REMOTEUSER Statement

Use the REMOTEUSER statement to

  • Enable users from other hosts to access your system.

  • Identify remote users in the USERDATAFILE.

  • Create, examine, change, and delete REMOTEUSER entries in the USERDATAFILE which contain remote <usercode entry>/<host name>or <nonusercode entry/<host name> pairs and, optionally, local-alias usercodes.

  • Associate a comment with a REMOTEUSER entry.

An appropriate entry in the local USERDATAFILE enables a user on a remote system to use a Distributed Systems Service to access the local host.

In the REMOTEUSER statement, you can reference categories of users or hosts by including the following specifications.

Specification

Meaning

*ANONYMOUSFTP

A remote user requesting access to the Anonymous FTP service

*ANYUSER

Any remote usercode

*NOUSERCODE

Any remote user without a usercode

*ANYHOST

Any remote host

The system validates remote access requests from hosts within these categories when it receives individual requests, not when it processes the REMOTEUSER statement.

Syntax

<remoteuser statement>

──┬─<remoteuser add>────────────┬──────────────────────────────────────┤
  ├─<remoteuser display>────────┤
  ├─<remoteuser delete>─────────┤
  ├─<remoteuser alias change>───┤
  ├─<remoteuser comment change>─┤
  └─<remoteuser service change>─┘

The following sections describe the four basic forms of the REMOTEUSER statement.

REMOTEUSER Add

This statement adds to the USERDATAFILE an entry or entries that enable a specified remote usercode or usercodes to access the local host from a remote host or hosts.

If a given usercode named here appears also in a MAKEUSER statement, a user can log on to the local host under that usercode.

Syntax

<remoteuser add>

── + ─┬─ REMOTEUSER ─┬─┬─<usercode entry>─────┬────────────────────────┤
      └─ RU ─────────┘ ├─<nousercode entry>───┤
                       └─<anonymousftp entry>─┘

<usercode entry>

──┬─ <usercode> ─┬─ OF ─┬─<host list>─┬────────────────────────────────►
  └─ *ANYUSER  ──┘      └─ *ANYHOST ──┘
►─┬────────────────────────────────────────────┬───────────────────────┤
  │ ┌◄───────────────────────────────────────┐ │
  └─┴─┬─/1\─ LOCALALIAS ── = ──<usercode>──┬─┴─┘
      ├─/1\─ SERVICE ── = ── AUTOSTAXFER ──┤
      └─/1\─ COMMENT ── = ──<comment text>─┘
Note: Although the syntax of the three types of change statements are described separately, the changes can be performed with a single statement by combining the LOCALALIAS, SERVICE, and COMMENT attribute changes.

<nousercode entry>

── *NOUSERCODE ── OF ─┬─<host list>─┬─ LOCALALIAS ── = ──<usercode>────►
                      └─ *ANYHOST ──┘
►─┬───────────────────────────────┬────────────────────────────────────┤
  └─ SERVICE ── = ── AUTOSTAXFER ─┘

<anonymoustftp entry>

── *ANONYMOUSFTP ── OF ─┬─<host list>─┬─ LOCALALIAS ── = ──<usercode>──────┤
                        └─ *ANYHOST ──┘

<host list>

  ┌◄─────────────── , ──────────────┐
──┴─┬─<host name>─────────────────┬─┴──────────────────────────────────┤
    ├─ *IPADDRESS <IP address> ───┤
    └─ *DOMAINNAME <domain name> ─┘

<comment text>

A quoted string of no more than 100 characters (the maximum length is limited by the length of the other attributes).

Explanation

For each REMOTEUSER ADD statement, the remoteuser entry for the specified usercode has a <host name, localalias> pair added to the entry. If a service is also specified, a <host name, localalias, service mask> group is added. The USERDATAFILE must contain a user entry for the local-alias usercode. If a local-alias usercode was not specified, the USERDATAFILE must contain a user entry for the remote usercode.

Examples

REMOTEUSER Examples lists examples that illustrate the <remoteuser add> statement. Note that access is allowed only if the local usercode is a valid user of the local host.

Table 56. REMOTEUSER Examples

The statement . . .

Is used to . . .

+REMOTEUSER SALES OF BRONX;

Add the remote usercode SALES to the USERDATAFILE for the host BRONX.

+REMOTEUSER PAYROLL OF BOSTON, DETROIT LOCALALIAS = RPAYROLL;

Add the remote usercode PAYROLL to the USERDATAFILE for the hosts BOSTON and DETROIT. RPAYROLL is defined as the local usercode.

+REMOTEUSER DONALD OF *IPADDRESS 128.212.32.1;

Add the remote usercode DONALD to the USERDATAFILE with an IP address of 128.212.32.1.

+REMOTEUSER *ANYUSER OF DETROIT;

Add an entry in the USERDATAFILE that enables access by any remote usercode from the host DETROIT.

+RU *ANYUSER OF WALLSTREET LOCALALIAS = WALLSTUSER;

Add an entry in the USERDATAFILE that enables access by any remote usercode from the host WALLSTREET.

+REMOTEUSER *ANYUSER OF *ANYHOST;

Add an entry in the USERDATAFILE that enables access by any remote usercode from any host.

+REMOTEUSER *NOUSERCODE OF NEWYORK LOCALALIAS = BIGAPPLE;

Add an entry that enables access by any user without a usercode from the host NEWYORK if the USERDATAFILE contains a USER entry for the usercode BIGAPPLE.

+REMOTEUSER STAFF OF CHICAGO SERVICE=AUTOSTAXFER

Add the remote usercode STAFF to the USERDATAFILE for the host CHICAGO and with the automatic log-on service AUTOSTAXFER.

+REMOTEUSER *ANONYMOUSFTP OF *ANYHOST LOCALALIAS=ANONFTP

Add an entry in the USERDATAFILE which enables remote access to the Anonymous FTP facility.

+RU MIKEG OF WASHINGTON COMMENT = "Mike Guest in the SEATTLE office, x1234"

Add the remote usercode MIKEG to the USERDATAFILE for the host WASHINGTON and associate a comment with the entry


REMOTEUSER Display

This statement

  • Returns information about existing entries to the USERDATAFILE

  • Displays USERDATAFILE entries enabling one or more remote usercodes (including anonymous users) to access the local host from specific remote hosts or from any remote host

Depending on the contents of the USERDATAFILE, each entry can be

<usercode>/<host name>

<usercode>/<IP address>

<usercode>/ <domain name>

<usercode>/*ANYHOST

*ANYUSER/<host name>

*ANYUSER/<IP address>

*ANYUSER/<domain name>

*ANYUSER/*ANYHOST

*NOUSERCODE/<host name>

*NOUSERCODE/<IP address>

*NOUSERCODE/<domain name>

*NOUSERCODE /*ANYHOST

*ANONYMOUSFTP/<host name>

*ANONYMOUSFTP/<IP address>

*ANONYMOUSFTP/< domain name>

*ANONYMOUSFTP /*ANYHOST

If an entry contains a local-alias usercode, that alias also appears.

Syntax

<remoteuser display>

 ──┬─ REMOTEUSER ─┬─┬─<usercode>──────┬─┬────────────────────┬──────────┤
   └─ RU ─────────┘ ├─ *ANYUSER ──────┤ └─ OF ─┬─<host list>─┤
                    ├─ *NOUSERCODE ───┤        └─ *ANYHOST ──┘
                    └─ *ANONYMOUSFTP ─┘

Explanation

The REMOTEUSER Display statement returns all entries that allow access by the specified usercode from the specified hosts if a host list is present.

If the entry contains a

  • Local-alias, that alias appears also

  • Service list, the list of services is displayed

Examples

REMOTEUSER Display Examples shows examples that illustrate the <remoteuser display> statement.

Table 57. REMOTEUSER Display Examples

The statement . . .

Is used to . . .

REMOTEUSER SALES;

Display all of the USERDATAFILE entries that enable the remote usercode SALES to access the local host.

RU PAYROLL OF BOSTON;

Display all of the USERDATAFILE entries that enable the remote usercode PAYROLL of host BOSTON to access the local host.

REMOTEUSER BROWN OF *DOMAINNAME MP021.MV.OSIRIS.COM;

Display all of the USERDATAFILE entries that enable the remote usercode BROWN of the specified domain name to access the local host.

REMOTEUSER *NOUSERCODE OF NEWYORK;

Display all of the USERDATAFILE entries that enable any remote user without a usercode of host NEWYORK to access the local host.


REMOTEUSER Delete

This statement deletes from the USERDATAFILE the usercode of a remote user. The usercode no longer has distributed systems services access to the system.

Syntax

<remoteuser delete>

 ── ─ ─┬─ REMOTEUSER ─┬─┬─<usercode>──────┬─ OF ─┬─<host list>─┬────────┤
       └─ RU ─────────┘ ├─ *ANYUSER ──────┤      └─ *ANYHOST ──┘
                        ├─ *NOUSERCODE ───┤
                        └─ *ANONYMOUSFTP ─┘

Explanation

For each REMOTEUSER delete statement, the remoteuser entry for the specified usercode has the <host name, localalias> pair or the <host name, localalias, service mask> group is deleted.

Examples

REMOTEUSER Delete Examples shows how the <remoteuser delete> statement is used.

Table 58. REMOTEUSER Delete Examples

The statement . . .

Is used to . . .

-RU PAYROLL OF BOSTON, DETROIT;

Delete the usercode PAYROLL from the hosts BOSTON and DETROIT.

-REMOTEUSER *ANYUSER OF DETROIT;

Delete the ANYUSER entry from the USERDATAFILE for the host DETROIT.

-RU HICKOK OF *DOMAINNAME MP021.MV.OSIRIS.COM;

Delete the usercode HICKOK from the access list for the specified domain name.

-REMOTEUSER *NOUSERCODE OF NEWYORK;

Delete all nonusercode users from the host NEWYORK.

Prev  Up  Next
Managing Usercodes for Remote Users  Home  Functional Considerations