The manager for our schedulers came to me today with the following issue:
There is a group of users (different departments control their own jobs) who have the authority to use both the DEMAND and VERIFY commands. They logon with a UID that allows them to only access their own departments jobs.
The problem that has been encountered is that while there are certain of their jobs that they should be able to DEMAND, there are others that should only be VERIFYed.
The manager's thoughts were to put these sets of jobs under separate UIDs, with a COID defined that allowed the users access to both sets. She thought that she could define one of these UIDs as VERIFY only.
It is my understanding that CA-7 security does not work that way. But if I am wrong, I'll gladly hear how this is done.
Is there a way to accomplish her desired end result? I came across a CA-7 message that seemed to suggest that the DEMAND would fail if the job had an OWNER specified and the user did not have access to that OWNER. I looked for a full explanation of this in the doc, but seemed unable to find it.