SPOOL Offload/Reload Doesn't Show Correct Owner With Top Secret
Article ID: 53816
WEB ADMINISTRATOR FOR TOP SECRET
Top Secret - LDAP
An NJE SPOOL offload/reload results in the owner of the jobs being replaced by TTNJEUSR. What must be done so the actual ACID that owns the jobs is shown here?
Release: TOPSEC00200-15-Top Secret-Security
- If not already done, the following Top Secret administration needs be done:
TSS ADDTO(msca) NODES(*.)
TSS PERMIT(ALL) NODES(*.USERJ) ACCESS(UPDATE)
TSS PERMIT(ALL) NODES(*.USERS) ACCESS(UPDATE)
USERJ is incoming jobs.
USERS is incoming sysout.
NOTE: The ‘*.’ for ‘*.USERn’ is to include all nodes. This can be replaced in the TSS ADDTO and PERMIT commands with a specific node if you prefer.
With the NODES permits in place, you can cross authorize the submitting acid to the execution acid on the system the job is to run under. Then you won't need the PASSWORD= on the NJE job.
- If the owner userid is not defined on the system you are loading to, it will use the NJEUSR control option setting (or blank if no NJEUSR is specified).