If a user has *JOBCTL in his profile and is able to view an interactive joblog, what prevented him from looking at the ODBC (QZDASOINIT) joblog? Which special authority does he need to view the job log? After we looked into it further, we found this login can view job log for some QZDASOINIT jobs but not others.
The user running the ODBC connection (the QZDASOINIT job is an ODBC connection) probably had *ALLOBJ special authority. Normally, you must have *ALLOBJ special authority yourself to be able to view the job log of a user with *ALLOBJ. However, if you open iSeries Navigator and right click on the system name, one of the options you'll see is Application Administration -- click on that. In the next window that appears, click on the Host tab. Open i5/OS->All object -> Access job log of *ALLOBJ job. Using this facility, you can say that any user with *JOBCTL can see the job log of an *ALLOBJ user. If you don't want to open this up to all users with *JOBCTL, then customize the access and select the users for whom you wish to enable this function.
Dig Deeper on Systems Management Tools
Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old ...
Look in the audit journal (QAUDJRN) on the AS/400 for an authority failure message with the name of the library as the object name. Use the ...
On AS/400, the journal type AF subtype K, shows that a user profile lacks the special authority required by the function attempting to run.
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.