![Start of change](./delta.gif)
(Optional) Steps for controlling user access to FTP JES mode
FTP uses the SAF resource EZB.FTP.sysname.ftpdaemonname.ACCESS.JES in the SERVAUTH class to control access to FTP JES mode. If you do not control access to this resource, then all users can use FTP JES mode. While in JES mode a user can submit a job, display job output, and delete job output. You are strongly encouraged to define a profile to control access to the EZB.FTP.sysname.ftpdaemonname.ACCESS.JES resource and grant read access only to users with a legitimate need to use JES mode.
Before you begin
You must have the authority to issue the necessary RACF® commands.
The following procedure assumes that you are using RACF as your security product. You can, however, use any SAF-compliant security product.
Procedure
Perform the following steps to control access to FTP JES mode.
Results
- When you are finished, only certain users are able to access FTP JES mode.
- When a user issues SITE FILETYPE=JES, the user's access to FTP JES mode is checked. If the user is not allowed to access FTP JES mode, the FILETYPE for the connection remains unchanged.
- When a user logs into an FTP server that is configured with FILETYPE JES, the user's access to FTP JES mode is checked. If the user is not allowed to access FTP JES mode, the FILETYPE for the connection is set to the default value of sequential (SEQ) mode.
![End of change](./deltaend.gif)