On Wed, 15 Feb 2012 15:29:52 -0600, David Magee <david.ma...@dillards.com> wrote:
>I was wondering how some of you are handling the HOME field of the model >userid profile specified in the APPLDATA field of the BPX.UNIQUE.USER porfile. > >The IBM examples I've seen all show /tmp for HOME. My current OEDFLTU userid >in use with the BPX.DEFAULT.USER profile uses /tmp. > >Is there a way to have the generated OMVS segment have /u/userid show up in >HOME .... maybe via a template similar to /u/&sysuid (I know that &SYSUID is >unique to TSO/E). If possible, what are the pros and cons for one over the >other? First, I would generally recommend using RACF-L for RACF questions, or MVS-OE for z/OS UNIX questions (such as this one). The relevant IBMers for those products generally do not follow IBM-MAIN, in my experience. But to answer your question, no, there's no way to do what you want. The intention for both BPX.DEFAULT.USER and BPX.UNIQUE.USER is that you're using those profiles to cover users who only incidentally happen to do something that needs access to UNIX functions. If you have users who are really acting as UNIX users (and thus might need to save data in their home directory) then you should manually assign an OMVS segment to them (possibly using the AUTOUID keyword) rather than relying on BPX.DEFAULT.USER or BPX.UNIQUE.USER. (Feel free to submit a requirement to IBM for z/OS UNIX to support some tag such as &sysuid, though. It seems like a good idea that would simplify administration.) -- Walt Farrell IBM STSM, z/OS Security Design ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@bama.ua.edu with the message: INFO IBM-MAIN
