My primary area of responsibility is the database, and I am not familiar with AS/400 security. I know the AS/400 has security within the database because it has a GRANT statement. Since I have been working with the system, I haven't had to grant any access to users or programs. This must be because of the authority of the *PGMR group. What special authorities should be given to the *PGMR group, if any.

On Saturday, May 01, 1999, 11:58 AM, R.O. Weber wrote: My primary area of responsibility is the database, and I am not familiar with AS/400 security. I know the AS/400 has security within the database because it has a GRANT statement. Since I have been working with the system, I haven't had to grant any access to users or programs. This must be because of the authority of the *PGMR group. What special authorities should be given to the *PGMR group, if any. <HR>You damn sure don't want *ALOBJ nor *SECADM .......... <pre> <H4>Bob Hamilton TEXAS BUSINESS SYSTEMS 736 Pinehurst Richardson, Texas 75080 <h4> </pre></h4></h4>

On Saturday, May 01, 1999, 11:58 AM, R.O. Weber wrote: My primary area of responsibility is the database, and I am not familiar with AS/400 security. I know the AS/400 has security within the database because it has a GRANT statement. Since I have been working with the system, I haven't had to grant any access to users or programs. This must be because of the authority of the *PGMR group. What special authorities should be given to the *PGMR group, if any. You do not say what security level the system is running at, but it should be at minimum level 30. On the user profiles, set SPCAUT to *USRCLS to get IBMs recommended authorities. HTH <FONT FACE="Goudy Old Style" SIZE=4 > COLOR="#800080"> Phillip E. Rodgers</P></DIR> </DIR> </FONT> <IMG > SRC="http://www.mca.com/music/images/anims/homeanim3.gif" WIDTH=233 HEIGHT=141></P>

How about securing the update/delete function w/in sql? We've had a rather large screwup. Is there any way to restrict the update/delete function w/in sql?