Features, advantages and benefits
| Features | Advantages | Benefits |
|---|---|---|
| Supports policy definitions to provide mandatory and default values when RACF does not provide appropriate defaults. | Automates the process of ensuring mandatory values are used and prohibiting inappropriate default values. | Enables preventative controls for important policy and naming requirements to improve your security posture. |
| Prevents noncompliant administrative command execution. | Automatically verifies command keywords against your specified policies as soon as a RACF command is issued —from Time Sharing Option (TSO), Interactive System Productivity Facility (ISPF), batch jobs, or the operator console. | Proactively enforces compliance on RACF to help reduce the risks of security breaches and database "pollution." |
| Command Audit Trail feature stores changes to profiles in the RACF database. | Easily discover when a change to a profile was made and which administrator issued a particular command. | Eliminates labor intensive searches and investigation of log files and guessing about which changes occurred and by who. |
| Independent installation on all systems on which you want to enforce policies. | Implemented as part of the RACF Common Command Exit as a standard RACF application programming interface (API). | Eliminates designing, coding and maintaining assembler routines to handle parsing of keywords. You can use it independently of Security zSecure suite solutions and as an add-on to other third-party RACF tools that lack this functionality. |
| Grant users granular access to specific commands they would normally be unable to access. | Allows selective distribution of command access. | By providing access to the specific commands users require to do their jobs, you reduce the risks associated with accidental or malicious actions of privileged users. |
Business benefits
Mainframe policy enforcement solution adds granular controls for RACF to help prevent errors and noncompliant commands.
