Table 1 lists the new and changed RACF® commands. See z/OS Security Server RACF Command Language Reference for more detailed information.
Command name | Release | Description | Reason for change |
---|---|---|---|
Multiple commands: ADDUSER, ALTUSER, RDEFINE | z/OS® V2R1 |
|
|
ALTUSER | z/OS V2R1 | When NOEXPIRED is specified, the password or password phrase value you supply is subject to certain rules. Those rules include the basic RACF rules for password phrase syntax and any password syntax rules set by the installation through the SETROPTS PASSWORD(RULEn) command. | The NOEXPIRED parameter has been clarified for password and password phrase syntax rules. |
DELGROUP | z/OS V2R1 | Has been modified to issue a new ENF signal, ENF 79, for classes that have been defined in the RACF Class Descriptor Table with the SIGNAL=YES option | Alert listeners to a possible change in a user’s or group's authorizations to resources. |
DELUSER | z/OS V2R1 | Has been modified to issue a new ENF signal, ENF 79, for classes that have been defined in the RACF Class Descriptor Table with the SIGNAL=YES option | Alert listeners to a possible change in a user’s or group's authorizations to resources. |
PERMIT | z/OS V2R1 | Has been modified to issue a new ENF signal, ENF 79, for classes that have been defined in the RACF Class Descriptor Table with the SIGNAL=YES option | Alert listeners to a possible change in a user’s or group's authorizations to resources. |
RACDCERT | z/OS V2R1 |
|
|
z/OS V1R13 | The following new command options are added:
|
Hardware keys generated with elliptic curve cryptography (ECC) algorithms | |
z/OS V1R12 |
|
|
|
RACMAP | z/OS V1R13 | The QUERY function is added. | Distributed identity filters |
RALTER | z/OS V2R1 | Has been modified to issue a new ENF signal, ENF 79, for classes that have been defined in the RACF Class Descriptor Table with the SIGNAL=YES option | Alert listeners to a possible change in a user’s or group's authorizations to resources. |
z/OS V1R13 | The CHECKADDRS and NOCHECKADDRS options of the KERB operand are added. | Support for Network Authentication Service | |
z/OS V1R12 | The SYMCPACFWRAP suboperand is added to the ICSF operand. | Support of ICSF encrypted symmetric keys and CP Assist for Cryptographic Function (CPACF). Also, APAR OA29193. | |
RDEFINE | z/OS V2R1 | Has been modified to issue a new ENF signal, ENF 79, for classes that have been defined in the RACF Class Descriptor Table with the SIGNAL=YES option | Alert listeners to a possible change in a user’s or group's authorizations to resources. |
z/OS V1R13 | The CHECKADDRS option of the KERB operand is added. | Support for Network Authentication Service | |
z/OS V1R12 | The SYMCPACFWRAP suboperand is added to the ICSF operand. | Support of ICSF encrypted symmetric keys and CP Assist for Cryptographic Function (CPACF). Also, APAR OA29193. | |
RDELETE | z/OS V2R1 | Has been modified to issue a new ENF signal, ENF 79, for classes that have been defined in the RACF Class Descriptor Table with the SIGNAL=YES option | Alert listeners to a possible change in a user’s or group's authorizations to resources. |
z/OS V1R12 | The NOGENERIC operand is added. | Improved RACF serviceability | |
RLIST | z/OS V1R12 |
|
|
SEARCH | z/OS V1R12 | Support is added for the new UNUSABLE indicator in the listing of certain discrete profiles. | Improved RACF usability |
SET | z/OS V1R12 |
|
|
TARGET | z/OS V2R1 |
|
|
z/OS V1R13 |
|
TCP/IP support for RACF remote sharing facility (RRSF) |