Home > IT Answers > Networking > User cannot FTP
NickMcN
25 pts.
 User cannot FTP
FTP, FTP Error Codes, iSeries administration, iSeries FTP
We have NO exit points on our FTP. I just added a new user, and this particular user cannot FTP. It says, not authorized. Other users can FTP. I am lost.

Software/Hardware used:
Iseries OS 5.4
ASKED: August 12, 2011  2:54 PM
UPDATED: March 31, 2012  6:43 PM
RELATED QUESTIONS
 
  Help
 Approved Answer - Chosen by NickMcN (Question Asker)

I found the problem --

WRKFCNUSG had QIBM_QTMF_CLIENT_REQ_0 (ftp initiation) limited to a list of users. I updated the list to include the specified user, and it worked.

ANSWERED:  Aug 15, 2011  3:19 PM (GMT)  by NickMcN
 
Other Answers:

Not authorized to what?
If it is the CMD – FTP, check the USRPRF setup
If it is a file source or target, check the object authority & the USRPRF

Last Wiki Answer Submitted:  August 12, 2011  3:18 pm  by  CharlieBrowne   33,730 pts.
Latest Answer Wiki Contributors:  CharlieBrowne   33,730 pts.
To see other answers submitted to the Answer Wiki: View Answer History.


RSS - Discussions Help
Discuss This Question:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

 

Sorry if I wasn’t clear.

The user starts up ftp by keying the following:
FTP RMTSYS(’10.1.1.2′)

The screen goes back to the command line. Upon looking at the job log, this message is returned:

Operation not authorized.

Other users are able to enter the ftp site. The user in question has the same authorities in his user profile as users that are having no difficulty, as below:
User profile . . . . . . . . . . > KENFRY
User password . . . . . . . . . *SAME
Set password to expired . . . . *NO
Status . . . . . . . . . . . . . *ENABLED
User class . . . . . . . . . . . *SECADM
Assistance level . . . . . . . . *ADVANCED
Current library . . . . . . . . KENFRY
Initial program to call . . . . PMSTRCL
Library . . . . . . . . . . . COMLIB
Initial menu . . . . . . . . . . KENFRY
Library . . . . . . . . . . . KENFRY
Limit capabilities . . . . . . . *NO
Special authority . . . . . . . *ALLOBJ
*AUDIT
*IOSYSCFG
*JOBCTL
*SAVSYS
*SECADM
*SERVICE
*SPLCTL
Special environment . . . . . . *SYSVAL
Display sign-on information . . *NO
Password expiration interval . . *NOMAX
Local password management . . . *YES
Limit device sessions . . . . . *NO

NickMcN
 25 pts.
 

Operation not authorized.

What is the message identifier? I couldn’t find any in QCPFMSG nor QTCPMSG at V5R4 that matched that text. Often, without knowing which message it was, the text isn’t helpful to anyone who doesn’t have the joblog. Sometimes a hundred different messages can have the same text.

It might also be useful to know what program sent the message, but the message ID at least is required.

Tom

TomLiotta
 110,135 pts.
 

Also check Application Administration, Host Application. in the TCP Utilities you can restrict FTP users…

chalenger
 390 pts.