Alen,
The two tables to which I referred were the OCM which is F986101 and the Security Workbench which is F00950. I did not refer to the F98OWSEC.
It seems I misunderstood your request. I thought that you needed to prevent access to Universal Table Browser (UTB) and Data Browser (DB) applications from Production. I did not realise that the need was to prevent access to production data from these applications. Please confirm that this is the requirement.
The prevention of access to production data via UTB and DB probably requires prevention of access to the applications in production.
Please also consider Jim's (jdemes) suggestion of separate roles, one with access to production only and the other with access to non-production only, and separate security applied to these roles as needed. If it works, and I think it is very likely to, it would be a simpler, and therefore a better, arrangement than what I describe below.
In both options the same basic security needs to be applied. For production access no access to UTB (via security type 7 - External Calls) or DB (security Type B - Data Browser). For non production the production data sources need to be secured (via security type 4 - row security). Both options should be thoroughly tested before being put into production. Ironically, it was to test security changes that we temporarily used two copies of the F00950 as described below. It is mainly for this reason it is included in this post.
I will proceed with the requirement to prevent access to production data from the UTB and DB applications.
I am assuming that you have multiple environments and pathcodes in your JDE installation. Also I am assuming that access to these is needed in non-production environments and pathcodes.
Therefore different security needs to be applied to production compared to the non-production. Because the Security Workbench (F00950) cannot be set up to apply separately to production and non-production (only by User or Role), there will need to a separate copies for production and non-production. Entries in the OCM (F986101) would point to the copy of the Security Workbench (F00950) to use for the environment and/or User/Role.