If you are referring to MKS Implementer, I would suggest you contact
MKS Support (***@mks.com) for assistance with your question.

david

Not sure if I understand your question correctly, but I'll give it a
shot.
If you specified a library as *PUBLIC *EXCLUDE, there's no way to grant
authority for *PUBLIC to individual objects inside that library. You can
of course grant private rights to the library, either by user or by
group, but if nobody has access to the library, only users/groups with
*ALLOBJ authority can access that library.

However, if you leave the library open to the public, you can specify
access rights to any individual object inside that library. Not too wise
from a performance point of view, but sometimes you have no choice.

Look at it like an office building.
If the outer door is locked, nobody can enter (except the person holding
the key, e.g. the janitor).
If the outher door is open, access is controlled by the office doors
inside.

Exception to the rule is adopted authority, wher access can temporarily
be gained through the owner of a program the user is running, only for
that user, and only for as long as that program is active. Somewhat like
the janitor lets you in and stays with you as long as you're inside,
locking up again upon exit.

As this would seem to be pretty standard, this answer may not be what
you were after, but hey.
--
Best regards,

René H. Hartman
www.hac-maarssen.nl

Only if you ask for Implementer (currently at v 5.0). The answer is
yes. You set enviroment rights and access for users, as it is required.
These rights are restricted to such environment and enforced to its
rules.