Security Level Change from 20 to 30

5 pts.
Tags:
AS/400 security
AS/400 Security Levels
iSeries security
QSECURITY
QSECURITY Level 20
QSECURITY Level 30
I'm being asked to change our QSURITY level from 20 to 30. I do not have much iSeries OS background. What are the major issues with changing this level to 30? Is there any object level access changes that I need to be aware of? Can this be done with relatively little impact on the users?

Answer Wiki

Thanks. We'll let you know when a new response is added.

The Defined difference is Level 20 security sign-on only and Level 30 security Sign-on as well as resource security. The main difference between level 20 and 30 is that at level 30 users are not automatically granted access to all resources in the system or the *ALLOBJ authority. If every user profile on the system already has *allobj authority then you have a serious security risk to the system and should consider using Group Profiles Or authorizations list to enforce a well balance security policy. If you chose to run with *allobj allowed you better make sure you keep good backups.

Here is a resource for System security Level
http://publib.boulder.ibm.com/infocenter/iseries/v6r1m0/index.jsp?topic=/rzarl/rzarlseclvl.htm, http://publib.boulder.ibm.com/infocenter/iseries/v6r1m0/index.jsp?topic=/rzarl/rzarlseclvl.htm

Here some info on Authorization list (require registration to view)
http://search400.techtarget.com/tip/0,289483,sid3_gci940063_mem1,00.html”>http://search400.techtarget.com/tip/0,289483,sid3_gci940063_mem1,00.html
/

Discuss This Question: 1  Reply

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • TomLiotta
    When changing from level 20 to level 30, be very aware of the impact noted in the above link to the Info Center:
    • When you change to security level 30 from a lower security level, the system changes all user profiles to update special authorities the next time you perform an initial program load (IPL).
    Tom
    125,585 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following