Security system values: Users who can cause programs to use adopted authority from calling programs

What can I do with this system value?

You can define which users can create, change and update programs that use the authority of the program which called them. The specified users can work with programs that have the use adopted authority attribute set to yes (USEADPAUT(*YES)).

A user is able to create a program (Program A) that uses the authority of another program (Program B) when Program A is called by Program B.

This system value has the following options:

All users (*NONE)

All users can create, change, or update programs and service programs to use the authority of the program which called them if the user has the necessary authority to the program or service program.

Authorization list

An authorization list is used to secure objects with similar security needs. Authority can be granted to the list rather than to the individual objects.

The user's authority is checked against the specified authorization list. This authority cannot come from adopted authority. If the user has at least the USE authority attribute in the specified authorization list, the user can create, change, or update programs or service programs that use the authority of the program which called them.

If the specified authorization list does not exist, the operation being attempted will not complete. A message is sent indicating this. If more than one operation is requested on the command or API, and the authorization list does not exist, the operation is not performed. If the command being attempted when the authorization list cannot be found is Create Pascal Program (CRTPASPGM) or Create Basic Program (CRTBASPGM), the result is a function check. This is a type of error. It is not a security check.