SECOS V5.6 (en)

Domain:	USER-ADMINISTRATION
Privileges:	STD-PROCESSING, USER-ADMINISTRATION

This command requests information about a user group entry in the user catalog of the specified pubset.

The type and scope of information returned depends on the privileges of the user issuing the command (with respect to the pubsets to which the command refers).

Case 1:
The command is issued by a user who is the global administrator on the home pubset of the current BS2000 session.

Information scope:
Group structure:	no restrictions
Information type:	no restrictions
Pubset:	no restrictions

Case 2:
The command is issued by the group administrator of the pubset specified for the PUBSET operand.

Information scope:
Group structure:	information may be requested only on those user groups which are subject to that group administrator’s management (group structure)
Information type:	no restrictions
Pubset:	no restrictions

Case 3:
The command is issued by a user who has not been granted any privileges on the pubset specified via the PUBSET operand.

Information scope:
Group structure:	information may be requested only on the user’s own group
Information type:	only the group ID and a list of the group members may be requested (if the user is a member of the *UNIVERSAL group, no list of members may be requested)
Pubset:	only information on the home pubset of the current BS2000 session may be requested

For global or group administrators to be recognized as such, their privileges must be registered on the pubset specified for the PUBSET operand.

SHOW-USER-GROUP

GROUP-IDENTIFICATION = OWN / ALL / *UNIVERSAL / list-poss(127): <name 1..8>
,PUBSET = HOME / ALL / list-poss(127): <cat-id 1..4>
,OUTPUT = list-poss(2): SYSOUT / SYSLST
,INFORMATION = ALL / MEMBER-LIST / *SUB-GROUP-LIST /
			GROUP-ATTRIBUTES / ACCOUNT-NUMBER(...) / *SUMMARY
	*ACCOUNT-NUMBER(...)
		\|		ACCOUNT-NUMBER = *ALL / list-poss(127): <alphanum-name 1..8>

GROUP-IDENTIFICATION =
User group on which information is requested.

GROUP-IDENTIFICATION = *OWN
Information is requested on the group of the command-issuing user.

GROUP-IDENTIFICATION = *ALL
Information is requested on all user groups.

GROUP-IDENTIFICATION = *UNIVERSAL
Information is provided concerning the user group *UNIVERSAL.

*UNIVERSAL is a special case. Only the following information is provided for the group itself (GROUP-ATTRIBUTES):

group administrator and associated ADMINISTRATION-AUTHORITY
specifications concerning group access to files and job variables which are protected with BACL (BASIC-ACL-ACCESS).

The remaining summarized information (SUB-GROUP-LIST, MEMBER-LIST) apart from ACCOUNT-NUMBER is provided as for the other groups.

This information is only available to global user administrators and the *UNIVERSAL group administrator.

GROUP-IDENTIFICATION = list-poss(127): <name 1..8>
Group ID of the user group about which information is requested. Group administrators are only authorized to request information on their own group and its subordinate group structure, while global user administrators may request information about any user group entry. Nonprivileged users may request information about their own group only.

PUBSET =
Pubset from whose user catalog the information is to be fetched. Nonprivileged users may only specify the home pubset of the current session.

PUBSET = *HOME
The information is to be fetched from the user catalog of the home pubset of the current session.

PUBSET = *ALL
The information is to be fetched from the user catalogs of all pubsets accessible at the time of command entry. The information supplied to nonprivileged users is restricted to the data stored in the user catalog of the home pubset.

PUBSET = list-poss(127): <cat-id 1..4>
Catalog IDs of the pubsets from whose user catalogs the information is to be fetched. Nonprivileged users may only specify the home pubset of the current session.

OUTPUT =
This specifies the system file to which the information is to be output.

OUTPUT = *SYSOUT
The information is to be output to the system file SYSOUT.

OUTPUT = *SYSLST
The information is to be output to the system file SYSLST.

INFORMATION =
This controls the type and scope of the information output. Nonprivileged users are supplied with a list of group members only (INFORMATION = ALL).

INFORMATION = *ALL
All available information on a user group is to be output.

INFORMATION = *MEMBER-LIST
A list of group members is to be output.

INFORMATION = *SUB-GROUP-LIST
A list of user groups is to be output.

INFORMATION = *GROUP-ATTRIBUTES
The group attributes are to be output.

INFORMATION = *ACCOUNT-NUMBER(...)
Account numbers on which information is to be output.

ACCOUNT-NUMBER = *ALL
Information is to be output on all account numbers included in the group potential.

ACCOUNT-NUMBER = list-poss(127): <alphanum-name 1..8>
Information is to be output on the specified account numbers.

INFORMATION = *SUMMARY
Summary information about group and system potentials is to be output.

Note

The information output by this command depends on the privileges of the user issuing the command. The scope of the information may thus, for example, be different for two pubsets if the user issuing the command is a group administrator on the one pubset but only a nonprivileged user on the other.

Command return codes

(SC2)	SC1	Maincode	Meaning
	0	CMD0001	Command executed without errors
2	0	SRM6001	Command executed with a warning
	32	SRM6020	System error during command processing
	64	SRM6040	Semantic error during command processing
	130	SRM6030	Command cannot be processed at the present time

If the command resulted in only partial output, the return code

(SC2)	SC1	Maincode	Meaning
	64	SRM6040	Semantic error during command execution

is replaced by the return code

(SC2)	SC1	Maincode	Meaning
2	0	SRM6001	Command executed with a warning

Example: Output of the attributes of a user group

/show-user-group group-identification=manuals

SHOW-USER-GROUP INFORMATION = *ALL 2018-03 14:16:42
------------------------------------------------------------------------------

GROUP-IDENTIFICATION          MANUALS    PUBSET                              B
GROUP-ADMINISTRATOR              ADAM    ADM-AUTHORITY          *MANAGE-GROUPS
USER-GROUP-PREFIX                 MAN    GROUP-MEMBER-PREFIX              *ANY
UPPER-GROUP                *UNIVERSAL

MAX-SUB-GROUPS...

LIMIT GROUP-HIERARCHY 10 LIMIT USER-ADM 10
FREE GROUP-HIERARCHY 10 FREE USER-ADM 10
MAX-GROUP-MEMBERS...

LIMIT GROUP-HIERARCHY 10 LIMIT USER-ADM 10
FREE GROUP-HIERARCHY 9 FREE USER-ADM 10

TEST-OPTIONS...

MODIFICATION *CONTROLLED
READ-PRIVILEGE 1 WRITE-PRIVILEGE 1

PUBLIC-SPACE-EXCESS               *NO    PUBLIC-SPACE-LIMIT      2.147.483.647
RESIDENT-PAGES                 32.767    ADDRESS-SPACE-LIMIT                16
FILE-AUDIT                        *NO    CSTMP-MACRO                       *NO
MAX-ACCOUNT-RECORDS               100    TAPE-ACCESS                      *STD
TEMP-SPACE-LIMIT        2.147.483.647    DMS-TUNING-RESOURCES            *NONE
FILE-NUMBER-LIMIT          16.777.215    JV-NUMBER-LIMIT            16.777.215
WORK-SPACE-LIMIT        2.147.483.647    PHYSICAL-ALLOCATION      *NOT-ALLOWED
HARDWARE-AUDIT               *ALLOWED    CRYPTO-SESSION-LIMIT              128
LINKAGE-AUDIT                *ALLOWED    NET-STORAGE-USAGE            *ALLOWED

BASIC-ACL-ACCESS *EXTENDED-BY-GUARD GUARDNAME $TSOS.GUARD

PROFILE-IDS STDPROFILE

+--------+--------------+--------+--------+------------+-------+------+------+

!ACCNT-NB! CPU-LIMIT !SPOOLOUT!MAX-RUN-!MAX-ALLOWED-!NO-CPU-!START-!INHIB-!
! ! ! CLASS !PRIORITY! CATEGORY ! LIMIT !IMMED !DEACT !
+--------+--------------+--------+--------+------------+-------+------+------+

!ACC1 ! 2.147.483.647! 0 ! 255 ! *STD ! *NO ! *NO ! *NO !
!ACC2 ! 2.147.483.647! 0 ! 255 ! *STD ! *NO ! *NO ! *NO !
+--------+--------------+--------+--------+------------+-------+------+------+

NO SUB-GROUP SPECIFIED

GROUP-MEMBERS ADAM
------------------------------------------------------------------------------

SHOW-USER-GROUP INFORMATION = *ALL END OF DISPLAY

Output in S variables

The command’s INFORMATION operand defines the S variables to which values are assigned. If an S variable does not currently possess a value, it is assigned an empty string (type S) or the number 0 (type I). This is especially important for GROUP-IDENTIFICATION=*UNIVERSAL in the case of S variables to which no meaningful value can be assigned.

The following specifications are possible for INFORMATION:

Notation in command	Meaning in table
INFORMATION = *ALL	1
INFORMATION = *GROUP-ATTRIBUTES	2
INFORMATION = *ACCOUNT-NUMBER	3
INFORMATION = *MEMBER-LIST	4
INFORMATION = *SUB-GROUP-LIST	5
INFORMATION = *SUMMARY	6

Output information	Name of the S variable	T	Contents	Condition
Account number of the group ID of the user group	var(LIST).ACCOUNT(LIST).ACCOUNT	S	<alphanum-name 1..8>	1,2,3
CPU limit for the group ID of the user group	var(LIST).ACCOUNT(LIST).CPU-LIM	I	<integer 0..2147483647>	1,2,3
Deactivation inhibit function passed on from group administrator to group members or subgroups	var(LIST).ACCOUNT(LIST). INHIBIT-DEACTIVATE	S	NO YES	1,2,3
Task attribute for users; the SYS privilege includes STD and TP, TP includes *STD	var(LIST).ACCOUNT(LIST). MAX-ALLOW-CATEG	S	STD SYS *TP	1,2,3
Maximum run priority	var(LIST).ACCOUNT(LIST). MAX-RUN-PRIO	I	<integer 30..255>	1,2,3
Group administrator is authorized to transfer the NO-CPU-LIMIT privilege to group members or subgroups	var(LIST).ACCOUNT(LIST).NO-CPU-LIM	S	NO YES	1,2,3
Maximum spoolout class (1 is the highest, 255 the lowest possible class)	var(LIST).ACCOUNT(LIST).SPOOL-CLASS	I	<integer 1..255>	1,2,3
Group administrator is authorized to transfer the job express function to group members and subgroups	var(LIST).ACCOUNT(LIST).START-IMMED	S	NO YES	1,2,3
Specifies whether the list variable ACCOUNT(LIST) contains at least one element (LIST) or whether the list variable has not been created at all (*NONE)	var(*LIST).ACCOUNT-DEFI	S	LIST NONE	1,2,3
Limit for the user address space	var(*LIST).ADDR-SPACE-LIM	I	<integer 1..2147483647>	1,2
Authorization of the group administrator	var(*LIST).ADM-AUTHOR	S	MANAGE-GROUP MANAGE-MEMB *MANAGE- RESOURCE	1,2,6
Maximum number of openCRYPT sessions in a BS2000 session	var(*LIST).CRYPTO-SESSION-LIM	I	<integer 1..32767>	1,2
Group administrator is authorized to pass on the CSTMP macro authorization to group members and subgroups	var(*LIST).CSTMP	S	NO YES	1,2
Type of use of the DMS tuning resources	var(*LIST).DMS-TUNING-RESOURCE	S	CONCURRENT-USE EXCL-USE *NONE	1,2
Group administrator is authorized to transfer the right to activate the AUDIT function to group members and/or subgroups	var(*LIST).F-AUDIT	S	NO YES	1,2
Maximum number of files that may be created	var(*LIST).F-NUM-LIM	I	<integer 0..16777215>	1,2
Name of the guard in which the group extension for BACL accesses is specified	var(*LIST).GUARD	S	<filename 1..18>	1,2
Group administrator (user ID responsible for the user group)	var(*LIST).GROUP-ADM	S	*NONE <name 1..8>	1,2,6
User group ID	var(*LIST).GROUP-ID	S	*UNIV <name 1..8>	1,2,3,4,5,6
Name of the group member (user ID)	var(LIST).GROUP-MEMB(LIST)	S	<name 1..8>	1,4
Specifies whether the list variable GROUP-MEMB(LIST) contains at least one element (LIST) or whether the list variable has not been created at all (*NONE)	var(*LIST).GROUP-MEMB-DEFI	S	LIST NONE	1,4
Prefix for the group member names	var(*LIST).GROUP-MEMB-PREFIX	S	*ANY <name 1..7>	1,2
Group administrator is authorized to assign the right to control the hardware AUDIT to group members or subgroups	var(*LIST).HARDWARE-AUDIT	S	ALLOW NOT-ALLOW	1,2
Maximum number of job variables	var(*LIST).JV-NUM-LIM	I	<integer 0..16777215>	1,2
Group administrator is authorized to assign the right to control the linkage AUDIT to group members or subgroups	var(*LIST).LINKAGE-AUDIT	S	ALLOW NOT-ALLOW	1,2
Limit for account records	var(*LIST).MAX-ACCOUNT-REC	S	*NO-LIM <0..32767>	1,2
Number of user IDs which the group administrator can still create because of the group hierarchy	var(*LIST).MAX-GROUP-MEMB. FREE-GROUP-HIERARCHY	I	<integer 0..32767>	1,2,6
Number of user IDs which the group administrator can still create because of the allocation by the global user administrator	var(*LIST).MAX-GROUP-MEMB. FREE-USER-ADM	I	<integer 0..32767>	1,2,6
Maximum number of user IDs which the group administrator can create because of the group hierarchy	var(*LIST).MAX-GROUP-MEMB. LIM-GROUP-HIERARCHY	I	<integer 0..32767>	1,2,6
Maximum number of user IDs which the group administrator can create because of the allocation by the global user administrator	var(*LIST).MAX-GROUP-MEMB. LIM-USER-ADM	I	<integer 0..32767>	1,2,6
Number of subgroups which the group administrator can create because of the group hierarchy	var(*LIST).MAX-SUB-GROUP. FREE-GROUP-HIERARCHY	I	<integer 0..32767>	1,2,6
Number of subgroups which the group administrator can still create because of the allocation by the global user administrator	var(*LIST).MAX-SUB-GROUP. FREE-USER-ADM	I	<integer 0..32767>	1,2,6
Maximum number of subgroups which the group administrator can create because of the group hierarchy	var(*LIST).MAX-SUB-GROUP. LIM-GROUP-HIERARCHY	I	<integer 0..32767>	1,2,6
Maximum umber of subgroups which the group administrator can create because of the allocation by the global user administrator	var(*LIST).MAX-SUB-GROUP. LIM-USER-ADM	I	<integer 0..32767>	1,2,6
Group administrator is authorized to transfer the MODIFICATION right for the test options (CONTROLLED/UNCONTROLL ED) to group members or subgroups	var(*LIST).MODIF	S	CONTR UNCONTR	1,2
Group administrator is authorized to assign the right to use Net- Storage volumes to group members or subgroups	var(*LIST).NET-STOR-USAGE	S	NO ALLOW	1,2
Specifies whether the user group is allowed to undertake absolute storage space allocation for the pubset (direct allocation).	var(*LIST).PHYS-ALLOC	S	NO ALLOW	1,2
Profile IDs of the group syntax files	var(LIST).PROF-ID(LIST)	S	<filename 1..54> <struc.-name 1..30>	1,2
Specifies whether the list variable PROF-ID(LIST) contains at least one element (LIST) or whether the list variable has not been created at all (*NONE)	var(*LIST).PROF-ID-DEFI	S	LIST NONE	1,2
Group administrator is authorized to transfer the right to overwrite the value in the PUBLIC-SPACE- LIMIT	var(*LIST).PUB-SPACE-EXC	S	ALLOW NO *TEMP-ALLOW	1,2
Maximum storage space for this user ID	var(*LIST).PUB-SPACE-LIM	I	<integer 0..2147483647>	1,2
Catalog ID of the pubset from which the data is read	var(*LIST).PUBSET	S	<cat-id 1..4>	1,2,3,4,5,6
Maximum read privilege when using AID	var(*LIST).READ-PRIVIL	I	<integer 1..9>	1,2
Maximum number of resident main memory pages	var(*LIST).RESID-PAGE	I	<integer 0..32767>	1,2
Name of the subgroup	var(LIST).SUB-GROUP(LIST)	S	<name 1..8>	1,5
Specifies whether errors during label checking may be ignored	var(*LIST).TAPE-ACCESS	S	ALL BYPASS-LABEL PRIVIL READ *STD	1,2
Maximum temporary storage space	var(*LIST).TEMP-SPACE-LIM	I	<integer 0..2147483647>	1,2
Name of the higher-ranking user group	var(*LIST).UPPER-GROUP	S	*UNIV <name 1..8>	1,2,6
Prefix for the subgroup name	var(*LIST).USER-GROUP-PREFIX	S	*ANY <name 1..7>	1,2
Upper limit for the value which a group administrator may specify as the WORK-SPACE-LIMIT for his/her subgroup or users	var(*LIST).WORK-SPACE-LIM	I	<integer 0..2147483647>	1,2
Maximum write privilege when using AID	var(*LIST).WRITE-PRIVIL	I	<integer 1..9>	1,2

Your Browser is not longer supported

Please use Google Chrome, Mozilla Firefox or Microsoft Edge to view the page correctly

SHOW-USER-GROUP Output user group entry

Note

Command return codes

Example: Output of the attributes of a user group

Output in S variables