z/OS UNIX System Services Planning
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Checking user and group authority

z/OS UNIX System Services Planning
GA32-0884-00

The system uses two types of user and group IDs to check a user's authority to access different RACF®-protected resources. Examples of two RACF-protected resources are MVS™ data sets and local files.
  • MVS data sets: The system uses:
    • The user's RACF profile
    • The RACF group name for the user's current group
    • The RACF group name for each group the user is connected to, if list-of-group checking is active
  • local files: The system uses:
    • The effective UID
    • The effective GID
    • The GIDs for the supplemental groups, if list-of-group checking is active

Users must have a UID and GID defined when entering the TSO/E OMVS command and for certain kernel services.

Users also need search authority to all directories in the path name for their home directory. Set these permissions for each directory using the chmod command and either the MODE operand of the TSO/E MKDIR command or the mode option of the mkdir command that creates a directory. For more information, see Controlling access to files and directories.

Parent topic: Establishing UNIX security

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014