User Rules

User authority rules are useful to control access to servers and functions for particular users. User security rules are evaluated only if a location rule specifies to use *USER security rules. (Exit Point Manager includes one default user rule for each server. See Default User Rules). Like Location rules, User rules can be used to define actions for access to a server, or for access to a specific function of a server (e.g. DELETEFILE).

NOTE: In order to add User Rules on an endpoint, the PNSEVTMON monitor job must be running. This job starts automatically during Exit Point Manager installation. If, for some reason, this job has been stopped, you can issue the PTNSLIB07/PNSSTRMON (or PTNSLIB/PNSSTRMON, depending on your product library) command to restart it.

To apply the same rule to multiple profiles, create a User Group, then choose the group when you create the User Rule. See Creating a User Group.

All default location rules include the same parameters and are set with the same default values. See Parameters and Default Values.

User Icon

On the Rules screen, user rules can be identified by the icon to the left of the user profile or group name.

Default User Rules

Exit Point Manager ships with default user authority rules for all supported IBM i servers. View these rules by referring to the *PUBLIC rules on the Rules screen.

Rules screen

Server IDs

Exit Point Manager supports the following servers and provides one default user rule for each server.

Servers and Functions
Exit Point Server Description
*CLI Call Level Interface
*DDM *Distributed Data Management Server
*DRDA Distributed Relational Database
*DQSRV Data Queue Server
*FILESRV File Server
*FTPCLIENT IBM i FTP Client
*FTPSERVER IBM i FTP Server
*NDB Native Database Request
*RMTSRV Remote Command and Distributed Program Call Server
*RTVOBJINF SQL Retrieve Object Information
*SQL Database Server Initialization
*SQLSRV SQL Server
*TELNET Telnet Device Initiation/Termination
*DATAQSRV Optimized Data Queue Server
*FTPREXEC FTP Execute Remote Command (REXEC)
*REXEC_SO Remote Execute Command Signon Server
*TFRFCL File Transfer Server
*TFTP Trivial FTP Server
*CNTRLSRV License Management Central Server
*FTPSIGNON FTP Logon Server
*LMSRV License Management Server
*MSGFCL Message Function Server
*RQSRV Remote SQL Server
*SIGNON Signon Server
*VPRT Virtual Print Server
QNPSERV Network Print Server

ShowCase Exit Points

Exit Point Manager provides access control and monitoring for exit points that are specific to the ShowCase software suite:

Exit Point Server Description
*VISTA
A Showcase corporation server.
(*VISTA)
ShowCase *VISTA Clients
*VISTAPRO
A Showcase corporation server.
(*VISTAPRO)
ShowCase *VISTAPRO Clients
DATADIST
A Showcase corporation server.
(DATADIST)
ShowCase DATADIST Clients
VISTA_ADMI
A Showcase corporation server.
(VISTA_ADMI)
ShowCase VISTA_ADMI Clients