z/OS MVS Programming: Callable Services for High-Level Languages
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


General security product authority

z/OS MVS Programming: Callable Services for High-Level Languages
SA23-1377-02

A BCPii application needs to have general authority to use BCPii. The profile HWI.APPLNAME.HWISERV in the FACILITY resource class controls which applications can use BCPii services. The security administrator must give at least read authority to this resource, in addition to granting authority to any specific resource that the application is attempting to access. In addition, BCPii requires that the FACILITY class to be RACLIST-specified. The RACF syntax is as follows: 
RDEFINE FACILITY HWI.APPLNAME.HWISERV UACC(NONE)
PERMIT HWI.APPLNAME.HWISERV CLASS(FACILITY) ID(userid) ACCESS(READ)
SETROPTS RACLIST(FACILITY) REFRESH
This RACF example allows user JOE to use BCPii services in general:
RDEFINE FACILITY HWI.APPLNAME.HWISERV UACC(NONE)
PERMIT HWI.APPLNAME.HWISERV CLASS(FACILITY) ID(JOE) ACCESS(READ)
SETROPTS RACLIST(FACILITY) REFRESH
Generic definitions may be created instead of specific users if the installation does not have specific definitions for every user.
This RACF example defines user IDs BCPII and HWISTART to the security product: 
ADDUSER BCPII DFLTGRP(SYS1) 
RDEFINE STARTED BCPII.** STDATA(USER(BCPII) GROUP(SYS1))
ADDUSER HWISTART DFLTGRP(SYS1) 
RDEFINE STARTED HWISTART.** STDATA(USER(BCPII) GROUP(SYS1))
SETROPTS RACLIST(STARTED) REFRESH
Parent topic: Setting up authority to use BCPii

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014