I have updated TCP parms and added the Top Secret permissions, but I am having trouble securing the port. My test user is still able to FTP. Here are the steps I performed:
1. Added statement VERIFYUSER TRUE to FTPSDATA
2. Added SAF FTP21 to port statement in TCPPROF
21 TCP FTPD1 SAF FTP21 ; FTP Server
3. Permitted ACID to prevent access:
TSS PER(PERKITO) SERVAUTH(EZB.PORTACCESS.*.TCPIP.FTP21) ACCESS(NONE)
When I ran test FTP job, the FTP is successful.
In the previous case, I issued command:
TSS PER(PERKITO) SERVAUTH(EZB.FTP) ACCESS(NONE)
This prevented the user from FTPing, but I realized when I wanted to grant permission to the new port, the user will not be able to FTP.