z/OS Security Server RACF General User's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Including the individual or group on the access list with ACCESS(NONE)

z/OS Security Server RACF General User's Guide
SA23-2298-00

Including the user or group on the access list with ACCESS(NONE) ensures that the user or group is denied access the data set.

To deny access by assigning a user or group an access of NONE, enter the PERMIT command with the ACCESS keyword as follows: 
PERMIT 'profile-name' ID(userid|groupname) ACCESS(NONE)
To deny access by assigning a user or group an access of NONE, enter the PERMIT command with the ACCESS keyword as follows: 
PERMIT 'profile-name' ID(userid|groupname) ACCESS(NONE)
  • Example 1:
    To deny user JONES the use of data set SMITH.PROJ.ONE, enter the following command: 
    PERMIT 'SMITH.PROJ.ONE' ID(JONES) ACCESS(NONE)
  • Example 2:
    To deny users JONES and MOORE the use of data set SMITH.PROJ.ONE, enter the following command: 
    PERMIT 'SMITH.PROJ.ONE' ID(JONES, MOORE) ACCESS(NONE)
  • Example 3:
    To deny group DEPTD60 the use of data set SMITH.PROJ.ONE, enter the following command: 
    PERMIT 'SMITH.PROJ.ONE' ID(DEPTD60) ACCESS(NONE)
  • Example 4:
    To deny groups DEPTD60 and DEPTD58 use of user data set SMITH.PROJ.ONE, enter the following command: 
    PERMIT 'SMITH.PROJ.ONE' ID(DEPTD60, DEPTD58) ACCESS(NONE)
Parent topic: Denying an individual or a group use of a data set

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014