Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
USERIDALIASTABLE z/OS UNIX System Services Planning GA32-0884-00 |
|
On most UNIX systems, you use lowercase IDs. With z/OS UNIX, typically you will use the uppercase user IDs and group names specified in your security database. In some cases, however, you might want to use lowercase or mixed case names in z/OS UNIX processing. Or perhaps certain names do not conform to your installation's naming conventions. You then need to create an alias table to associate lowercase or mixed case alias names with uppercase z/OS user ID and group names. Note that when lowercase or mixed case alias names are not found in the alias table, they are folded to uppercase. Using the USERIDALIASTABLE statement degrades performance slightly. The more names that you define, the greater the performance degradation. Installations are encouraged to continue using uppercase-only user IDs and group names defined in their security databases. Tip: The path name of the file should be /etc/tablename.
This naming structure fits in with the IBM® strategy
to place all customized data in the /etc directory.
If a value for USERIDALIASTABLE is not specified, alias names are
not used.
Formatting rules for the alias table:
If the file does not follow these formatting rules, the alias name might not be recognized and various functions relating to the attempted use of the alias might fail. The next example is a sample alias table for user IDs and group names.
For installation security reasons, you might have to use an alias table for user IDs. See Security requirements for ServerPac and CBPDO installation for more information. Rule: You must protect the alias table for user IDs and group names. Only users with superuser authority should be given update access to it. All users should be given read access to the file. Once a user is logged into the system, changing the alias table
does not change the alias name immediately. Database queries, however,
will yield the new alias if the user ID performing the query has read
or execute access to the alias table. The table is checked every 15
minutes and refreshed if it has been changed. If a change needs to
be activated sooner, you can use the following command:
where /etc/tablename is
the name of the alias table used for the user IDs. |
Copyright IBM Corporation 1990, 2014
|