z/OS Security Server RACF System Programmer's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Controlling database token maintenance

z/OS Security Server RACF System Programmer's Guide
SA23-2287-00

The profiles in the APPCTP class make use of database token values. These values are maintained with the DBRETRIEVE and DBMODIFY commands of the APPC administration utility. The profile for protecting database tokens is defined to the RACF® FACILITY class. The profile is of the form: 
APPCMVS.DBTOKEN
Guideline: Define this profile with a UACC of NONE: 
RDEFINE FACILITY APPCMVS.DBTOKEN UACC(NONE)
Then use PERMIT commands to give user IDs and groups the appropriate access authority:
NONE
Not allowed to retrieve or modify the database tokens.
READ
Allowed to perform DBRETRIEVE on existing database tokens.
UPDATE
Allowed to perform DBRETRIEVE and DBMODIFY for the installation.

Each TP profile data set should have a database token defined for it. APPC/MVS does not check access requests if there is no database token defined for the TP profile data set.

Parent topic: Setting up your system to use APPC/MVS and VTAM

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014