z/OS Security Server RACF General User's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Removing the individual or group from the access list

z/OS Security Server RACF General User's Guide
SA23-2298-00

To revert to the universal access authority for a user or a group, enter the PERMIT command with the DELETE operand. Type: 
PERMIT profile-name CLASS(classname) ID(userid|groupname) DELETE
  • Example 1:
    To remove user Jones from the access list for a terminal protected by general resource profile IDTERMS, type: 
    PERMIT IDTERMS CLASS(TERMINAL) ID(JONES) DELETE
    Access to the terminal for user Jones reverts to the universal access authority for the terminal.
  • Example 2:
    To remove groups DEPTD60 and DEPTD58 from the access list for a terminal protected by general resource profile IDTERMS, type: 
    PERMIT IDTERMS CLASS(TERMINAL) ID(DEPTD60, DEPTD58) DELETE
    Access to the terminal for groups DEPTD60 and DEPTD58 reverts to the universal access authority for the terminal.
These examples show only some of the operands that are available to use on the PERMIT command. The complete syntax of the PERMIT command, with descriptions of all the command operands, is described in z/OS Security Server RACF Command Language Reference. In particular, you might want to read about this operand:
  • RESET

    Deletes the entire contents of both the standard access list and the conditional access list of a profile.

Parent topic: Denying an individual or a group use of a general resource

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014