IBM Power Ideas Portal


This portal is to open public enhancement requests against IBM Power Systems products, including IBM i. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Add a new idea Subscribe
Status Not under consideration
Workspace IBM i
Categories IBM i Access Family
Created by Guest
Created on Sep 21, 2021

RELATED IDEAS

IBM Access Client Solutions (ACS) - restrictions in Filter option in Printer Output should reflect authority in user profile

To restrict/not restrict Filter option in Printer Output should reflect authority in user profile.

The problem is when you have a properties file that all users are using.
Here com.ibm.iaccess.splf.FilterRestricted=true

But this also inhibits users with *SPLCTL Special authority to modify the Printer Output filter.
With green screen wrksplf this is not a problem because *SPLCTL Special authority is respected.

An improvement for ACS could be that the property could be set to something like
com.ibm.iaccess.splf.FilterRestricted=*UserProfile

When the user has *SPLCTL authority there should be no restrictions and the filter could be modified.
And if they don't have it, then the filter could not be modified.

This solution also makes it easier to grant special users authority to look at other spool files.


Use Case:

To restrict/not restrict Filter option in Printer Output should reflect authority in user profile.

This solution makes it easier to grant special users authority to look at other spool files.


This RFE is based on comments in
http://www.ibm.com/developerworks/rfe/execute?use_case=viewRfe&CR_ID=152305
IBM asked us to raise a new RFE


Idea priority Low
  • Guest
    Reply
    |     Oct 7, 2021

    Thank you for submitting your Request For Enhancement. ACS accesses objects on the IBM i via the provided user profile. The user will have the same access to objects from ACS as they would from a 5250 display session using the corresponding command. The proper place to restrict access for any given user is on the IBM i. For example, a user may be able to use wrksplf to see a list of spool files, but they are not able to view them if they lack authority. The same is true if they are using the Printer Output feature of ACS. The com.ibm.iaccess.splf.FilterRestricted property was added as a convenience for restricting what spool files users would be able to see existed. It was not added for enforcing spool file security. Optionally honoring the com.ibm.iaccess.splf.FilterRestricted property based on the user's current authority would require more than just checking *SPLCTL. Rather than having ACS apply convenience filters based on IBM i user profile settings, we suggest having different AcsConfig.properties files for different users.

    After evaluating your submission, the decision at this time is to not provide any additional support.

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.