Security requirements for z/OS
View a summary of the authorizations in a z/OS® environment.
The following table summarizes the UNIX System Services file access authorizations in a z/OS environment.
Task | Command | Authorization |
---|---|---|
Create, delete or migrate an integration node | mqsicreatebroker mqsideletebroker mqsimigratecomponents |
|
Change an integration node | mqsichangebroker |
|
Backup or restore an integration node | mqsibackupbroker mqsirestorebroker |
|
Start or stop an integration node | Console commands |
|
Create or delete an integration server | mqsicreateexecutiongroup mqsideleteexecutiongroup |
|
Start or stop a message flow | mqsistartmsgflow mqsistopmsgflow |
|
Create or delete a configurable service | mqsicreateconfigurableservice mqsideleteconfigurableservice |
|
List integration nodes | mqsilist |
|
Show integration node properties | mqsireportauthmode mqsireportbroker mqsireportfileauth mqsireportflowmonitoring mqsireportflowstats mqsireportflowuserexits mqsireportproperties mqsireportresourcestats |
|
Change integration node properties | mqsichangeauthmode mqsichangefileauth mqsichangeflowmonitoring mqsichangeflowstats mqsichangeflowuserexits mqsichangeproperties mqsichangeresourcestats |
|
Set and update passwords | mqsisetdbparms |
|
List set parameters that are on an integration node | mqsireportdbparms |
|
Deploy an object to an integration node | mqsideploy |
|
Reload an integration node, integration servers or security | mqsireload mqsireloadsecurity |
|
Trace an integration node | mqsichangetrace mqsireporttrace mqsireadlog mqsiformatlog |
|
Global cache administration | mqsicacheadmin |
|
Report or update an integration node mode | mqsimode |
|
Package a BAR file | mqsipackagebar |
|
Create or modify a web user account | mqsiwebuseradmin |
|