Outq Security

645 pts.
Tags:
AS/400
I have a user that wants his staff to be able to view reports in a special outq but no delete access. Several reports in this queue are his staff's reports. What settings are required so a user cannot delete their own (or anyone else's) report in a specific outq and have read only rights? None of my users have *SPLCTL authority. Thanks in advance, Kim

Answer Wiki

Thanks. We'll let you know when a new response is added.

Yes, it is possible. To give someone read only access to spool files on a given outq, do the following:-

A) Change the DSPDTA parameter on the outq (wrkoutqd F13)to *YES

B) Change the relevant user authority to the outq (EDTOBJAUT) to READ only.

Discuss This Question: 5  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • TomLiotta
    You can't stop users from deleting their own spooled files (even if they only have *READ authority to the *OUTQ). Especially if they have ways of viewing them through system interfaces. If ALL access is through program control -- no WRKJOB, no WRKSPLF, etc. -- then as long as the program doesn't surface a DLTSPLF command and as long as there is no network access via iNav, etc., it can be done. In that case, of course, it doesn't matter what the authorities or attributes of the *OUTQ are. Tom
    125,585 pointsBadges:
    report
  • Teandy
    As Tom said, you can not stop people from deleting their own spool files. What may be an option is to have the reports run under a special profile that you create for this purpose. That way the spool file no longer belongs to the user and they can not delete it. I came across this while researching this question: http://forums.systeminetwork.com/isnetforums/showthread.php?t=50185 You may want to give it a try.
    5,860 pointsBadges:
    report
  • Batman47
    Yes, use the DUPSPLF command in the application to create a copy with under a different User and then use DLTSPLF to get rid of the orignal, and then with the proper security settings on the output queue users will only be able to read the spool files. The solved a HUGE problem for us when users would delete spool files used to print invoices.
    1,050 pointsBadges:
    report
  • TomLiotta
    ...use the DUPSPLF command in the application to create a copy with under a different User... A DUPSPLF isn't required. If current-user is set to some application profile when the spooled file is created, it will already belong to another user. No need to duplicate/delete. Tom
    125,585 pointsBadges:
    report
  • bvining
    This may be overkill for your needs, but so others are aware (who may read this thread looking for spool file security access) 7.1 introduced a Spool File Security exit point documented here. This provides for very granular access to spooled reports on your system. Again this might be way more than you were asking for... Bruce
    6,510 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following