You can authorize a general user or group to perform resume and reset functions for only users that are within the scope of a selected group tree. To do this, authorize the ALTUSER command issuer with the appropriate authority to the IRR.PWRESET.TREE.owner resource in the FACILITY class, where owner is the group that is at the top of a group tree.

Rule: The list-of-groups checking option (SETROPTS GRPLIST) must be active.