Hi All,
Currently have an issue with a profile attached to a Group Profile that has a high level of authority ( *ALLOBJ, *JOBCTL, *SAVSYS, *SPLCTL ) which over the past 20 years of being in use has been abused by various apps and hard coded in programs due to its known password. Yep don't start me on that !!
Anyhow i'm now trying to unravel it all and in becoming public enemy No.1 to all the Applications Team & programmers etc ( plan to either remove this profile altogether or at least change its password) getting all their code changed over to use a vanilla user profile with base access.
User class . . . . . . . . . . . *USER
Initial program to call . . . . *NONE
Initial menu . . . . . . . . . . *SIGNOFF
Limit capabilities . . . . . . . *YES
Special authority . . . . . . . *NONE
The issue i am fronted with now is that of object/library authority as we have various object/libraries that have *PUBLIC exclude authority. Rather than granting authority access to each lib/object is there a better "standard" approach i should be taking.
Appreciate your help/comments/assistance
Cheers,
Warrawong
Currently have an issue with a profile attached to a Group Profile that has a high level of authority ( *ALLOBJ, *JOBCTL, *SAVSYS, *SPLCTL ) which over the past 20 years of being in use has been abused by various apps and hard coded in programs due to its known password. Yep don't start me on that !!
Anyhow i'm now trying to unravel it all and in becoming public enemy No.1 to all the Applications Team & programmers etc ( plan to either remove this profile altogether or at least change its password) getting all their code changed over to use a vanilla user profile with base access.
User class . . . . . . . . . . . *USER
Initial program to call . . . . *NONE
Initial menu . . . . . . . . . . *SIGNOFF
Limit capabilities . . . . . . . *YES
Special authority . . . . . . . *NONE
The issue i am fronted with now is that of object/library authority as we have various object/libraries that have *PUBLIC exclude authority. Rather than granting authority access to each lib/object is there a better "standard" approach i should be taking.
Appreciate your help/comments/assistance
Cheers,
Warrawong
Comment