User Profile Name

The user-defined profile name, up to 40 characters.

Shell Access

y/n

y — users assigned this profile are able to execute go shell from the SAT. This does not affect the user’s default login shell in Linux.

Facility Test Call Notification

y/n

y — users assigned this profile receive notification at logoff if Facility Test if Notification is still administered. For security, set to y for all profiles.

Acknowledgement Required

y/n

y — users assigned this profile must acknowledge that they want to logoff while Facility Test if Notification is still administered.

This profile is disabled

y/n

n — the profile is active

y — the profile is disabled

If changed to y, an existing active login using this profile is unaffected, but any new attempted session using this profile fails.

• A login via CLAN receives access denied.

• A login via Linux receives an error return code with the message access denied displayed via stderr.

Grant un-owned Permissions

y/n

y — If this profile has write access to the user-profile form, users with this profile can grant any permission allowed for profile 18 (customer super user) to other profiles even when this profile does not itself have those permissions.

n — users may not grant permissions they themselves do not have.

Extended Profile

y/n, default is n

y — extended profile is enabled.

If y, the profile has additional access restrictions to the station and vector forms.

Name

Category name. Each category is associated with a unique set of SAT screens. A given object (SAT screen) displays in one category.

Cat

Category.

Enbl

y/n

y — enable the category for this user-profile. Category displays y when any object in a category has permissions other than - -.

n — disable the category for this user-profile. Category displays n only when all objects in the category have permissions - -.

• If the field is changed from n to y, permissions for all objects assigned to the category are set to w--.

• If the field is changed from y to n, permissions for all objects assigned to the category are set to --.

This field also reflects the settings on pages 2 - x of this screen.

Set Permissions for Category _ to _

Set permissions for only the objects assigned to this specific category.

1. Enter a letter to specify the category to set.

2. Enter the permission.

   • Set permission entries as read/write for administration and yes/no for maintenance.

   • A blank character indicates no-change. For example, if the permissions field is set to blank -, all affected objects are set to deny maintenance access but the current access for administration for each object in this category remains unchanged.

See the field description for Perm for more details.

Set All Permissions to

Set permissions for all objects in all categories.

Cat (category)

Display only. Letter that corresponds to the category, used for sorting alphabetically by category, as opposed to alphabetically by SAT form command object.

Perm (permissions)

Enter a two-character value, including blank. Set permission entries as deny, read/write for administration and deny, yes/no for maintenance.

• The first character specifies access for administration.

  • - (dash) — deny. No access.

  • r — view only.

  • w — add, change, remove in addition to view.

• The second character specifies access for maintenance.

  • - (dash) — deny. No access to maintenance commands.

  • m — access to maintenance commands. Setting this field to m requires at least read access for administration.

For example,

• r- — a user with this profile can use the commands read, display, export, status, and list for the object assigned the r- permission, and no others.

• wm — grants full access for all commands to the object assigned this permission

A blank character indicates no-change. For example, if the permissions field is set to blank -(dash), all affected objects are set to deny maintenance access but the current access for administration for each object in this category remains unchanged.

All permission fields on the User Profile pPage 2 – x accept the full range of values (r, w, d) or (w, m) Independent of whether all values apply to the field or not.

Settings on these pages are reflected on the Enbl field on page 1 of this screen.

Name

Name of the SAT screen by command object. Display only.