Are the APIs QGYRATLO and QSYLATLO the only way to determine what directory objects are attached to an authorization list? I get CPI221C: 1 objects were not included in this list, when running DSPAUTL.
If you go through iSeries Navigator (aka OpsNav) you can get the information you're looking for. Expand on the system name, expand Security, choose Authorization lists. Click on the authorization list you're interested in. The first screen you'll see is the equivalent of EDTAUTL (Edit Authorization List). If you press on the "Secured Objects" box, you will get a screen that displays (in 3 separate boxes) the objects in libraries, the objects in folders and the objects in directories.
MORE INFORMATION ON THIS TOPIC
The Best Web Links: tips, tutorials and more.
Search400's targeted search engine: Get relevant information on security.
Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.
Dig Deeper on iSeries system and application security
Related Q&A from Carol Woodbury
Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old ... Continue Reading
Look in the audit journal (QAUDJRN) on the AS/400 for an authority failure message with the name of the library as the object name. Use the ... Continue Reading
The UPPWEI field corresponds to the password expiration interval field, and its values "0" and "-1" represent the *SYSVAL and *NOXMAX commands. Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.