The privileged user is treated in the same way as the owner in respect of the job variables of other users (it can be limited, see paragraph “Restricted TSOS co-ownership”). This also applies to the operator, who is authorized to issue the SHOW-JV, MODIFY-JV and SHOW-CJC-STATUS commands at the console. With basic ACL protection, the access rights defined for OWNER are applicable.
The privileged user can use wildcards in all commands and macros which allow wildcards in the JV name, as well as within the user ID (e.g. SHOW-JV-ATTRIBUTES or STAJV macro).

During output of the JV entry (SHOW-JV-ATTRIBUTES or STAJV macro), specified passwords are included in the output for the privileged user. The privileged user can modify a JV entry (MODIFY-JV-ATTRIBUTES or CATJV macro) without specifying passwords. When deleting job variables (DELETE-JV or ERAJV macro), the privileged user is able to ignore the password protection (IGNORE-PROTECTION operand).

The privileged user is also authorized to create job variables under any user ID (CREATE-JV or CATJV macro), and can also access all temporary job variables in the system.
The system administrator can transfer system administrator functions to the operator (see “Introductory Guide to Systems Support” [3]). This means that the operator may also issue other commands in addition to SHOW-JV and MODIFY-JV (such as CREATE-JV and DELETE-JV) at the console, with the same privileges.