7.2.2 Setting the JP1 resource group
The access permission for a unit (JP1 permission level) is assigned to all JP1 users for each JP1 resource group in JP1/Base. The JP1 permission level is enabled by setting a JP1 resource group for the unit.
If you do not set a JP1 resource group for a unit, any JP1 user can perform any operation on the unit.
In manager job groups and manager jobnets, JP1 resource groups that are set at the reference target manager, and the permission levels for those JP1 resource groups, apply.
- Supplementary note
-
If the OS user mapped to a JP1 user is a user with administrator permissions or superuser privileges, the OS user has the following access permissions for units:
-
JP1_AJS_XXX access permissions (for defining and executing jobnets)
All operations can be performed regardless of the JP1 resource group and JP1 permission level.
-
JP1_JPQ_XXX access permissions (for executing and operating jobs, and for accessing agent management information)
Only operations permitted by the JP1 resource group and JP1 permission level that are set can be performed.
However, if yes is explicitly specified for the ADMACLIMIT environment setting parameter, only operations permitted by the JP1 permission level set for the mapped JP1 user can be performed, regardless of the type of access. For details about this parameter, see 20.11.2(4) ADMACLIMIT in the JP1/Automatic Job Management System 3 Configuration Guide.
-