Manage Learn to apply best practices and optimize your operations.

Prevent users from saving spooled files

How can I prevent a user from saving a spooled file?

Spooled files are not objects that may be secured at the individual spooled file level. Instead the authority to spooled files is determined by the authorization options on the Output Queue in which the spooled files reside.

One important point, is that the user who created the spooled file, is the owner, and can therefore perform any operation on the spooled file, regardless of how the Output queue is secured.

In order to keep your users from changing spooled file attributes, I would suggest you do one of three things:

1. Restrict the offending users from being able to use the WRKSPLF (Work with Spooled files) command.

2. Restrict the offending users from being able to use the CHGSPLFA (Change Spooled file attributes) command.

3. Ask the managers of all your end users to tell them not to change their spooled files to SAVE(*YES).


The Best Web Links: Tips, tutorials and more.

Search400.com's targeted search engine: Get relevant information on security.

Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.

Read this Search400.com Featured Topic: Secure your iSeries

Dig Deeper on iSeries system and application security

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.