Or if you could try this. Normal user would have READ access to the REPORT/dsn.
An owner would have either ALTER or UPDATE on the REPORT/DSN (just a guess) So if a user had READ access then AUTHOWNR or AUTHERAS would not be involved If they user had ALTER or UPDATE access the AUTHOWNR or AUTHERAS would be involved. I would take that question to IBM. How to get everyone to be a reader of reports, not be allowed to access other reports they are not supposed to. And how does AUTHOWNR and AUTHERAS get involved. It could be you still have to code the exit DBNUXSEC Lizette > -----Original Message----- > From: IBM Mainframe Discussion List [mailto:[email protected]] On > Behalf Of Roff, Donna > Sent: Tuesday, July 29, 2014 7:41 AM > To: [email protected] > Subject: Re: RMDS > > Lizette, > I think everybody has ERASE authority. AUTHOWNR and AUTHERAS are > system options so wouldn't that be global? > > I don't know why IBM cant help either. Sigh. As far as I know it is still on support. > > If that's the case, I suppose I could initiate a Request for Enhancement. I know they > would just love this for this vestigial product. > > -----Original Message----- > From: IBM Mainframe Discussion List [mailto:[email protected]] On > Behalf Of Lizette Koehler > Sent: Tuesday, July 29, 2014 10:35 AM > To: [email protected] > Subject: Re: RMDS > > So, the problem with ERASE? > Is it too many users have ERASE? Just from a brief look at the manuals, it looks > like that normal users would just need READ. > > And I am going to guess here. > > Unless both the AUTHOWNR and AUTHERAS are the same for the user, they > would not have the ability to erase. > > I have not used RMDS in over 15 years. So I am really fuzzy on how it works. And > I am not sure why IBM cannot help. I do not know it the product is off support or > not. > > Has your management started discussions on moving to a better supported > product? > > Lizette > > > > > -----Original Message----- > > From: IBM Mainframe Discussion List [mailto:[email protected]] > > On Behalf Of Roff, Donna > > Sent: Tuesday, July 29, 2014 7:30 AM > > To: [email protected] > > Subject: Re: RMDS > > > > Also, I couldn't figure out what the RMDS definitions for ALTER and > > UPDATE > are. > > The description for AUTHOWNR in the manual is like the description for > > AUTHERAS > > > > > > AUTHOWNR | A|ALTER | Specifies the authorization level required | > > | | U|UPDATE | for a report owner. > > > > > > But both UPDATE and ALTER sound pretty significant. > > > > -----Original Message----- > > From: IBM Mainframe Discussion List [mailto:[email protected]] > > On Behalf Of Roff, Donna > > Sent: Tuesday, July 29, 2014 10:16 AM > > To: [email protected] > > Subject: Re: RMDS > > > > Hi Lizette, > > I had changed this AUTHERAS option form UPDATE to ALTER and it didn't > make > > a difference. Let me refresh what I did, if anything, with AUTHOWNR. > > > > -----Original Message----- > > From: IBM Mainframe Discussion List [mailto:[email protected]] > > On Behalf Of Lizette Koehler > > Sent: Tuesday, July 29, 2014 10:13 AM > > To: [email protected] > > Subject: Re: RMDS > > > > IN the manual it states > > > > AUTHERAS Specifies the authorization level for the ERASE and > > RESTORE commands. > > A|ALTER > > U|UPDATE > > > > Perhaps you can see if your users have ALTER or UPDATE authority on > > the report/dsn. In the manual Report Management and Distribution > > System Administration Guide Version 2 Release 3 Document Number > > S544-5395-00 > > > > Note: The RMDS default is to define report owners as having UPDATE > authority, > > but system options are available to allow you to specify what access > should be used > > to define report owners (AUTHOWNR) and to define the authority to > > issue > ERASE > > commands (AUTHERAS). > > > > > > The viewer region and report distribution facility user IDs > need only READ > > access, for those cases where the job or started task user ID does not > match the > > user IDs accessing reports. > > > > > > So maybe you can change the DEFINE AUTHERAS and AUTHOWNR to a > > different levels and only give that level to those allowed to erase > reports. > > > > Lizette > > > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, send email to > [email protected] with the message: INFO IBM-MAIN > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, send email to > [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
