Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
Permitting Access to RACF APPCTP Profiles z/OS MVS Planning: APPC/MVS Management SA23-1388-00 |
|
APPC/MVS administrators need READ access to view TP profiles and
UPDATE access to create, modify, and delete TP profiles. APPC users
need EXECUTE access to a TP profile to run the associated transaction
program. For example, assume TPB in Figure 1
is in a system-level TP profile with a database token of TOKEN2, protected
with the following command:
To protect TP profiles and the inbound TPs they represent, collect
the following information and, if necessary, give it to your security
administrator:
The security administrator should create an APPCTP profile for each of the TP profiles, using generic characters where appropriate, and give the appropriate access to each user. When you are ready to start using the protection defined in the
APPCTP profiles, the security administrator should activate the APPCTP
class and activate SETROPTS RACLIST processing for the class. For
example:
Any time an APPCTP profile is changed, SETROPTS RACLIST processing
for the APPCTP class must be refreshed for the change to take effect.
To protect TPs that do not have a TP profile, define an APPCTP profile that has a level of SYS1. |
Copyright IBM Corporation 1990, 2014
|