Specifying public authority

 

Public authority is given to users who do not have any specific authority to an object, who are not on the authorization list of the object, or whose group profile has no specific authority to the object. When you create a file, you can specify and grant public authority. You can specify public authority through the AUT parameter on the Create Physical File (CRTPF) or Create Source Physical File (CRTSRCPF) command. Public authority is the last authority check made. That is, if the user has specific authority to a file or the user is a member of a group with specific authority, then the public authority is not checked. Public authority can be specified as:

When you create a logical file, no data authorities are granted. Consequently, *CHANGE is the same as *USE, and *ALL does not grant any data authority. You can grant public authority in the following ways:

You can also use iSeries Navigator to set default public authority for a new file.

 

Parent topic:

Securing database files

 

Related reference


Create Physical File (CRTPF) command
Create Source Physical File (CRTSRCPF) command
Edit Object Authority (EDTOBJAUT) command
Grant Object Authority (GRTOBJAUT) command
Revoke Object Authority (RVKOBJAUT) command