You can secure the job scheduler by mapping users and groups to specific security roles.
Users who are assigned the lradmin role have the authority to perform all job scheduler application actions on all jobs regardless of job ownership, while users who are assigned with the lrsubmitter role can only act on jobs that are owned by the submitters themselves.
Users in the lrmonitor role can view and download all job logs, but cannot submit or operate on jobs.
<app_server_root>/bin/lrcmd.[bat|sh]
-cmd=<name_of_command> <command_arguments> [-host=<host> -port=<port>]
-userid=<user_ID> -password=<password>
D:\IBM\WebSphere\AppServer\bin\lrcmd -cmd=submit
-xJCL=D:\IBM\WebSphere\AppServer\samples\Batch\postingSampleXJCL.xml
-port=9445 -host=wasxd01.ibm.com -userid=mylradmin -password=w2g0u1tf