Admission sets implement the security settings on the basis of the basic functions of openFT. Administration of the admission sets is primarily the task of the FTAC administrator.
There are:
The standard admission set that is valid throughout the system
Individual admission sets for individual user IDs
Standard admission set
The settings made in the standard admission set apply to all user IDs. Consequently, only the FTAC administrator may modify the standard admission set.
Following installation, the standard admission set on BS2000 and z/OS systems is set to 0, i.e. no file transfers are possible. On Unix and Windows systems, the standard admission set is set to 100, i.e. file transfer is possible without restriction.
Individual admission sets
A maximum security level is specified in the admission set for each of the six basic functions (inbound send, inbound receive, inbound follow-up processing, inbound file management, outbound send, outbound receive).
Users may only modify their own admission sets whereas the FTAC administrator can modify the admission sets of all users. As a result, for these basic functions, there is a predefined value set by the FTAC administer (known as ADMIN LEVELS) and the predefined value set by the user in question (USER LEVELS). This results in the following possibilities for each basic function:
If neither the user in question not the FTAC administrator have changed a setting then the setting in the standard admission set applies.
If either the user or the FTAC administrator have changed the security level then this level applies. A user-specific security level must be the same as or lower than that in the standard admission set. If the security level is higher then a warning is output.
If both of them have changed the setting then the lower of the two new settings applies.
Example
The Valid level column indicates the effect of the settings made by the user and the FTAC administrator as well as those in the standard admission set.
Basic function | User | FTAC | Standard | Valid |
Outbound Send | -- | -- | 100 | 100 |
Outbound Receive | -- | 90 | 100 | 90 |
Inbound Send | 50 | -- | 90 | 50 |
Inbound Receive | 50 | 10 | 90 | 10 |
Inbound Processing | 50 | 10 | 50 | 10 |
Inbound File | 10 | 20 | 50 | 10 |
The user ID to which the admission set belongs can then use the basic function with all partner systems that have at most this security level, i.e., in the case of an openFT request (outbound and inbound), the admission is compared with the FTAC security level of the relevant partner, see also "FTAC security levels for partner entries".
Example
For the partners FT1, FT2 and FT3, the Effect column shows the effect of the settings in the administration set and the settings for the partner level.
Basic function | Level in | Partner level | Effect | ||||
FT1 | FT2 | FT3 | FT1 | FT2 | FT3 | ||
Outbound Send | 100 | 100 | 90 | 10 | + | + | + |
Outbound Receive | 90 | - | + | + | |||
Inbound Send | 50 | - | - | + | |||
Inbound Receive | 10 | - | - | + | |||
Inbound Processing | 10 | - | - | + | |||
Inbound File | 10 | - | - | + | |||
- Request is rejected