This privilege authorizes its owner to manage the POSIX user attributes of all user IDs on all local pubsets. Any user numbers may be assigned, including the number 0. The user numbers may also be assigned more than once. This authorization is a subset of the “global user administration” privilege (see "Global user administration (USER-ADMINISTRATION)"). In addition, this privilege authorizes its owner to invoke privileged POSIX functions.

This privilege therefore protects access to POSIX attributes that are administered by BS2000 user administration. It also protects tools provided for installing the POSIX subsystem. For further information refer to the “POSIX Basics for Users and System Administrators” manual [25].

Upon delivery, this privilege is assigned to the user ID SYSROOT. The security administrator may assign this privilege to any other user ID except his/her own.

The privilege for POSIX user administration is referred to as POSIX-ADMINISTRATION in commands and messages and as POSIXADM in macros.