What individual users see and do when they log on to the WUI can be controlled by the user group profile to which they belong. This gives WUI administrators the ability to tailor the WUI to the needs of various groups of users. You can, for example, use the view editor to create a new WUI menu containing only operations views and make this the default menu for a group of users. This would provide a simplified operational WUI for users who only need to carry out this kind of task.
A user group profile can contain the following information:
If a profile does not have some of these values specified; for example if the default menu value is blank, the corresponding WUI parameter value specified in the JCL is used. This is also the case for any invalid values set in the profile, for example if the specified default menu does not exist.
User group profiles are created and managed using the user editor, which can be accessed by administrators with the necessary authority from the WUI navigation menu.
To facilitate this CICSPlex® SM uses an object called a user group. User group objects, like view and menu objects, can be imported and exported using the COVC transaction.
User group profiles can be used only if security is active in the WUI. A user group object relates to a user group name in the external security manager (ESM). When a user signs on to the WUI the signon procedure gets the accessor environment element (ACEE) from the ESM for the user. The ACEE is used to retrieve the user's default group. The default group name is then used to obtain a corresponding group object in the WUI. If there is no corresponding group object found in the WUI cache when the user signs on, the default values specified in the WUI parameters in the JCL are used for that user.
User group profiles can be used only if security is active in the Web User Interface. A user group object relates to a group name in the external security manager (ESM). When a user signs on to the Web User Interface the user group object is assigned in different ways depending on the SIGNONPANEL Web User Interface system parameter.
The GROUP option will be displayed on the sign on screen.
Use of * (X'5C') in a user group name causes some restrictions if the COVC EXPORT function is used. See the description of the Name field in 'Exporting view set or menu definitions' for details.
In order to manage user group profiles an administrator needs update access to a new ESM facility profile named EYUWUI.wui_server_applid.USER where wui_server_applid is the application ID of the WUI server to which this profile relates.
Setting up a new user group involves the following steps:
This section describes how to create and manage user group profiles in the user editor. The user editor is also used to create user profiles.
The hyperlink that launches the user editor appears in the Special section of the navigation frame. A signed on user can see a user editor hyperlink only if he or she has at least update access to the ESM facility profile EYUWUI.wui_server_applid.USER where wui_server_applid is the application ID of the WUI server. Clicking on this hyperlink launches a new browser window.
When you launch the user editor you can choose to edit user groups or users. Figure 24 illustrates the relationships between the screens in the user group section of the user editor.
Using the user editor is straightforward. For example to create a new user group profile follow this procedure:
To edit a group, click on Edit in the User Group Editor screen to open the Edit User Group screen. Select an existing group and click OK. This opens an Edit User Group Profile screen containing details of the selected group. Make your changes and click Save to update the profile.
To delete a group, click on Delete in the User Group Editor screen to open the Delete User Group screen. Select an existing group and click OK to open the Confirm User Group Delete screen. Click OK again to confirm the operation.