z/OS Security Server RACF Callable Services
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


ICSF considerations

z/OS Security Server RACF Callable Services
SA23-2293-00

R_datalib processing makes use of ICSF services. If your installation has established access control over ICSF services, then the callers of R_datalib will need to be granted READ authority to ICSF services according to the following table:
Table 1. ICSF services used by R_datalib
R_datalib function Specific parameters ICSF Service (CSFSERV class resource)
DataGetFirst and DataGetNext When Ring_name is a z/OS® PKCS #11 token CSF1TRL and CSF1GAV
GetUpdateCode When Ring_name is a z/OS PKCS #11 token CSF1TRL
DataPut When a label of an existing PKDS private key is specified CSFPKRR
If your installation has also established access control over keys stored in ICSF, the issuer of the DataPut function must have READ access authority to ICSF key by label set up by the profile in the CSFKEYS class too.
Parent topic: R_datalib (IRRSDL00 or IRRSDL64): OCSF data library

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014