User administration

The following tables define field names and their usage. All field names relate directly to the ADDUSER and ALTUSER keywords. Although the fields are alphabetized in the following tables, there is no defined order in which the fields are returned when using the extract functions. See z/OS Security Server RACF Command Language Reference for questions pertaining to field usage and data. Note that within the command image generated internally, RACF® truncates long keywords to 12 characters.

Boolean and list fields are identified in the field name column. Unless otherwise noted, a field is a character field by default. For list fields, the list header field returned by the extract function is also specified. Unless otherwise noted, all list fields are 1-dimensional arrays.

Table 1. BASE segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword Reference, or LISTUSER heading (for output-only fields)	Allowed on add requests	Allowed on alter requests	Returned on extract requests
ADSP (boolean)	'Y'	ADSP	Yes	Yes	Yes
ADSP (boolean)	'N'	NOADSP	Yes	Yes	Yes
AUDITOR (boolean)	'Y'	AUDITOR	Yes	Yes	Yes
AUDITOR (boolean)	'N'	NOAUDITOR	Yes	Yes	Yes
AUTH	'Y'	AUTHORITY (xx)	Yes	Yes	No
CATEGORY (list NUMCTGY)	'Y'	ADDCATEGORY(xx ...)	Yes	No	Yes
	'A'	ADDCATEGORY(xx ...)	No	Yes	Yes
	'D'	DELCATEGORY(xx ...)	No	Yes	Yes
NOTES: To remove unknown categories from the profile, specify the 'D' flag and a field length of zero. On output, if a category cannot be mapped back to its external name, the string "-UNKNOWN-" is returned for the category value.
CLAUTH (list CLCNT)	'Y'	CLAUTH(xx...)	Yes	No	Yes
	'A'	CLAUTH(xx ...)	No	Yes	Yes
	'D'	NOCLAUTH(xx ...)	No	Yes	Yes
	'N'	NOCLAUTH	Yes	No	Yes
CONNECTS	N/A	Note: This is the list header field for the 15-dimensional array consisting of the following fields	No	No	Yes
CADSP (boolean)	N/A	N/A. These fields correspond to CONNECTS command keywords	No	No	Yes
CAUDITOR	N/A	N/A	No	No	Yes
CAUTHDA	N/A	N/A	No	No	Yes
CGROUP	N/A	N/A	No	No	Yes
CGRPACC	N/A	N/A	No	No	Yes
CINITCT	N/A	N/A	No	No	Yes
CLJDATE	N/A	N/A	No	No	Yes
CLJTIME	N/A	N/A	No	No	Yes
COPER	N/A	N/A	No	No	Yes
COWNER	N/A	N/A	No	No	Yes
CRESUME	N/A	N/A	No	No	Yes
CREVOKE (This is the revoke date. See CREVOKFL field for boolean output.)	N/A	N/A	No	No	Yes
CREVOKFL (boolean)	N/A	N/A	No	No	Yes
CSPECIAL (boolean)	N/A	N/A	No	No	Yes
CUACC	N/A	N/A	No	No	Yes
CREATDAT	N/A	CREATED=	No	No	Yes
DATA	'Y'	DATA (xx)	Yes	Yes	Yes
DATA	'N'	NODATA	No	Yes	Yes
DFLTGRP	'Y'	DFLTGRP (xx)	Yes	Yes	Yes
EXPIRED (boolean)	'Y'	EXPIRED	No	Yes	No
EXPIRED (boolean)	'N'	NOEXPIRED	No	Yes	No
GROUP	'Y'	GROUP (xx)	No	Yes	No
GRPACC (boolean)	'Y'	GRPACC	Yes	Yes	Yes
GRPACC (boolean)	'N'	NOGRPACC	Yes	Yes	Yes
HASPHRAS (boolean)	N/A	ATTRIBUTES=	No	No	Yes
HASPWD (boolean)	N/A	ATTRIBUTES=	No	No	Yes
LASTDATE	N/A	LAST-ACCESS= (left side of "/")	No	No	Yes
LASTTIME	N/A	LAST-ACCESS= (right side of "/")	No	No	Yes
MODEL	'Y'	MODEL (xx)	Yes	Yes	Yes
MODEL	'N'	NOMODEL	No	Yes	Yes
NAME	'Y'	NAME (xx)	Yes	Yes	Yes
NAME	'N'	NAME	No	Yes	Yes
OIDCARD (boolean)	'Y'	OIDCARD	No	No	No
OIDCARD (boolean)	'N'	NOOIDCARD	Yes	Yes	No
OPER (boolean)	'Y'	OPERATIONS	Yes	Yes	Yes
OPER (boolean)	'N'	NOOPERATIONS	Yes	Yes	Yes
OWNER	'Y'	OWNER(xx)	Yes	Yes	Yes
PASSDATE	N/A	PASSDATE=	No	No	Yes
PASSINT	N/A	PASS-INTERVAL=	No	No	Yes
PASSWORD	'Y'	PASSWORD (xx)	Yes	Yes	No
PASSWORD	'N'	NOPASSWORD	Yes	Yes	No
PHRASE	'Y'	PHRASE (xx)	Yes	Yes	No
PHRASE	'N'	NOPHRASE	No	Yes	No
PHRDATE	N/A	PHRASEDATE=	No	No	Yes
PPHENV (boolean)	N/A	PHRASE ENVELOPED=	No	No	Yes
PROTECTD (boolean)	N/A	ATTRIBUTES=	No	No	Yes
PWDENV (boolean)	N/A	PASSWORD ENVELOPED=	No	No	Yes
REST (boolean)	'Y'	RESTRICTED	Yes	Yes	Yes
REST (boolean)	'N'	NORESTRICTED	Yes	Yes	Yes
RESUME (on output, this is the resume date)	'Y'	RESUME(xx)	No	Yes	Yes
RESUME (on output, this is the resume date)	'N'	NORESUME	No	Yes	Yes
REVOKE (on output, this is the revoke date. See REVOKEFL for boolean 'revoked' bit)	'Y'	REVOKE(xx)	No	Yes	Yes
	'N'	NOREVOKE	No	Yes	Yes
REVOKEFL (boolean)	N/A	ATTRIBUTES=	No	No	Yes
NOTE: The value of the REVOKEFL field is consistent with the behavior of the LISTUSER command in that it takes revoke and resume dates into account when determining if the user is revoked.
SECLABEL	'Y'	SECLABEL (xx)	Yes	Yes	Yes
SECLABEL	'N'	NOSECLABEL	No	Yes	Yes
SECLEVEL	'Y'	SECLEVEL (xx)	Yes	Yes	Yes
SECLEVEL	'N'	NOSECLEVEL	No	Yes	Yes
SPECIAL (boolean)	'Y'	SPECIAL	Yes	Yes	Yes
SPECIAL (boolean)	'N'	NOSPECIAL	Yes	Yes	Yes
UACC	'Y'	UACC (xx)	Yes	Yes	No
UAUDIT (boolean)	'Y'	UAUDIT	No	Yes	Yes
UAUDIT (boolean)	'N'	NOUAUDIT	No	Yes	Yes
WHENDAYS (list WHENDYCT)	'Y'	WHEN(DAYS (xx))	Yes	Yes	Yes
WHENTIME	'Y'	WHEN(TIME (xx))	Yes	Yes	Yes

Table 2. CICS® segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
OPCLASS (list OPCLASSN)	'Y'	CICS( OPCLASS (xx ...))	Yes	Yes	Yes
	'A'	CICS( ADDOPCLASS (xx ... ))	No	Yes	Yes
	'D'	CICS(DELOPCLASS (xx ...))	No	Yes	Yes
	'N'	CICS(NOOPCLASS )	No	Yes	Yes
OPIDENT	'Y'	CICS(OPIDENT (xx))	Yes	Yes	Yes
OPIDENT	'N'	CICS(NOOPIDENT)	No	Yes	Yes
OPPRTY	'Y'	CICS(OOPPRTY (xx))	Yes	Yes	Yes
OPPRTY	'N'	CICS( NOOPPRTY)	No	Yes	Yes
RSLKEY (list RSLKEYN)	'Y'	CICS(RSLKEY(xx...))	Yes	Yes	Yes
RSLKEY (list RSLKEYN)	'N'	CICS(NORSLKEY)	No	Yes	Yes
TIMEOUT	'Y'	CICS( TIMEOUT (xx))	Yes	Yes	Yes
TIMEOUT	'N'	CICS( NOTIMEOUT)	No	Yes	Yes
TSLKEY (list TSLKEYN)	'Y'	CICS(TSLKEY(xx...))	Yes	Yes	Yes
TSLKEY (list TSLKEYN)	'N'	CICS(NOTSLKEY)	No	Yes	Yes
XRFSOFF	'Y'	CICS( XRFSOFF (xx))	Yes	Yes	Yes
XRFSOFF	'N'	CICS( NOXRFSOFF)	No	Yes	Yes

Table 3. CSDATA segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
custom-keyword	'Y'	CSDATA (custom-keyword(xxx))	Yes	Yes	Yes
custom-keyword	'N'	CSDATA (NOcustom-keyword)	No	Yes	Yes
A custom field (keyword and value type) is installation specific. On extract requests the field descriptor mapping will contain the custom-keyword and the associated data value.

Table 4. DCE segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
AUTOLOG (boolean)	'Y'	DCE(AUTOLOGIN (YES))	Yes	Yes	Yes
AUTOLOG (boolean)	'N'	DCE(AUTOLOGIN(NO))	Yes	Yes	Yes
DCENAME	'Y'	DCE(DCENAME(xx))	Yes	Yes	Yes
DCENAME	'N'	DCE(DCENAME )	No	Yes	Yes
HOMECELL	'Y'	DCE(HOMECELL (xx))	Yes	Yes	Yes
HOMECELL	'N'	DCE(NOHOMECELL)	No	Yes	Yes
HOMEUUID	'Y'	DCE(HOMEUUID (xx))	Yes	Yes	Yes
HOMEUUID	'N'	DCE(NOHOMEUUID)	No	Yes	Yes
UUID	'Y'	DCE(UUID(xx))	Yes	Yes	Yes
UUID	'N'	DCE(NOUUID)	No	Yes	Yes

Table 5. DFP segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
DATAAPPL	'Y'	DFP(DATAAPPL(xx))	Yes	Yes	Yes
DATAAPPL	'N'	DFP(NODATAAPPL)	No	Yes	Yes
DATACLAS	'Y'	DFP(DATACLAS(xx))	Yes	Yes	Yes
DATACLAS	'N'	DFP(NODATACLAS)	No	Yes	Yes
MGMTCLAS	'Y'	DFP(MGMTCLAS(xx))	Yes	Yes	Yes
MGMTCLAS	'N'	DFP(NOMGMTCLAS)	No	Yes	Yes
STORCLAS	'Y'	DFP(STORCLAS(XX))	Yes	Yes	Yes
STORCLAS	'N'	DFP(NOSTORCLAS)	No	Yes	Yes

Table 6. EIM segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
LDAPPROF	'Y'	EIM(LDAPPROF(xx))	Yes	Yes	Yes
LDAPPROF	'N'	EIM(NOLDAPPROF)	No	Yes	Yes

Table 7. KERB segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference, or LISTUSER heading (for output-only fields)	Allowed on add requests	Allowed on alter requests	Returned on extract requests
ENCRYPT (list ENCRYPTN)	'Y'	KERB(ENCRYPT(xx))	Yes	Yes	Yes
ENCRYPT (list ENCRYPTN)	'N'	KERB(NOENCRYPT)	No	Yes	Yes
KERBNAME	'Y'	KERB(KERBNAME(xx))	Yes	Yes	Yes
KERBNAME	'N'	KERB(NOKERBNAME)	No	Yes	Yes
KEYFROM	N/A	KEY FROM=	No	No	Yes
KEYVERS	N/A	KEY VERSION=	No	No	Yes
MAXTKTLF	'Y'	KERB(MAXTKTLFE(xx))	Yes	Yes	Yes
MAXTKTLF	'N'	KERB(NOMAXTKTLFE)	No	Yes	Yes

Table 8. Language segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
PRIMARY	'Y'	LANGUAGE (PRIMARY(xx))	Yes	Yes	Yes
PRIMARY	'N'	LANGUAGE(NOPRIMARY)	No	Yes	Yes
SECOND	'Y'	LANGUAGE(SECONDARY(xx))	Yes	Yes	Yes
SECOND	'N'	LANGUAGE(NOSECONDARY)	No	Yes	Yes

Table 9. LNOTES segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
SNAME	'Y'	LNOTES(SNAME (xx))	Yes	Yes	Yes
SNAME	'N'	LNOTES(NOSNAME)	No	Yes	Yes

Table 10. NDS segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
UNAME	'Y'	NDS(UNAME (xx))	Yes	Yes	Yes
UNAME	'N'	NDS(NOUNAME)	No	Yes	Yes

Table 11. NetView segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
CONSNAME	'Y'	NETVIEW(CONSNAME (xx))	Yes	Yes	Yes
CONSNAME	'N'	NETVIEW(NOCONSNAME)	No	Yes	Yes
CTL	'Y'	NETVIEW(CTL (xx))	Yes	Yes	Yes
CTL	'N'	NETVIEW(NOCTL)	No	Yes	Yes
DOMAINS (list DOMAINSN)	'Y'	NETVIEW(DOMAINS (xx ...))	Yes	Yes	Yes
	'A'	NETVIEW(ADDDOMAINS (xx ...))	No	Yes
	'D'	NETVIEW(ADDDOMAINS (xx ...))	No	Yes
	'N'	NETVIEW(ADDDOMAINS (xx ...))	No	Yes
IC	'Y'	NETVIEW(IC (xx ))	Yes	Yes	Yes
IC	'N'	NETVIEW(NOIC)	No	Yes	Yes
MSGRECVR (boolean)	'Y'	NETVIEW(MSGRECVR (YES))	Yes	Yes	Yes
MSGRECVR (boolean)	'N'	NETVIEW(MSGRECVR (NO))	Yes	Yes	Yes
NGMFADMN (boolean)	'Y'	NETVIEW(NGMFADMN(YES))	Yes	Yes	Yes
NGMFADMN (boolean)	'N'	NETVIEW(NGMFADMN (NO))	No	Yes	Yes
NGMFVSPN	'Y'	NETVIEW(NGMFVSPN (xx))	Yes	Yes	Yes
NGMFVSPN	'N'	NETVIEW( NONGMFVSPN)	No	Yes	Yes
OPCLASS (list OPCLASSN)	'Y'	NETVIEW(OPCLASS (xx ...))	Yes	Yes	Yes
	'A'	NETVIEW( ADDOPCLASS (xx ...))	No	Yes
	'D'	NETVIEW( DELOPCLASS (xx ...))	No	Yes
	'N'	NETVIEW( NOOPCLASS)	No	Yes

Table 12. OMVS segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
ASSIZE	'Y'	OMVS(ASSIZEMAX (xx))	Yes	Yes	Yes
ASSIZE	'N'	OMVS(NOASSIZEMAX)	No	Yes	Yes
AUTOUID	'Y'	OMVS(AUTOUID)	Yes	Yes	No
CPUTIME	'Y'	OMVS(CPUTIMEMAX (xx))	Yes	Yes	Yes
CPUTIME	'N'	OMVS(NOCPUTIMEMAX)	No	Yes	Yes
FILEPROC	'Y'	OMVS(FILEPROCMAX (xx))	Yes	Yes	Yes
FILEPROC	'N'	OMVS(NOFILEPROCMAX)	No	Yes	Yes
HOME	'Y'	OMVS(HOME (xx))	Yes	Yes	Yes
HOME	'N'	OMVS(NOHOME )	No	Yes	Yes
MEMLIMIT	'Y'	OMVS(MEMLIMIT(xx))	Yes	Yes	Yes
MEMLIMIT	'N'	OMVS(NOMEMLIMIT))	No	Yes	Yes
MMAPAREA	'Y'	OMVS(MMAPAREAMAX (xx))	Yes	Yes	Yes
MMAPAREA	'N'	OMVS(NOMMAPAREAMAX)	No	Yes	Yes
PROCUSER	'Y'	OMVS(PROCUSERMAX (xx))	Yes	Yes	Yes
PROCUSER	'N'	OMVS(NOPROCUSERMAX)	No	Yes	Yes
PROGRAM	'Y'	OMVS(PROGRAM (xx))	Yes	Yes	Yes
PROGRAM	'N'	OMVS(NOPROGRAM)	No	Yes	Yes
SHARED	'Y'	OMVS(SHARED)	Yes	Yes	No
SHMEMMAX	'Y'	OMVS(SHMEMMAX(xx))	Yes	Yes	Yes
SHMEMMAX	'N'	OMVS(NOSHMEMMAX))	No	Yes	Yes
THREADS	'Y'	OMVS(THREADSMAX (xx))	Yes	Yes	Yes
THREADS	'N'	OMVS(NOTHREADSMAX)	No	Yes	Yes
UID	'Y'	OMVS(UID (xx))	Yes	Yes	Yes
UID	'N'	OMVS(NOUID)	No	Yes	Yes

Table 13. OPERPARM segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
ALTGRP	'Y'	OPERPARM (ALTGRP(xx))	Yes	Yes	Yes
ALTGRP	'N'	OPERPARM(NOALTGRP)	No	Yes	Yes
AUTO	'Y'	OPERPARM(AUTO(xx))	Yes	Yes	Yes
AUTO	'N'	OPERPARM(NOAUTO))	No	Yes	Yes
CMDSYS	'Y'	OPERPARM(CMDSYS (xx))	Yes	Yes	Yes
CMDSYS	'N'	OPERPARM (NOCMDSYS)	No	Yes	Yes
DOM	'Y'	OPERPARM(DOM xx))	Yes	Yes	Yes
DOM	'N'	OPERPARM (NODOM)	No	Yes	Yes
HC	'Y'	OPERPARM(HC(xx))	Yes	Yes	Yes
HC	'N'	OPERPARM(NOHC)	No	Yes	Yes
INTIDS	'Y'	OPERPARM(INTIDS(xx))	Yes	No	Yes
INTIDS	'N'	OPERPARM(NOINTIDS)	No	Yes	Yes
KEY	'Y'	OPERPARM(KEY(xx))	Yes	Yes	Yes
KEY	'N'	OPERPARM(NOKEY)	No	Yes	Yes
LEVEL (list LEVELN)	'Y'	OPERPARM(LEVEL (xx))	Yes	Yes	Yes
LEVEL (list LEVELN)	'N'	OPERPARM(NOLEVEL)	No	Yes	Yes
LOGCMD	'Y'	OPERPARM(LOGCMDRESP(xx))	Yes	Yes	Yes
LOGCMD	'N'	OPERPARM(NOLOGCMDRESP)	No	Yes	Yes
MFORM (list MFORMN)	'Y'	OPERPARM(MFORM(xx))	Yes	Yes	Yes
MFORM (list MFORMN)	'N'	OPERPARM(NOMFORM)	No	Yes	Yes
MIGID	'Y'	OPERPARM(MIGID(xx))	Yes	Yes	Yes
MIGID	'N'	OPERPARM(NOMIGID)	No	Yes	Yes
MONITOR (list MONITORN)	'Y'	OPERPARM(MONITOR(xx...))	Yes	Yes	Yes
MONITOR (list MONITORN)	'N'	OPERPARM(NOMONITOR)	No	Yes	Yes
MSCOPE (list MSCOPEN)	'Y'	OPERPARM(MSCOPE(xx ...))	Yes	Yes	Yes
	'A'	OPERPARM(ADDMSCOPE(xx ...))	No	Yes
	'D'	OPERPARM(DELMSCOPE(xx ...))	No	Yes
	'N'	OPERPARM(NOMSCOPE)	No	Yes
On extract requests, if the value in the ROUTCODE field is "ALL", then the list header field will describe one entry with the value "ALL", as opposed to an enumeration of all 128 route code values.
OPERAUTH (list OPERAUTN)	'Y'	OPERPARM(AUTH(xx))	Yes	Yes	Yes
OPERAUTH (list OPERAUTN)	'N'	OPERPARM(NOAUTH)	No	Yes	Yes
ROUTCODE (list ROUTCODN)	'Y'	OPERPARM(ROUTCODE(xx ...)	Yes	Yes	Yes
ROUTCODE (list ROUTCODN)	'N'	OPERPARM(NOROUTCODE)	No	Yes	Yes
STORAGE	'Y'	OPERPARM(STORAGE(xx))	Yes	Yes	Yes
STORAGE	'N'	OPERPARM(NOSTORAGE)	No	Yes	Yes
UD	'Y'	OPERPARM( UD (xx))	Yes	Yes	Yes
UD	'N'	OPERPARM(NOUD)	No	Yes	Yes
UNKNIDS	'Y'	OPERPARM(UNKNIDS(xx))	Yes	Yes	Yes
UNKNIDS	'N'	OPERPARM(NOUNKNIDS)	No	Yes	Yes

Table 14. OVM segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
FSROOT	'Y'	OVM(FSROOT (xx))	Yes	Yes	Yes
FSROOT	'N'	OVM(NOFSROOT)	No	Yes	Yes
VHOME	'Y'	OVM(HOME(xx))	Yes	Yes	Yes
VHOME	'N'	OVM(NOHOME)	No	Yes	Yes
VPROGRAM	'Y'	OVM(PROGRAM(xx))	Yes	Yes	Yes
VPROGRAM	'N'	OVM(NOPROGRAM)	No	Yes	Yes
VUID	'Y'	OVM(UID(xx))	Yes	Yes	Yes
VUID	'N'	OVM(NOUID)	No	Yes	Yes

Table 15. PROXY segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract Requests
BINDDN	'Y'	PROXY(BINDDN(xx))	Yes	Yes	Yes
BINDDN	'N'	PROXY(NOBINDDN)	No	Yes	Yes
BINDPW	'Y'	PROXY(BINDPW(xx))	Yes	Yes	No
BINDPW	'N'	PROXY(NOBINDPW)	No	Yes	No
LDAPHOST	'Y'	PROXY(LDAPHOST(xx))	Yes	Yes	Yes
LDAPHOST	'N'	PROXY(NOLDAPHOST)	No	Yes	Yes

Table 16. TSO segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
ACCTNUM	'Y'	TSO( ACCTNUM (xx))	Yes	Yes	Yes
ACCTNUM	'N'	TSO (NOACCTNUM )	No	Yes	Yes
COMMAND	'Y'	TSO( COMMAND (xx))	Yes	Yes	Yes
COMMAND	'N'	TSO(NOCOMMAND)	No	Yes	Yes
DEST	'Y'	TSO (DEST (xx))	Yes	Yes	Yes
DEST	'N'	TSO( NODEST)	No	Yes	Yes
HLDCLASS	'Y'	TSO( HOLDCLASS (xx))	Yes	Yes	Yes
HLDCLASS	'N'	TSO( NOHOLDCLASS)	No	Yes	Yes
JOBCLASS	'Y'	TSO( JOBCLASS (xx))	Yes	Yes	Yes
JOBCLASS	'N'	TSO( NOJOBCLASS )	No	Yes	Yes
MAXSIZE	'Y'	TSO(MAXSIZE (xx))	Yes	Yes	Yes
MAXSIZE	'N'	TSO(NOMAXSIZE)	No	Yes	Yes
MSGCLASS	'Y'	TSO( MSGCLASS (xx))	Yes	Yes	Yes
MSGCLASS	'N'	TSO( NOMSGCLASS )	No	Yes	Yes
PROC	'Y'	TSO( PROC(xx))	Yes	Yes	Yes
PROC	'N'	TSO( NOPROC)	No	Yes	Yes
SECLABEL	'Y'	TSO( SECLABEL (xx))	Yes	Yes	Yes
SECLABEL	'N'	TSO( NOSECLABEL )	No	Yes	Yes
SIZE	'Y'	TSO( SIZE (xx))	Yes	Yes	Yes
SIZE	'N'	TSO( NOSIZE)	No	Yes	Yes
SYSOUTCL	'Y'	TSO( SYSOUTCL (xx))	Yes	Yes	Yes
SYSOUTCL	'N'	TSO(NOSYSOUTCL)	No	Yes	Yes
UNIT	'Y'	TSO( UNIT (xx))	Yes	Yes	Yes
UNIT	'N'	TSO(NOUNIT )	No	Yes	Yes
USERDATA	'Y'	TSO( USERDATA (xx))	Yes	Yes	Yes
USERDATA	'N'	TSO(NOUSERDATA)	No	Yes	Yes

Table 17. WORKATTR segment fields
Field name	Flag byte values	ADDUSER/ALTUSER keyword reference	Allowed on add requests	Allowed on alter requests	Returned on extract requests
WAACCNT	'Y'	WORKATTR(WAACCNT (xx))	Yes	Yes	Yes
WAACCNT	'N'	WORKATTR(NOWAACCNT)	No	Yes	Yes
WAADDR1	'Y'	WORKATTR(WAADDR1 (xx))	Yes	Yes	Yes
WAADDR1	'N'	WORKATTR(NOWADDR1)	No	Yes	Yes
WAADDR2	'Y'	WORKATTR(WAADDR2 (xx))	Yes	Yes	Yes
WAADDR2	'N'	WORKATTR(NOWADDR2)	No	Yes	Yes
WAADDR3	'Y'	WORKATTR(WAADDR3 (xx))	Yes	Yes	Yes
WAADDR3	'N'	WORKATTR(NOWADDR3)	No	Yes	Yes
WAADDR4	'Y'	WORKATTR(WAADDR4 (xx))	Yes	Yes	Yes
WAADDR4	'N'	WORKATTR(NOWADDR4)	No	Yes	Yes
WABLDG	'Y'	WORKATTR(WABLDG(xx))	Yes	Yes	Yes
WABLDG	'N'	WORKATTR(NOWABLDG)	No	Yes	Yes
WADEPT	'Y'	WORKATTR(WADEPT (xx))	Yes	Yes	Yes
WADEPT	'N'	WORKATTR(NOWADEPT)	No	Yes	Yes
WANAME	'Y'	WORKATTR(WANAME (xx))	Yes	Yes	Yes
WANAME	'N'	WORKATTR(NOWANAME(xx))	No	Yes	Yes
WAROOM	'Y'	WORKATTR(WAROOM (xx))	Yes	Yes	Yes
WAROOM	'N'	WORKATTR(NOWAROOM)	No	Yes	Yes