You can restrict an account’s or a user’s ability to access certain parts of the system by assigning system privileges to it, either at the time you create an account or at any other time by editing the Account Definition item or user-ID. System privilege codes are stored in line or attribute 8 of these items.
System privilege codes restrict access to certain parts of the system. For example, there are many system functions that should be accessible only to the system administrator or to system operators. These functions cannot be used unless users have the necessary system privilege code in the account they are using or in their user-IDs.
mvBase has four system privilege levels:
|
SYS0 |
(The most restrictive level) Restricts users from creating or deleting files, clearing data from files, or updating the Master Dictionary of their accounts. |
|
SYS1 |
Allows users to update the Master Dictionary and use magnetic tape commands. |
|
SYS2 |
Allows users to use the Debugger, the DUMP and FILE-SAVE commands, and the FILE-RESTORE processors. |
|
SYS3 |
Grants unrestricted access to all levels of the system, including all accounts and files, regardless of any retrieval or update codes that may be assigned to them. |
See Also
Implementing MultiValue Security
Line 1: Using D Codes in Account Attributes
Lines 5 and 6: Using Retrieval and Update Codes
Line 7: Assigning, Changing and Deleting Account Passwords
Line 9: Using Automatic Logoff
Line 9: Using Account Definition Codes
Line 9: Restricting Access to TCL and Commands
Using the Accounting History File (ACC)