The "feature" of OS/400 that you're missing is the fact that private authorities are not saved with an object when saving it. Here comes a bit of an OS/400 architecture lesson... the only authorities that are stored with the object are the *PUBLIC, owner's and primary group's authority. All private authorities that a user might have to an object are stored in the user's user profile object. The only time they are saved is when you are saving user profiles. So to get back the private authorities to an object, you have to restore the user profile and run the RSTAUT command. The RSTAUT command restores the private authorities, but you have to restore the profile first to build the object RSTAUT uses.
MORE INFORMATION ON THIS TOPIC
The Best Web Links: tips, tutorials and more.
Search400's targeted search engine: Get relevant information on security.
Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.
Dig Deeper on iSeries system and application security
Related Q&A from Carol Woodbury
Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old ... Continue Reading
When error messages arise concerning attempts to use a permanent system object without authority, find the source of the issue by looking for an AF ... Continue Reading
The UPPWEI field corresponds to the password expiration interval field, and its values "0" and "-1" represent the *SYSVAL and *NOXMAX commands. Continue Reading