FUNCEQU SAFAUTH=READ, +
Hi Felicity,The FUNCEQU macro is only used to set the required authority for the actions. It will still depend on the actual NAMEEQ macro to determine what Pseudo dataset rule will be queried against the security system, So you still have to grant the users "READ" permission. The exception to this is is you define a SAFAUTH of NONE, which skips the test entirely, effectively granting everybody access to that action.
Note: if you omit one of the actions from ALL FUNCEUQ entries, it will default to NONE, or not controlled.
Thanks very much Eoin.
No, this only says what access is required to execute one of the actions. The security rules will determine who has READ access to each of those functions. You can create security rules at the function level or at a higher level. I've separated my security functions so that the functions for admins are at a higher level (UPDATE) to allow more generic security rules. The security guide walks you through setting up your rules, although I haven't looked at it for a few years.
Manager – CICS, Endevor and TAPS Support
Global Infrastructure Services
Experian IT Services
Allen, Texas 972-390-3170