Note on usage

Function: Modify admission set

User group: FTAC user and FTAC administrator

Prerequisite for using this command is the use of openFT-AC.

The command can be entered under TSO.

Functional description

The FTAC user can modify the admission set for his/her own user ID with the FTMODADS command. The FTAC administrator also can modify the admission sets of foreign user IDs. You may access two components of the admission set:

1. You can define a password to be entered for almost all subsequent FTAC commands (except the FTSHW... commands). This prevents other users working with your user ID from entering FTAC commands.

   It is not possible to have an FTAC password output. If an FTAC user forgets his/her FTAC password, only the FTAC administrator can delete or modify the password.
   WARNING!

   If the FTAC administrator should assign and subsequently forget a password, the FTAC environment must be reinstalled. In this case, all admission profiles and sets are deleted!

2. FTAC users may modify the limit values for the maximum number of security levels that can be reached from their user ID (the MAX-USER-LEVELS) within the range specified by the FTAC administrator. The limit values defined by the FTAC administrator (MAX-ADM-LEVELS) cannot, however, be overridden by the FTAC user. They can simply reduce the limit values since, in the case of FT requests, FTAC performs the admission check on the basis of the smallest value in the admission set. The MAX-USER-LEVELS are only effective if they are lower, i.e. more restrictive, than the MAX-ADM-LEVELS.

   FTAC administrators assign a maximum security level for each of the six basic functions. The user ID associated with the admission set can then use this function with all partner systems with this security level or lower. The owner of the admission set may only increase the degree of restriction.

In addition, the FTAC administrator can delete an admission set from the admission file by entering the standard admission set for the user ID in question (MAX-LEVELS=*STD). This is also possible with user IDs which have already been deleted!

Format

Operands

USER-IDENTIFICATION =

User ID whose admission set is to be modified.

USER-IDENTIFICATION = *OWN
The admission set for the user ID which you are currently using is to be modified.

USER-IDENTIFICATION = *STD
The standard admission set is to be modified. Only the FTAC administrator can make this entry.

USER-IDENTIFICATION = <name 1..8>
The admission set for this user ID is to be modified. The FTAC user can only enter his/her own user ID here.
The FTAC administrator can enter any user ID here.

PASSWORD =
FTAC password which authorizes you to use FTAC commands, if such a password was defined in your admission set. An FTAC password is set with the operand NEW-PASSWORD.

PASSWORD = *NONE
No FTAC password is required for this admission set.

PASSWORD = <alphanum-name 1..8>

This password authorizes this user to use FTAC commands.

SELECT-PARAMETER = *ALL
In later openFT-AC versions it will be possible to specify additional selection criteria here.

NEW-PASSWORD =
Changes the FTAC password. If such an FTAC password has already been set, it must be used for almost all FTAC commands on the user ID for this admission set (except: the FTSHW... commands). This is done using the parameter PASSWORD in the respective commands.

NEW-PASSWORD = *OLD
The FTAC password remains unchanged.

NEW-PASSWORD = *NONE
No FTAC password is required for the user ID associated with this admission set.

NEW-PASSWORD = <alphanum-name 1..8>
Specification of the new FTAC password.

PRIVILEGED = *UNCHANGED
This parameter is only supported for reasons of compatibility. Authorization of the FTAC administrator is now only possible via the FTACADM member in the openFT parameter library.

MAX-LEVELS =
You set which security level(s) you can access, with which basic functions, from the user ID of this admission set. Either you can set one security level for all basic functions or different security levels for each basic function.
The MAX-USER-LEVELS for this admission set are set by the FTAC user; the MAX-ADM-LEVELS are set by the FTAC administrator.
FTAC runs authorization checks on the basis of the lowest specified security level. FTAC users may reduce but not increase the values specified for them by the FTAC administrator, see example to FTSHWADS.

MAX-LEVELS = *UNCHANGED
The security levels set in this admission set are to remain unchanged.

MAX-LEVELS = *STD
For this admission set, the values of the standard admission set are valid. The admission set is deleted from the admission file. This is possible if the user ID has already been deleted.

MAX-LEVELS = <integer 0...100>
You can set a maximum security level for all six basic functions. The value 0 means that no file transfer is possible on this user ID until further notice (until the admission set is modified again).

MAX-LEVELS = *PARAMETERS(...)

You can set a maximum security level for each of the basic functions.

OUTBOUND-SEND =
Sets the maximum security level for the basic function “outbound send”. The owner of the admission set can send files to all partner systems whose security level has this value or lower.

OUTBOUND-SEND = *UNCHANGED
The value for OUTBOUND-SEND remains unchanged.

OUTBOUND-SEND = *STD
For OUTBOUND-SEND, the value from the standard admission set is used.

OUTBOUND-SEND = <integer 0..100>
For OUTBOUND-SEND, this maximum security level is entered in the admission set.

OUTBOUND-RECEIVE =
Sets the maximum security level for the basic function “outbound receive”. The owner of the admission set can receive files from all partner systems whose security level has this value or lower.

OUTBOUND-RECEIVE = *UNCHANGED
The value for OUTBOUND-RECEIVE remains unchanged.

OUTBOUND-RECEIVE = *STD
For OUTBOUND-RECEIVE, the value from the standard admission set is used.

OUTBOUND-RECEIVE = <integer 0..100>
For OUTBOUND-RECEIVE, this maximum security level is entered in the admission set.

INBOUND-SEND =
Sets the maximum security level for the basic function “inbound send”. All partner systems with this security level or lower can request files from the owner of the admission set.

INBOUND-SEND = *UNCHANGED
The value for INBOUND-SEND remains unchanged.

INBOUND-SEND = *STD
For INBOUND-SEND, the value from the standard admission set is used.

INBOUND-SEND = <integer 0..100>
For INBOUND-SEND, this maximum security level is entered in the admission set.

INBOUND-RECEIVE =
Sets the maximum security level for the basic function “inbound receive”. All partner systems with this security level or lower may send files to the owner of the admission set.

Steven needs information on his admission set.

FTSHWADS

He receives the following output:

FTMODADS MAX-LEVELS=*PARAMETERS(INBOUND-PROCESSING = 0)

The short form of this command is

FTMODADS MAX-LEV=(IN-PROC=0)

He outputs his admission set once more to double-check.

FTSHWADS

He receives the following output:

FTCREPRF FRIENDS,TRANS-AD=‘for my friends‘,IGN-MAX-LEV=(IN-PROC=*YES), -

          PROCESSING-ADMISSION=(STEVEN,XXXX,PASSWORD)

Example

Jack John, the FTAC administrator of the Dack Bank, wishes set up the admission set for his employee Steven, such that Steven

He wants all partner systems to be able send files to and request files from the user ID STEVEN. Therefore he sets the security level for INBOUND-SEND and INBOUND-RECEIVE to 100.

Jack does not wish to permit follow-up processing to be initiated from external partners, since he is too stingy to want to make his resources available to others. Therefore, he sets INBOUND-PROCESSING and INBOUND-MANAGEMENT at 0. Since these values are set in the standard admission set for the Dack Bank, these specifications are used for *STD. No FTAC password is defined.

The long form of the required command is as follows:

A possible short form of this command would be:

FTMODADS STEVEN,MAX-LEV=(10,10,100,100,*STD,*STD)