- GUARD |Set Guard attributes

- GUARD |Set Guard attributes

The specified file or library element will be issued with a Guard protection. If no parameters are specified, or if only the file name is specified, the mask shown below will be displayed:

With a mouseclick you get a describtion of the screen item.

%name The parameter values for the Guard command will be taken from the specified parameter set. Saving a parameter set is done with the SPGUARD %name CFS command.

%? All relevant parameter sets will be displayed on screen, from which one may be selected by marking it.

JRS=jrfile Name of the JRSAVE file in which the parameter set has been saved.

Standard: CFS.JRSAVE.xxxx. For further information, see page 27-.

file Name of the file or library element to be protected.

The name of a library element must be entered in the form lib([t/]name[/vers]). Instead of a name, an asterisk '*' can be entered as an abbreviation. The required data object must be marked with an asterisk as an Action Code. If no name is specified, or if no name is entered in the mask, then no action will be performed. The specified Guard profile is, however, stored for use with a later SG (Set Guard) command.

R=guard Read access to the data object is protected by a Guard with the specified name. A Guard, like a file, can be assigned a PVS-id, a userid and a name, although the name is restricted to eight characters.

R=*NONE File: Read access is protected with an empty Guard and is thus prohibited.

PLAM Element: Read access is monitored neither with Guard protection nor with Basic Access Control Level (BACL) attributes.

R=*SAME The Read access rights to the data object remain unaltered.

W=guard Write access to the data object is protected by a Guard with the specified name. A Guard, like a file, can be assigned a PVS-id, a userid and a name, although the name is restricted to eight characters.

W=*NONE File: Write access is protected with an empty Guard and is thus prohibited.

PLAM Element: Write access is monitored neither with Guard protection nor with Basic Access Control Level (BACL) attributes.

W=*SAME Write access rights to the data object remain unaltered.

E=guard Execute access to the data object is protected by a Guard with the specified name. A Guard, like a file, can be assigned a PVS-id, a userid and a name, although the name is restricted to eight characters.

E=*NONE File: Execute access is protected with an empty Guard and is thus prohibited.

PLAM Element: Execute access is monitored neither with Guard protection nor with Basic Access Control Level (BACL) attributes.

E=*SAME Execute access rights to the data object remain unaltered.

Notes:

The following restrictions are valid for files: If the value *NONE is entered for all three access types, Guard access control is totally switched off. The file is then protected only with the SHARE=YES|NO, ACCESS=READ|WRITE attributes. The same effect can be achieved by executing the SGN (Set Guards None) Action Code.

When protecting PLAM elements with a Guard command, the existence of the specified Guard is not checked. If an element is protected with a non-existenet Guard against, for example, read access, then read access will be prohibited by all users until a Guard with the specified name is created.