Do the usrprfs have an initial program that is giving them command line access? If not, change the attention program to *NONE and they shouldn’t be able to get to a command line. Also, verify that the intial pgm is not adopting authority of a user with *JOBCTL.
- – - – - – - – - – - – - – - – - – - — -
on the user profiles of those you need to disarm, specify ‘Limit Capabilities’
here’s the help text
Limit Capabilities – Help
o *YES: The user cannot change the initial program,
initial menu, current library, and attention key
handling programs. The user cannot run commands from
you will need to ensure they can access everything they need to do their jobs from a menu….
If you don’t want users submitting jobs to particular job queues, why do they have authority to those queues? Remove the job queue authority.