PU (privileged user) is a powerful usercode attribute. A user with privileged user status can access most files, regardless of the security attributes of those files. But a file with the SECADMIN privilege can be accessed only by a security administrator.
It is recommended that privileged user status be assigned only if it is necessary for the user to have that level of file and system access, and that the user can be trusted with that level of access.
| Note: | Note: See Securing Wrapped and Container Files for more information and recommendations. |
To provide a usercode with a subset of the capabilities associated with privileged user status, use the granulated privilege access rights.
