To create an Object Set Permission List from the Security Management main menu, position your cursor beside the
ObjectSet Permissions field and do one of the following:
Using either method causes the Manage Object Set Permissions screen, illustrated below, to appear. If you are defining an object set on the Define Objectset screen, you can save your definition and transfer to this screen by pressing PF4.
The Manage ObjectSet Permissions screen displays objects belonging to the object set for which access permissions are set. If accesses are not set for an object, it does not appear on the list. The objects are arranged by object type. You can vertically scroll individual lists by positioning the cursor beside the object type and pressing PF7 to scroll up or PF8 to scroll down.
To retrieve any or all of the securable objects in the object set, enter the primary command
FETCH in the primary command field of the Manage ObjectSet Permissions screen. You can specify an asterisk (*) to retrieve all objects or specify the object type (libraries, reports, screens, or tables) to retrieve objects of a specific type. For example:
Component screen tables and report tables are not automatically retrieved when you issue the
FETCH command for screens or reports. All component tables that you want to secure must first be defined in the object set (they are not automatically included in the definition). To retrieve component tables, issue the
FETCH command, specifying the table object type.
Use the Specify Table Permissions screen to specify permissions for a table object type. Each object type (library, report, screen, and table) has its own Specify Permissions screen. The layout of this screen is similar for each object type.
For example, you decide to allow wide access to the entire table and then restrict access to selected table instances (or vice versa). Your permissions list would then include permissions for the entire table as well as permissions for specific table instances.
If you specified the entire table, you can select any of the table access modes. If you specified a particular table instance, you can specify only modes that pertain to data access (that is, READ, INSERT, REPLACE, and DELETE).
To save this table specification, press PF3. The specification is not actually saved until you press PF3 from the Specify Permissions screen. Do
not press PF12 to exit, unless you want to discard all the object permissions you just entered.
Before you can enable an object set, you must specify which user IDs and groups should be permitted the accesses that you specified. You can update an object set membership list only if you have:
To specify user ID and group accesses to object sets, from the Security Management main menu position your cursor beside the
ObjectSet field and do one of the following:
From the Enable/Disable Screen you can create the list of user IDs or groups that you are allowing access to your object set. This screen also indicates if the object set is enabled or disabled. For more information about this state refer to
Enabling and Disabling Object Sets.