Variable table security

This topic describes how to define security settings for variable tables.

User access to variable tables must be authorized in the HCL Workload Automation security file. As for other objects, the connector verifies the existence of proper authorization before executing an action that requires access to a variable table. The following new keyword is available in the security file for this purpose:
vartable name=@ access=add,delete,display,modify,list,use,unlock

You need use access to be able to reference a variable table from other objects (job streams, run cycles and workstations). Security filters are based on the name attribute only, but your HCL Workload Automation administrator has the option to use the $default keyword to specify security permissions on the default table, regardless of its name.

Permission to work on a variable is no longer based on the individual variable but on the table enclosing it. Access to a variable is granted only if the corresponding action on the enclosing variable table is permitted. The following table shows the corresponding permissions for variables and variable tables:
Table 1. The relationship between variable tables and their enclosed variables in the HCL Workload Automation security file
Defined access to vartable Allowed action on enclosed variables
modify add
delete
modify
display display
unlock unlock

Starting with version 8.5, the parameter keyword in the security file applies to local parameters only.

See the HCL Workload Automation Administration Guide for details about the security file.