What's new for IBM i 7.3

Read about new or significantly changed information for the Security reference topic collection.

A new capability that is called Authority Collection has been added to the base operating system. This support assists the security administrator and application provider in securing the objects in an application with the lowest level of authority that is required to allow the application to run successfully. The goal of authority collection is to increase the security of the objects within the application. New CL commands, Start Authority Collection (STRAUTCOL), End Authority Collection (ENDAUTCOL), and Delete Authority Collection (DLTAUTCOL), and a new SQL view, QSYS2.AUTHORITY_COLLECTION, are provided in support of this new enhancement.

Auditing

  • New QAUDLVL and QAUDLVL2 values: *NETSECURE, *NETTELSVR, and *NETUDP.
  • The QAUDLVL and QAUDLVL2 value *NETCMN now only writes security audit journal entries for a subset of the *NETSCK functions. It does not write security audit journal entries for accepts and connects.
  • The CP (User Profile Changes) security audit journal entry contains fields for all the Create User Profile (CRTUSRPRF) command parameters except TEXT and AUT and all the Change User Profile (CHGUSRPRF) command parameters except TEXT.
  • Other miscellaneous updates to audit journal entries have been made.

Other miscellaneous updates have been made to this topic collection.

How to see what's new or changed

To help you see where technical changes have been made, the information center uses:
  • The Start of change image to mark where new or changed information begins.
  • The End of change image to mark where new or changed information ends.

In PDF files, you might see revision bars (| or +) in the left margin of new and changed information.