EDTOBJAUT (Edit Object Authority)

EDTOBJAUT Command syntax diagram

 

Purpose

The Edit Object Authority (EDTOBJAUT) command displays the list of authorized users of an object and their associated authorities. If you own the object or have *ALLOBJ special authority, you can add, change, or remove authority for the object. If you have object management authority for the object, you can remove your specific authorities or grant or remove them for other users.

The following are displayed for the specified object:

If an object does not have an owner name associated with it, no authorities for the object are shown.

 

Restrictions

  1. The user must have object management authority to the object to use this command.

  2. If the object is a file, the user must have object operational and object management authorities.

  3. You must have *USE authority to the auxiliary storage pool device if one is specified.>

 

Required Parameters

OBJ
Specifies the qualified name of the object for which the authorized users and their authorities are to be shown.

The name of the object can be qualified by one of the following library values:

*LIBL: All libraries in the job's library list are searched until the first match is found.

*CURLIB: The current library for the job is searched. If no library is specified as the current library for the job, the QGPL library is used.

library-name: Specify the name of the library to be searched.

object-name: Specify the name of the object for which its authorized users and their authorities are to be shown.

OBJTYPE
Specifies the object type of the object that is to have its authorized users and their authorities shown. Any one of the operating system object types can be specified. For example, to display a list of users authorized to use a file, specify the value *FILE. More information on this parameter is in Commonly used parameters.

 

Optional Parameters

ASPDEV
Specifies the auxiliary storage pool (ASP) device name where the library that contains the object (OBJ parameter) is located. If the object's library resides in an ASP that is not part of the library name space associated with the job, this parameter must be specified to ensure the correct object is used as the target of the edit authority operation.

*: The ASPs that are currently part of the job's library name space will be searched to locate the object. This includes the system ASP (ASP number 1), all defined basic user ASPs (ASP numbers 2-32), and, if the job has an ASP group, all independent ASPs in the ASP group.

*SYSBAS: The system ASP and all basic user ASPs will be searched to locate the object. No independent ASPs will be searched, even if the job has an ASP group.

auxiliary-storage-pool-device-name: The device name of the independent ASP to be searched to locate the object. The independent ASP must have been activated (by varying on the ASP device) and have a status of 'Available'. The system ASP and basic user ASPs will not be searched.>

Example for EDTOBJAUT 

EDTOBJAUT  OBJ(ARLIB/PROG1)  OBJTYPE(*PGM)

This command causes the list of authorized users and their authorities for the object named PROG1 to be shown, but only if the user has object management authority for the object. PROG1 is a program (*PGM) located in the library named ARLIB.

Error messages for EDTOBJAUT

*ESCAPE Messages

CPF22B8
Not authorized to change authorities.
CPF22B9
Not authorized to change authorities.
CPF2204
User profile &1 not found.
CPF2207
Not authorized to use object &1 in library &3 type *&2.
CPF2208
Object &1 in library &3 type *&2 not found.
CPF2209
Library &1 not found.
CPF2211
Not able to allocate object &1 in &3 type *&2.
CPF2216
Not authorized to use library &1.
CPF2217
Not authorized to user profile &1.
CPF2283
Authorization list &1 does not exist.
CPF980B
Object &1 in library &2 not available.
CPF9814
Device &1 not found.
CPF9825
Not authorized to device &1.>
CPF9843
Object &1 in library &3 type &2 cannot be accessed.
CPF9873
ASP status is preventing access to object.>