Functional authorities field definitions
The following table contains descriptions of the functional authority fields.
| Field | Description | Valid Values |
|---|---|---|
| ACL Update | Microsoft Windows only. Grants authority to define access-allowed and access-denied entries in the Access Control List (ACL) for a file created using a copy Process. | No | Yes |
| Admin | Determines if the user has administrative privileges. (UNIX, Microsoft Windows) | No | Yes |
| CRC | Enables the user to override the default settings
by using the keyword CRC in a Process statement. No prevents the user from overriding system default settings. The default is No. Yes lets the user override system default settings. |
No | Yes |
| Change | Grants authority to change Processes in the TCQ. Yes specifies that you can change your own Processes; All specifies that you can change Processes of any user. |
No | Yes | All |
| Confirm Delete | Show confirmation prompt for Delete, Flush, and Suspend commands. (z/OS only) | No | Yes |
| Confirm Delete Off | Grants authority to user to turn off confirmation prompting for Delete, Flush, and Suspend commands. (z/OS only) | No | Yes |
| Contact Name | Name of the user. (UNIX only) | Alphanumeric string. |
| Copy | Determines if a user can copy files from one node to another. (z/OS, UNIX) | No | Yes |
| Copy Receive | Enables receives. (UNIX only) | No | Yes |
| Copy Send | Enables sends. (UNIX only) | No | Yes |
| Copy ulimit | The action taken when the limit on a user output file size is exceeded during a copy operation. The value for this parameter overrides the equivalent value in the initialization parameters file. (UNIX only) | No | Yes Number of KB Yes honors the user file size limit. If this limit is exceeded during a copy operation, the operation fails. No ignores the limit. The default is n. nnnnnnnn, nnnnnnnnK, nnnnnnnM, or nnnnG establishes a default output file size limit for all copy operations. K denotes 1024 bytes. M denotes 1048576 bytes. G denotes 1073741824 bytes. The maximum value you can specify is 1 TB. |
| Delete | Grants authority to delete Processes from the
TCQ. Yes specifies that you can delete your own Processes; All specifies that you can delete Processes of any user. |
No | Yes | All |
| Description | Description of the user. (UNIX only) | Alphanumeric string. |
| Download (directory) | Specifies the directory that the user can copy files to and use as a destination directory. (UNIX, Microsoft Windows) | |
| Download (Process statements) | Determines if the user can receive files to this local node. If a file open exit is in use, this parameter is passed to the exit, but it is not enforced. (Microsoft Windows) | No | Yes |
| Event Commands | Specifies whether the user can use the Event Services Support commands. (z/OS only) | No | Yes |
| Execution Priority | Microsoft Windows only. Grants authority to override the default execution priority in a Process. | No | Yes | All |
| File Attributes | Microsoft Windows only. Grants authority to override system default file attributes when creating files using a copy Process. | No | Yes |
| Flush | Grants authority to remove a Process being run from the TCQ. (z/OS, UNIX) | No | Yes | All |
| Functional Authority Update | Specifies whether the user can update a user in the Sterling Connect:Direct® authorization file. (z/OS only) | No | Yes |
| Functional Authority Insert | Specifies whether the user can add a user to the Sterling Connect:Direct authorization file. (z/OS only) | No | Yes |
| Functional Authority Delete | Specifies whether the user can delete a user in the Sterling Connect:Direct authorization file. (z/OS only) | No | Yes |
| Functional Authority Select | Specifies whether the user can select a user in the Sterling Connect:Direct authorization file. (z/OS only) | No | Yes |
| Inherent Rights | Microsoft Windows only. | No | Yes |
| Max Signon Attempts | The maximum number of signon attempts the user can try per hour. Zero (0) indicates no maximum number. (z/OS only) | The range is 0–99. The default is 60. |
| Modals | Specifies whether the user can use the modal statements IF, ELSE, EIF, GOTO, and EXIT. (z/OS only) | No | Yes |
| Monitor | Grants access to the Process Monitor function. Yes - specifies that you can monitor your own Processes All - specifies that you can monitor Processes of any user (UNIX, Microsoft Windows) |
No | Yes | All |
| Netmap | Grants authority to update the netmap. (Microsoft Windows only) | No | Yes |
| Netmap Select | Grants authority to view the network map. (z/OS only) | No | Yes |
| Netmap Update | Specifies whether the user can update the netmap. (z/OS only) | No | Yes |
| Passticket Data | The values required for the Stage 2 security exit to rewrite a RACF PassTicket password. APPL prof name is the value specified when the profile is defined for the PTICDATA class. (z/OS only) | The first field is the PassTicket application profile name while the second field is the PassTicket security signon key. |
| Password | The initial password for the user ID. (z/OS only) | 1–64 character alphanumeric string. |
| Phone Number | The phone number associated with the user. (z/OS, UNIX) | |
| Process | Specifies the directory from which the user can submit a Process. (UNIX, Microsoft Windows) | |
| Program | Specifies the directory from which the user can run a program. (UNIX, Microsoft Windows) | |
| Refresh | Microsoft Windows only. Grants authority to refresh the Sterling Connect:Direct server initialization parameters. | No | Yes |
| Remote Node ID | Grants authority to use the remote node ID parameter on the Process statement or when submitting the Process Submit command. (UNIX, Microsoft Windows) | No | Yes |
| Reset Signon | Grants authority to reset signons. (z/OS only) | No | Yes |
| Run Job | Grants authority to use run job Process statements. | No | Yes |
| Run Task | Grants authority to use run task Process statements. | No | Yes |
| Secure+ Admin | Specifies whether the user can update the Sterling Connect:Direct Secure Plus parameters file. (z/OS only) | No | Yes |
| Secure+ Configuration | Specifies whether the user can update the Sterling Connect:Direct Secure Plus parameters file. (UNIX only) | No | Yes |
| Secure Plus | Specifies whether the user can update the Sterling Connect:Direct Secure Plus parameters file. (Microsoft Windows only) | No | Yes |
| Security ID | The security ID to identify the file authorization
of the user. Security support includes CA-ACF2, CA-TOP SECRET, and IBM® RACF. This ID must meet the standards of the security subsystem at the user location. (z/OS only) |
1–64 character security system ID for the user. |
| Security ID Password | The 1–64 character security system password for the user. This password must meet the standards of the security subsystem at the location of the user. (z/OS only) | 1—64 characters. |
| Security ID Password Verify | Retype the 1–64 character security system password for the user to verify its value. (z/OS only) | 1—64 characters. |
| Select Process | Grants authority to use the Select Process command. (z/OS only) | No | Yes |
| Stat Commands | Grants authority to use the Statistics commands. (z/OS only) | No | Yes |
| Statistics | Grants authority to access Process statistics
using the Select Statistics command. Yes specifies that you can access statistics for your own Processes; All specifies that you can access statistics for the Processes of any user. |
No | Yes | All |
| Stop | Grants authority to stop a Sterling Connect:Direct node. (UNIX, Microsoft Windows, z/OS) | No | Yes |
| Submit | Grants authority to submit Processes to the TCQ using the Submit Process command. Yes specifies that you can submit your own Processes. | No | Yes |
| Submit within Process | Grants authority to submit within another Process statement. | No | Yes |
| Trace | Grants authority to access the Trace utility. (UNIX, Microsoft Windows, z/OS) | No | Yes |
| Trace and Refresh Initialization Parameters | Grants authority to modify initialization parameters. (z/OS only) | No | Yes |
| Translation Table | Grants authority to update the translation tables. (Microsoft Windows only) | No | Yes |
| Trustee Assign | Microsoft Windows only. | No | Yes |
| Type | The type of functional authority. (Microsoft Windows) | User | Group |
| Type Delete | Specifies whether the user can delete type records. (z/OS only) | No | Yes |
| Type Insert | Specifies whether the user can create new type records. (z/OS only) | No | Yes |
| Type Select | Specifies whether the user can select new type records. (z/OS only) | No | Yes |
| Type Update | Specifies whether the user can update type records. (z/OS only) | No | Yes |
| Update APKEY | Specifies whether the user can update the license management key (also known as the asset protection key file). (z/OS only) | No | Yes |
| Update Initialization Parameters | Grants authority to update initialization parameters. (z/OS only) | No | Yes |
| Upload (directory) | Specifies the directory that the user can copy files from and use as a source directory. (UNIX, Microsoft Windows) | |
| Upload (process statements) | Determines if the user can send files from this local node. If a file open exit is in use, this parameter is passed to the exit, but it is not enforced. (Microsoft Windows) | No | Yes |
| User Authority | Grants authority to update local user Sterling Connect:Direct functional authorities. (Microsoft Windows only) | No | Yes |
| User ID | User identification. | 1–64 characters. |
| User Name | The full name of the user. (z/OS only) | 1–20 characters. |
| User Node | The user node of the user record. (z/OS only) | 1–16 character alphanumeric string. |
| User Proxy | Grants authority to update user proxies. (Microsoft Windows only) | No | Yes |
| Verify Password | Retype the password to verify the value. (z/OS only) | 1–64 character alphanumeric string. |
| View Processes | Determines if the user can issue the view Process
command. No - Prevents the user from issuing the command. The default is No. Yes - Lets the user issue the command. All - Lets the user issue the command against targets owned by all users. |
No | Yes | All |