Auditing access control (AREV Specific)
At 09 DEC 2008 07:16:21PM IAMAUDITED wrote:
Hi hi,
Our A-Rev access control application is being audited. The problem is no one in our company know how A-Rev access control is designed.
The auditor requested answers for the following information:
- List of built-in user account, eg. 'SYSPROG'. Is there a way to generate or locate this list? How?
- Is 'USRADMIN' (we use this to create a new user) a built-in A-Rev a/c, or is it something which is created by previous employee?
Also if you can point me to a documentation regarding access control, it'll be much appreciated.
Thanks in advance for your help.
At 09 DEC 2008 07:24PM [url=http://www.sprezzatura.com]The Sprezzatura Group[/url] wrote:
Yes - log into SYSPROG and at TCL (f5)
list SYSENV with F1=ACCOUNT' 'USER' F1 F2
Created by previous employee
AREV is a DOS app last touched in 1995 - the chances are the docs you seek never existed - sorry. But feel free to ask more questions.
World leaders in all things RevSoft
At 09 DEC 2008 08:48PM IAMAUDITED wrote:
Hi there,
Thanks for the response, that was quick!
I have one more question :).
- how do I list users who have access to TCL (F5)?
cheers
At 10 DEC 2008 03:37AM [email protected] wrote:
That's a little more complicated. Users are defined as having environments which are definitions of characteristics such as "do they have TCL access" "can they record macros" etc. These environments are rows in SYSENV. User rows in SYSENV record which environment row the user uses. So you'd have to create a symbolic on SYSENV Xlating to the appropriate column in the environment row.
If you can't figure it come back to us.
The Sprezzatura Group Web Site
World Leaders in all things RevSoft