all of the program changes (change them to adopt authority), set the *PUBLIC authority of the objects and remove several users' *ALLOBJ. When they come in the next day, they'll be testing the new architecture and no other users will be affected.
This was last published in August 2008
Dig Deeper on iSeries system and application security
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.
Meet all of our AS/400 experts
View all AS/400 questions and answers
Start the conversation
0 comments