Allowing z/OS UNIX users to change file ownerships

On z/OS® UNIX systems, superusers can change the ownership of any file to any UID or GID on the system. General users can only change the ownership of files that they own, and only to one of their own associated GIDs. This is considered the more secure implementation, and is the one recommended by IBM®. However, you can allow selected z/OS UNIX users to transfer ownership of files they own to any UID or GID on the system.

To allow z/OS UNIX users to transfer ownership of files they own to any UID or GID on the system, create a discrete profile in the UNIXPRIV class called CHOWN.UNRESTRICTED, and permit users with the appropriate access.