A new Log-On Netview FTP enhancement was provided to add the ability to reload the Master Password without requiring a restart of the Queue Handler and to introduce new functionality that adds the option to replace the mechanism of the Master Password with a SAF mechanism. 

This article provides an ACF2 translation of the RACF commands provided on pages 6 and 7 of the enhancement documentation.

//ACFBATCH EXEC PGM=ACFBATCH
//SYSPRINT DD SYSOUT=*      
//SYSIN    DD *  
* Verify FACILITY class type code and whether it is in INFOSTG:
*
* SHOW CLASMAP
* SHOW RESIDENT
*
* Typically FACILITY is mapped to FAC and is already resident.
* If it is not mapped to FAC, then replace FAC in the SET R parameter
* below with the type code for FACILITY listed in the
* SHOW CLASMAP output. If it is not resident, then the following
* commands are an example of how to add it to the INFODIR:
*
* SET C(GSO)
* CHA INFODIR TYPES(R-RFAC) ADD
* F ACF2,REFRSH(INFODIR)
*
* Access Permissions:
*
* User UADMM can issue any QH command against all requests
* (equivalent to UADMM supplying the correct Master Password)

SET R(FAC)
RECKEY NVFTP ADD(QHCMD.- UID(uid for UADMM) ALLOW)

* User UADMINQ can issue a query command against all requests

SET R(FAC)
RECKEY NVFTP ADD(QHCMD.- UID(uid for UADMINQ) -
SERVICE(READ) ALLOW)

* User UADMD01 can issue query, queryall and modify commands
* against DEPT01’s requests.

SET R(FAC)
RECKEY NVFTP ADD(QHCMD.DEPT01 UID(uid for UADMD01) -
SERVICE(READ,UPDATE) ALLOW)

* User UCTLD01 can issue restart, query, queryall and modify
* commands against DEPT01’s requests.

SET R(FAC)
RECKEY NVFTP ADD(QHCMD.DEPT01 UID(uid for UCTLD01) -
SERVICE(READ,UPDATE) ALLOW)

* After issuing the RECKEY commands, issue the following rebuild
* command to rebuild the resident rules:

F ACF2,REBUILD(FAC)