System values: Security overview
You can use IBM® i security system values to control object, user, and system security values.
To access the security category of system values from System i® Navigator, select Configuration and Services and then select System Values.
System i Navigator uses descriptive names for system values. The following table provides an overview of the security system values available in System i Navigator (and their counterparts in the character-based interface).
Name in System i Navigator | Description of system value | Name in character-based interface |
---|---|---|
Allow these objects in . . . | This system value specifies where to allow user domain objects that bypass authority checking and cannot be audited. | QALWUSRDMN |
Default authority for newly created objects in QSYS.LIB file system | This system value specifies the default authority for objects that do not specify the authority. | QCRTAUT |
Allow server security information to be retained | This system value sets server security information to be retained. | QRETSVRSEC |
Use registered exit programs to scan the root (/), QOpenSys, and user-defined file systems | This system value specifies whether objects in the root (/), QOpenSys, and user-defined file systems should be scanned by exit programs registered with any of the integrated file system scan-related exit points. | QSCANFS |
Scan control | This system value specifies scan control options. | QSCANFSCTL |
Security level | This system value sets the level of security for your system. | QSECURITY |
Allow use of shared or mapped memory with write capability | This system value specifies whether users are allowed to use shared memory or mapped memory stream files. | QSHRMEMCTL |
Secure Sockets Layer cipher specification list | This system value defines the System SSL cipher specification list. | QSSLCSL |
Secure Sockets Layer cipher control | This system value specifies whether the system or a user controls the SSL cipher specification list (QSSLCSL) system value. | QSSLCSLCTL |
Secure Sockets Layer protocols | This system value specifies the Secure Sockets Layer (SSL) protocols supported by the System SSL. | QSSLPCL |
Users who can cause programs to use adopted authority from calling programs | This system value specifies which users can work with programs with adopted authorities. | QUSEADPAUT |