AUT parm on user profile
Off the top of my head, Susan, I suspect that the answer is that it is an additive situation: you'll get the sum of all the authorities in the profiles. This is because, from reading the security manual, what the system does is first check and see if the user profile has authority, then checks the authority list for the object, the checks to see if the group profile has authority, then checks the supplemental groups. If any of these have enough authority for the requested operation, the operation is allowed. Now, that's from reading the manual (specifically the OS/400 Security Reference), so of course the best bet would be to actually try it. I'll do that when I get a chance, but don't hold your breath. src="//www.zappie.net/java/_derived/index.htm_cmp_zero110_vbtn_p.gif" width="140" height="60" border="0" alt="Java400.net - Java/400 Freeware" align="middle"> Java400.Net - where the AS/400 speaks Java with an RPG accent Home of PBD2.0, the color=red>FREE Java/400 Client/Server color=blue>Revitalization Toolkit
Off the top of my head, Susan, I suspect that the answer is that it is an additive situation: you'll get the sum of all the authorities in the profiles. This is because, from reading the security manual, what the system does is first check and see if the user profile has authority, then checks the authority list for the object, the checks to see if the group profile has authority, then checks the supplemental groups. If any of these have enough authority for the requested operation, the operation is allowed. Now, that's from reading the manual (specifically the OS/400 Security Reference), so of course the best bet would be to actually try it. I'll do that when I get a chance, but don't hold your breath
Comment