|
The session or Job may be associated with an "Initial ASP Group", but whatdoes that mean? I doubt that it has anything to do with user-object
authority.
That's what I am trying to figure out. iASP is being declared, by IBM, as
a good SaaS-model-way to separate out multi-tenant situations (i.e. same
named libs but different iASP). What I am trying to determine is if this
SaaS they are talking about was in a situation where the user didn't have
access to a command line and instead it was only through a browser. I shot
an email off to IBM but also wanted to get community input.
Aaron Bartell
On Thu, Oct 2, 2014 at 4:40 PM, Nathan Andelin <nandelin@xxxxxxxxx> wrote:
I don't have a server with multiple IASPs to test this, but I questionthe
assertion about users being "placed in" an IASP when they sign-in. Thedoes
session or Job may be associated with an "Initial ASP Group", but what
that mean? I doubt that it has anything to do with user-object authority.is
Nathan.
On Thu, Oct 2, 2014 at 3:14 PM, Aaron Bartell <aaronbartell@xxxxxxxxx>
wrote:
Hello,lay
I have some iASP security questions I hope someone can answer. Let me
out a scenario:USRCLS(*PGMR))
*Scenario*
- I have a single IBM i instance, let's call this IBMi1
- I have two IASPs configured, IASP1 and IASP2
- I have two users configured, USR1 and USR2 (QSECURITY=30,
- USR1 has a *JOBD with INLASPGRP(IASP1)IASP1),
- USR2 has a *JOBD with INLASPGRP(IASP2)
- I have two libs, LIB1 is in IASP1 and LIB2 is in IASP2
- I have two RPG *PGM objects, RPG1 is in LIB1 and RPG2 is in LIB2
When USR1 logs into a IBMi1 5250 session (and inherently placed in
can they see or attempt to invoke LIB2/RPG2 in IASP2 if the authority
https://www-304.ibm.com/partnerworld/wps/servlet/ContentHandler/stg_com_sys_power-development-platform*PUBLIC(*USE)?go+rx?
Can USR1 see or invoke IFS files in IASP2 if files are set to chmod
scenario
I would test this myself except I am having issues setting up the
on IBM's PDP
<
otherservice
(I have an email into support). I would try iASP on the variety of
anythingservers I have access to, but I don't want to accidentally hose
list:-Plist
Thanks,
Aaron Bartell
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
To post a message email: MIDRANGE-L@xxxxxxxxxxxx--
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
To post a message email: MIDRANGE-L@xxxxxxxxxxxx--
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.