BS2000 distinguishes between three types of system users in timesharing mode:
nonprivileged users
system administration
system operation
The different types of system users are associated with different fields of activity. Each field of activity encompasses specific functions and rights. The vast majority of system users falls into the category of timesharing end users, while system administration and system operation are restricted to a small number of specially-authorized persons.
BS2000 permits the functions of one field of activity to be performed by more than one person. By the same token, one person can work in more than one field of activity. BS2000 system customers are thus in a position to classify their own users according to their specific security requirements.
Field of activity of timesharing end users
BS2000 timesharing end users can use both interactive and batch processing. They are classified as nonprivileged system users who can avail themselves of specific operating system services by making use of certain commands, macros and utility routines. Examples of the services available to end users are:
creating, starting and controlling programs
creating, starting and controlling command procedures
requesting resources
activating specific operating system functions
BS2000 offers end users a uniform command and statement interface as well as a programming interface for these activities.
Field of activity of system administration
BS2000 system administration comprises the planning and control of system operation in accordance with the system customer’s strategic guidelines.
System administration is entrusted with privileged administrative tasks and is responsible for ensuring smooth system operation under BS2000 as well as taking the appropriate countermeasures in the event of system failures. The security administrator holds a special position within system administration in that he or she is responsible for the management of the system administration privileges.
The following tasks generally fall within the orbit of system administration:
making the system available
handling job processing and performance monitoring
dealing with the administration of all user IDs and user groups
handling SPOOL management
saving user data
granting and withdrawing system administrator privileges
modifying the software configuration
adapting the software to modified hardware configurations
evaluating accounting data, operating data, logs and system error documentation
handling hardware and software maintenance
To cater for these activities, system administration is provided with a special version of the command and statement interface commensurate with its privileges, as well as with programming interfaces which enable it to influence system operation at any time and which grant access to all files, tables and programs belonging to the system and to any user.
System administration can select specific privileges from the set of system administrator privileges and assign them to individual timesharing end users (see chapter "SRPM -System Resources and Privileges Management"). This means that the field of activity of system administration may partially coincide with that of the timesharing end user. User administration is a typical example of this. User administration is responsible for setting up and managing a hierarchy of user groups.
Field of activity of system operation
BS2000 system operation is responsible for controlling and monitoring the system and the peripherals during the session in accordance with the guidelines supplied by system administration.
System operation is responsible for:
system startup
monitoring and controlling the system during the session
manual support of operation
System operation is equipped with consoles that are directly linked to the CPU, and is enabled to perform the privileged functions of its field of activity by means of a specific set of commands.