Users logged into the mis group on any workstation

user misusers group=mis

###########################################################
# APPLIES TO USERS LOGGED INTO THE MIS GROUP ON  
# ANY WORKSTATION.
user misusers  cpu=@           group=mis
begin
#  OBJECT     ATTRIBUTES       ACCESS CAPABILITIES
# ----------  ------------     ----------------------
job           cpu=$thiscpu  + folder = /
              + logon=@  + cpufolder = /      access=@
job           cpu=$thiscpu  + folder = /
              + logon=@
              ~ logon=root + cpufolder = /    access=submit,use
schedule      cpu=$thiscpu   + folder = / 
               + cpufolder = /  access=add,submit,modify,display
cpu           cpu=@ + type=agent,s-agent,fta + folder = /
               access=console,fence,limit,link,start,stop,unlink
parameter     name=r@   + folder = / + cpufolder = /    access=@
parameter     name=@    + folder = / + cpufolder = /    access=display
runcygrp    name=@   + folder = /  access=add,delete,display,modify,use,list,unlock
folder        name=/           access=@
end
###########################################################

This user definition applies to users logged into the mis group on workstations defined in the root folder. They are given a limited set of access capabilities to fault-tolerant, standard, and dynamic agents. Resources, prompts, files, calendars, and workstations are omitted, which prevents access to these objects. These users are given unrestricted access to parameters with names that begin with r, and that are defined in the root folder, but can only display other parameters.