Considerations for the Batch Utilities - Archive Security

An archive security exit that is enabled on the Site Options panel is also called, when appropriate, during execution of the batch utilities. For example, a request to delete an Archive File will result in a call to the archive security exit to determine if the user has the authority to perform the delete operation.

The following rules apply to the archive security exit when invoked for the batch utilities:

  1. The value in the exit parameter area for the TSO ID of the current user will always be the TSO ID of the user that submits the job. Note that the TSO ID specified as the last parameter in the PARM field of the EXEC card is ignored for security purposes.
  2. The batch utilities do not distinguish between a normal user and a site administrator. All users are considered normal, even a user that would be site administrator during an online Archive session. The indicator in the exit parameter area for site administrator will always be “F” (current user is not site administrator).

    Therefore, if you use the exit distributed with Archive, Archive Files designated as PRIVATE cannot be accessed for any purpose and Archive Files designated as READONLY cannot be modified or deleted using the batch utilities.

For more information on batch utilities, see Processing Utilities in the Batch Utilities Guide.