The grtwasaut command grants a user authority to a profile
and the objects associated with it.
For usage instructions and examples, see the Grant authority to a profile
article. To run this script, your user profile must have *ALLOBJ authority.
Syntax
The command syntax is as follows:
grtwasaut [-profileName profile] {-user usrprf | -authlist authlist}
{-dtaaut dataAuth | -objaut objectAuth} [-object path]
[-recursive] [-verbose] [-help]
When you run the
grtwasaut command,
you must specify the following parameters:
- -user, -authlist, or both
- -dtaaut, objaut, or both
Parameters
The following options are available for
the grtwasaut command:
- -profileName
- This is an optional parameter. The value profile specifies the
name of the profile to which you are granting authority. The default value
is default.
- -user
- The value usrprf specifies the user profile to which
you are granting authority. To grant authority to multiple user profiles,
specify all of the user profiles with a single -user parameter. Enclose the
list of profiles in double quotation marks ("). For example, to grant authority
to usrprf1 and usrprf2, specify -user "usrprf1 usrprf2". You must specify
-user, -authlist, or both.
- -authlist
- The value authlist specifies the authorization list to which you
are granting authority. You must specify -user, -authlist, or both.
- -dtaaut
- The value dataAuth specifies the data authorities that you are
granting to the user specified by the -user parameter. Valid values are none,
rwx, rx, rw, wx, r, w, x, exclude, autl, and same. The value that you specify
replaces the user's current data authorities to the object. You must specify
-dtaaut, -objaut, or both. For more information on the values for this parameter,
see the CHGAUT (Change Authority) command description.
- -objaut
- The value objAuth specifies the object authorities that you are
granting to the user specified in the -user parameter. Valid values are none,
all, objexist, objmgt, objalter, objref, and same. The value that you specify
replaces the user's current object authorities to the object. You must specify
-dtaaut, -objaut, or both. For more information on the values for this parameter,
see the CHGAUT (Change Authority) command description.
- -object
- This is an optional parameter. The value path specifies the subdirectory
or partially qualified object name to which you are granting authority. The
profile root is prepended to the value to get the fully-qualified path. If
you do not specify this parameter, the default value is the profile root.
To grant authority to multiple objects, you must run the script for each object.
- -recursive
- This optional parameter specifies whether to grant authority to all subdirectories.
If you do not specify this parameter, authority is granted only to the object
specified with the -object parameter, or the profile root directory if the
-object parameter is not specified. This parameter applies to all objects
specified with -object parameters.
- -verbose
- This optional parameter turns on verbose messages, which can be helpful
if you need to debug the script.
- -help
- This optional parameter displays the help message. If you specify this
parameter, the script ignores all other parameters.