Note: this is not about STRAUTCOL TYPE(*USRPRF) - which runs an authority collection for a specific user

I raised this Idea and wondering if others agree.  IBM Ideas

This would be very useful in locking down *USRPRF objects that are configured with *PUBLIC *USE.  For example ACCOUNTA might be set with *PUBLIC *USE, allowing anyone to submit jobs to run under ACCOUNTA.  We want to figure out which other user profiles actually NEED to have *USE authority to ACCOUNTA so we can lock it down appropriately, without breaking anything.  Unfortunately you can't currently use CHGAUTCOL to turn on an authority collection for a user profile object, in the same way that you can turn on authority collection for a file or a program.

For an alternative see the following:

https://www.ibm.com/docs/en/i/7.5?topic=ssw_ibm_i_75/apis/xsbmjob.html

Job user

Submitted for job - qualified

I'm not faulting your idea, just giving you something to work with for now.

I've written a few exit point programs.

Note: this is not about STRAUTCOL TYPE(*USRPRF) - which runs an authority collection for a specific user

I raised this Idea and wondering if others agree.  IBM Ideas

This would be very useful in locking down *USRPRF objects that are configured with *PUBLIC *USE.  For example ACCOUNTA might be set with *PUBLIC *USE, allowing anyone to submit jobs to run under ACCOUNTA.  We want to figure out which other user profiles actually NEED to have *USE authority to ACCOUNTA so we can lock it down appropriately, without breaking anything.  Unfortunately you can't currently use CHGAUTCOL to turn on an authority collection for a user profile object, in the same way that you can turn on authority collection for a file or a program.

Thanks a lot Robert, that's a great option and great idea!  I'm not much of a developer but this would be exactly what I'd need if I were going to do this with an exit program.

For an alternative see the following:

https://www.ibm.com/docs/en/i/7.5?topic=ssw_ibm_i_75/apis/xsbmjob.html

Job user

Submitted for job - qualified

I'm not faulting your idea, just giving you something to work with for now.

I've written a few exit point programs.

Note: this is not about STRAUTCOL TYPE(*USRPRF) - which runs an authority collection for a specific user

I raised this Idea and wondering if others agree.  IBM Ideas

This would be very useful in locking down *USRPRF objects that are configured with *PUBLIC *USE.  For example ACCOUNTA might be set with *PUBLIC *USE, allowing anyone to submit jobs to run under ACCOUNTA.  We want to figure out which other user profiles actually NEED to have *USE authority to ACCOUNTA so we can lock it down appropriately, without breaking anything.  Unfortunately you can't currently use CHGAUTCOL to turn on an authority collection for a user profile object, in the same way that you can turn on authority collection for a file or a program.