Your Browser is not longer supported

Please use Google Chrome, Mozilla Firefox or Microsoft Edge to view the page correctly
Loading...

{{viewport.spaceProperty.prod}}

Privileges of the user ID TSOS

&pagelevel(4)&pagelevel

The TSOS privilege is immutably linked to the user ID TSOS and can neither be withdrawn from this user ID nor assigned to another user ID. The privileges that are assigned as standard to the TSOS user ID are shown in the table 36 in section "Allocation of privileges".

According to the BS2000 convention, product files or files created by the system under the TSOS user ID start with the string “SYS” (SUs /390), “SKM” or “SKU” (for SUs x86). It must be ensured that they are not inadvertently overwritten or deleted.

User commands

The TSOS user ID is always the co-owner of all the files and job variables of all the users as long as the users themselves have not denied the TSOS user co-ownership.

The full scope of user commands is available to systems support.

TSOS is authorized to make read and write accesses to all entries in the file/user catalog. The password protection of user files is suspended for systems support inasmuch as TSOS is authorized either to ignore the passwords or to obtain them if necessary. When SECOS is used the owner can use a condition guard to protect any data requiring security in order to deny the TSOS user access.

Access to all files also covers temporary files that systems support may create under any desired catalog/user ID. These files, however, are not automatically deleted upon LOGOFF or EXIT-JOB. Systems support itself is responsible for deleting these files. Upon a partially qualified specification of file names, temporary files are taken into account in accordance with their internal representation.

Commands with privileges other than TSOS

The TSOS user ID can only execute the commands for which it has the associated privilege.

In particular, no operator commands can be issued under TSOS because by default TSOS does not have the OPERATING privilege. The default allocation of privileges can only be changed with SECOS.

Macros

Privileges for creating and modifying files at the command level also apply to the corresponding macro calls. The privileged operands of the macros are described in detail in the “Executive Macros” [30] and “DMS Macros” [20] manuals.

Job Variables

The following commands are available only in conjunction with the software product JV and are described in detail in the “Job Variables” manual [26].

The TSOS user ID is always the co-owner of all the files and job variables of all the users as long as the users themselves have not denied the TSOS user co-ownership.

Systems support can use the following commands to process job variables of other user IDs:

CREATE-JV
DELETE-JV
MODIFY-JV
MODIFY-JV-ATTRIBUTES
MODIFY-JV-CONDITIONALLY 
REMOVE-JV-LINK 
SET-JV-LINK 
SHOW-JV
SHOW-JV-ATTRIBUTES
SHOW-JV-LINK 
SHOW-CJC-STATUS

Any file protection in the form of passwords is displayed only to the privileged caller under the TSOS user ID.

Powered by Atlassian Confluence and Scroll Viewport.