Topics: |
If only a single DataMigrator user will be designing flows, no alterations to the DataMigrator Server configuration are necessary. However, if the DataMigrator Server supports multiple users, the server administrator may need to establish separate user IDs and profiles to control access to DM application directories.
Note: Establishing security for iWay Servers, including the DataMigrator Server on z/OS requires additional consideration. For details, refer to Step 7. Configure Server Security in Chapter 4, Server Installation for z/OS in the Server Installation manual.
The iWay agent created when you connect to a DataMigrator Server has an associated logon user ID. Local file, directory, and resource security is controlled by that user ID.
For scheduled flows, the DM components that a user ID can see and run from its Application Path are controlled from sched_run_id option, accessible using the Type setting in the New Tenant dialog box, accessed from the Manage Scheduler Userids dialog box.
When sched_run_id is set to:
If security is ON and you set sched_run_id to user to run a scheduled flow for a certain user ID:
If a DataMigrator user with an APPLICATION-level ID wants to run scheduler requests:
For more information, see Scheduler Configuration Page.
By default, the server profile (EDASPROF.PRF) is run for all users when they connect to the DataMigrator Server to provide access to all application directories in the servers search path. However, an administrator can control a user's access to application directories by creating individual user profiles. Each user can then:
For details, see Authorizing DataMigrator Server Usage and Administration.
It follows that the user ID that a flow runs under determines the user profile that is run. The profile controls the application directories available to the flow, as well as access to relational databases or source servers.
The user can only access the application directories defined in the profile being used.
You can set the Application Path from the DMC or the Web Console. For information on setting the Application Path from the DMC, see Managing Application Directories and Configuring the Application Path. For information on setting the Application Path from the Web Console, see the Server Administration manual or the Web Console online help.
How to: |
By default, scheduled flows are run using the server admin ID.
To run all scheduled flows under the user ID that saved them, you need to:
Note: If there is a Start option, the scheduler is not running. To run the scheduler, click Start.
The Manage Scheduler Userids dialog box opens.
The New Tenant .
Note: It is recommended that each ScanID has its own Application Path set in their user profile. The same application directory should not appear in the application path of more than one ScanID.
Note: If you want to run all scheduled flows under a user ID that does not already exist, you must create one using an operating system-specific procedure.
The User Registration dialog box opens.
The User Registration dialog box opens.
The Scheduled Events report will now list scheduled flows by the user ID that saved them.
WebFOCUS | |
Feedback |