Your Browser is not longer supported

Please use Google Chrome, Mozilla Firefox or Microsoft Edge to view the page correctly
Loading...

{{viewport.spaceProperty.prod}}

SHOW-DEFAULT-PROTECTION-ATTR Show default values for protection attributes

Domain:

SECURITY-ADMINISTRATION

Privileges:

STD-PROCESSING, GUARD-ADMINISTRATION

This command is used to display the default values of protection attributes.

Users who are neither owners of the attribute guard which is to be displayed nor guard administrators can only display the attributes if they possess the authorization to access the attribute guard (SCOPE=*USER-GROUP or *HOST-SYSTEM).

SHOW-DEFAULT-PROTECTION-ATTR (SHO-DEF-PRO-A)

GUARD-NAME = * / <filename 1..24 without-gen-vers with-wild(40)>

,INFORMATION = *ATTRIBUTES / *GUARD-NAMES-ONLY

,OUTPUT = *SYSOUT / list-poss(2): *SYSOUT / *SYSLST(...)


*SYSLST(...)



|

SYSLST-NUMBER = *STD / <integer 1..99>

GUARD-NAME = <filename 1..24 without-gen-vers with-wild(40)>
This operand designates the name of the guard of type DEFPATTR which is to be displayed.

The name may be specified with wildcards or may be partially qualified. Its length without wildcards, catalog ID and user ID must not exceed 8 characters.

Only a guard administrator can specify wildcards in the user ID.

The specification of the system default ID in the guard name, e.g. $<filename> or $.<filename>, is not supported.

INFORMATION =
Specifies the extent of the information which is output for each guard.

INFORMATION = *ATTRIBUTES
The guard’s attributes are displayed

INFORMATION = *GUARD-NAMES-ONLY
Only the name of the guard is displayed

OUTPUT = list-poss(2):
This operand defines the destination of the output.

OUTPUT = *SYSOUT
Output is directed to the terminal if the command was issued in interactive mode. In batch mode, the output destination depends on the specifications in the job.

OUTPUT = *SYSLST(...)
Output is directed to the system file SYSLST.

SYSLST-NUMBER = *STD
Output is sent to the system file SYSLST.

SYSLST-NUMBER = <integer 1..99>
Two-digit number nn used to form the file name SYSLSTnn.

Output layout (INFORMATION = *ATTRIBUTES)

------------------------------------------------------------------------------
GUARD :ABCD:$GUABRIEL.STD.ATTR                   DEFAULT PROTECTION ATTRIBUTES
------------------------------------------------------------------------------
                   % SCOPE: CREATE-OBJECT        % SCOPE: MODIFY-OBJECT-ATTR
                   % --------------------------- % ---------------------------
ACCESS             % *WRITE                      % *READ
USER-ACCESS        % *OWNER-ONLY                 % *OWNER-ONLY
BASIC-ACL          % *NONE                       % OWNER  = R W X
                   %                             % GROUP  = R - -
                   %                             % OTHERS = - - -
GUARDS             % *NONE                       % READ   = $AAAAAAAA.BBBBBBBB
                   %                             % WRITE  = $AAAAAAAA.BBBBBBBB
                   %                             % EXEC   = $AAAAAAAA.BBBBBBBB
READ-PASSWORD      % *NONE                       % *NONE
WRITE-PASSWORD     % *NONE                       % *YES
EXEC-PASSWORD      % *SYSTEM-STD                 % *SYSTEM-STD
DESTROY-BY-DELETE  % *NO                         % *YES
SPACE-RELEASE-LOCK % *NO                         % *YES
EXPIRATION-DATE    % yyyy-mm-dd                  % yyyy-mm-dd
FREE-FOR-DELETION  % yyyy-mm-dd                  % yyyy-mm-dd
------------------------------------------------------------------------------
GUARDS SELECTED: 1                                              END OF DISPLAY

Output layout (INFORMATION = *GUARD-NAMES-ONLY)

------------------------------------------------------------------------------
LIST OF ATTRIBUTE GUARDS                         DEFAULT PROTECTION ATTRIBUTES
------------------------------------------------------------------------------
GUARD :ABCD:$GUABRIEL.STD.ATTR
GUARD :ABCD:$GUABRIEL.ATTR-BAK
------------------------------------------------------------------------------
GUARDS SELECTED: 2                                              END OF DISPLAY

The format of the output is not guaranteed.

Command return codes

(SC2)

SC1

Maincode

Meaning


0

CMD0001

Command successfully executed


1

DEF3100

An incorrect operand value was detected.


32

DEF3200

An internal error has occurred. A SERSLOG entry has been generated to permit detailed analysis.


64

DEF3302

The user is not authorized to execute the function.


64

DEF3306

A specified guard is not of the required guard type.


64

DEF3308

A user ID is unknown.


64

DEF3309

Remote file access not supported.


64

DEF3313

A specified public volume set is not available.


64

DEF3314

Error in MRS communications resources.


64

DEF3315

A specified public volume set is not known in the local GUARDS administration.


64

DEF3351

A named attribute guard does not exist.


64

DEF3900

There is no longer sufficient system storage space available.


128

DEF3901

A guard which has to be processed is currently locked by another task and cannot be processed at the present time.


128

DEF3902

A guard is temporarily unavailable because the GUARDS catalog is being changed or a master change is taking place in the computer network.


128

OPS0002

Output of S variables has been aborted


130

OPS0001

It was not possible to output the S variables


32

CMD2009

System error during output of S variables

Output in S variables

The command’s INFORMATION operand is used to determine which of the S variables are to be assigned values. The following specifications are possible for INFORMATION:

Notation in command

Abbreviated notation in table

INFORMATION = *ATTRIBUTES

1

INFORMATION = *GUARD-NAMES-ONLY

2

Output information

Name of the S variable

T

Contents

Condition

Name of the attribute guard

VAR(*LIST).GUARD-NAME

S

<filename 1.24>

1, 2

Attribute area

VAR(*LIST).SCOPE(*LIST).SCOPE

S

*CREATE-OBJECT
*MODIFY-OBJECT-
ATTR

1

Access type

VAR(*LIST).SCOPE(*LIST).ACCESS

S

*SYSTEM-STD
*READ
*WRITE

1

Users with access to object

VAR(*LIST).SCOPE(*LIST).USER-ACCESS

S

*SYSTEM-STD
*OWNER-ONLY
*ALL-USERS
*SPECIAL

1

Protection via BASIC-ACL

VAR(*LIST).SCOPE(*LIST).B-ACL.ACTIVE

S

*SYSTEM-STD
*NONE
*BY-VALUE

1

Read authorization for OWNER
(BASIC-ACL)

VAR(*LIST).SCOPE(*LIST).
B-ACL.OWNER.READ

S

*YES
*NO
''

1

Write authorization for OWNER
(BASIC-ACL)

VAR(*LIST).SCOPE(*LIST).
B-ACL.OWNER.WRITE

S

*YES
*NO
''

1

Execute authorization for OWNER
(BASIC-ACL)

VAR(*LIST).SCOPE(*LIST).
B-ACL.OWNER.EXEC

S

*YES
*NO
''

1

Read authorization for GROUP
(BASIC-ACL)

VAR(*LIST).SCOPE(*LIST).
B-ACL.GROUP.READ

S

*YES
*NO
''

1

Write authorization for GROUP
(BASIC-ACL)

VAR(*LIST).SCOPE(*LIST).
B-ACL.GROUP.WRITE

S

*YES
*NO
''

1

Execute authorization for GROUP
(BASIC-ACL)

VAR(*LIST).SCOPE(*LIST).
B-ACL.GROUP.EXEC

S

*YES
*NO
''

1

Read authorization for OTHERS
(BASIC-ACL)

VAR(*LIST).SCOPE(*LIST).
B-ACL.OTHERS.READ

S

*YES
*NO
''

1

Write authorization for OTHERS
(BASIC-ACL)

VAR(*LIST).SCOPE(*LIST).
B-ACL.OTHERS.WRITE

S

*YES
*NO
''

1

Execute authorization for
OTHERS (BASIC-ACL)

VAR(*LIST).SCOPE(*LIST).
B-ACL.OTHERS.EXEC

S

*YES
*NO
''

1

Protection via GUARDS

VAR(*LIST).SCOPE(*LIST).
GUARDS.ACTIVE

S

*SYSTEM-STD
*NONE
*BY-VALUE

1

Name of the guard via which read
access is controlled

VAR(*LIST).SCOPE(*LIST).GUARDS.READ

S

<guard-name>
''

1

Name of the guard via which write
access is controlled

VAR(*LIST).SCOPE(*LIST).GUARDS.WRITE

S

<guard-name>
''

1

Name of the guard via which
execute access is controlled

VAR(*LIST).SCOPE(*LIST).GUARDS.EXEC

S

<guard-name>
''

1

Read password

VAR(*LIST).SCOPE(*LIST).READ-PASS

S

*SYSTEM-STD
*NONE
*YES

1

Write password

VAR(*LIST).SCOPE(*LIST).WRITE-PASS

S

*SYSTEM-STD
*NONE
*YES

1

Execute password

VAR(*LIST).SCOPE(*LIST).EXEC-PASS

S

*SYSTEM-STD
*NONE
*YES

1

Data destroyed on deletion

VAR(*LIST).SCOPE(*LIST).DESTROY

S

*SYSTEM-STD
*YES
*NO

1

Release of storage space

VAR(*LIST).SCOPE(*LIST).
SPACE-RELE-LOCK

S

*SYSTEM-STD
*YES
*NO

1

Release date

VAR(*LIST).SCOPE(*LIST).EXPIR-DATE

S

I

*SYSTEM-STD
*TODAY
*TOMORROW
<yyyy-mm-dd>
<integer 1.99999>

1

Date on which object deleted

VAR(*LIST).SCOPE(*LIST).DEL-DATE

S

I

*SYSTEM-STD
*NONE
<yyyy-mm-dd>
<integer 1.99999>

1

Powered by Atlassian Confluence and Scroll Viewport.