System backup by means of ARCHIVE is best executed with a directory file and under the ID TSOS (respectively with the privilege TSOS).

Unless otherwise specified, ARCHIVE uses the directory file $TSOS.ARCHIVE.DIR, but a different name can be specified (see section "Creating a directory file").
Only the system support can execute save runs with this directory.

Directory files under TSOS differ from directories under other user IDs in the following characteristics:

• Files belonging to a different user ID can be reconstructed only from a directory file that is under TSOS.

  Exception:
  Co-ownership of files of a foreign user ID.

• Even if the directory file is protected by a read password, nonprivileged users can still execute read functions for data held under their own user IDs, i.e. RESTORE and INQUIRE can be used without having to specify the read password for the directory file. Write functions, such as SAVE, are not possible.

The system support should protect the directory file by means of a read password. If (s)he also wants to prevent read access to the directory file with RESTORE and INQUIRE, the directory file must be created under a user ID other than TSOS; but then system backup is not possible.