Model Your User Groups

Your region defines default model user IDs that inherit the attributes of defined groups. You create resources for the model user IDs in your external security package. You then associate these model user IDs with the resources.
nwmscl122
Your region defines default model user IDs that inherit the attributes of defined groups. You create resources for the model user IDs in your external security package. You then associate these model user IDs with the resources.
Follow these steps:
  1. For each defined group, create a model user ID that uses that group.
    The following default MODEL definitions are created automatically when a region starts for the first time:
    • $MDADMIN uses the $RMADMIN group.
    • $MDOPER uses the $RMOPER group.
    • $MDNOPER uses the $RMNOPER group.
    • $MDMON uses the $RMMON group.
    For
    CA SOLVE:FTS
    ,
    CA SOLVE:Access
    ,
    CA SOLVE:InfoMaster
    , and
    CA SOLVE:NetMail
    , create your model definitions manually, because no default definitions are created.
     
    1. Using your external security package, create resource names for each defined model user ID, for example:
      • NETMASTR.ADMIN, for an administrator
      • NETMASTR.OPER, for a system operator
      • NETMASTR.NOPER, for a network operator
      • NETMASTR.MON, for a monitor user
      These resources must use the same resource class name as the SXCTL RCLASS setting (default FACILITY), located in the SXCTL file parameters in the Model user section.
      Model List
      Resource Class Name
      MODELGROUP NETMASTR.ADMIN
      $MDADMIN
      MODELGROUP NETMASTR.OPER
      $MDOPER
      MODELGROUP NETMASTR.NOPER
      $MDNOPER
      MODELGROUP NETMASTR.MON
      $MDMON
      MODELGROUP * 
      $MDMON
      • These resource names are generic. If you have several product regions and you want users to have different profiles on each, you could use the ACB name or domain name of each region as part of the name (for example, NETMASTR.ADMIN.NM01).
      • If you use a different class name, define the class to the security system.
  2. Issue commands to define and activate the resources in your external security system. Give all users who access your region PERMIT privileges with (at least) READ access to the appropriate resource.
    Give background users PERMIT privileges to the administrator resource (for example, NETMASTR.ADMIN).
  3. Set up the SXCTL file with the following statements to associate the resources with the model user IDs:
    MODEL LIST MODELGROUP   
    resource.name.1
       
    model1
    MODELGROUP   
    resource.name.2
       
    model2
    MODELGROUP   
    resource.name.3
       
    model3
    MODELGROUP   
    resource.name.4
       
    model4
     List the resource names in the order that you want them to be tested.
    If you want to allow a generic logon for any other users, add an extra line:
    MODELGROUP   *   
    dfltmodel