Perform this step once for each z/OS image.

When running on a system with RACF installed, assign DFSMSrmm a RACF user ID by adding a definition to the RACF started procedures table, ICHRIN03, or in the RACF STARTED class. The RACF user ID can be the name of the DFSMSrmm procedure you created in Step 8: Updating the procedure library or any installation-selected RACF user ID you specify. As data sets are created for use by the DFSMSrmm procedure, add the RACF user ID to the access list for the data sets. Table 1 lists the data sets to which DFSMSrmm requires access.

If you plan to use the DFSMSrmm procedures EDGXPROC, BACKUPPROC, or LABEL, you must define the procedures in ICHRIN03 or the STARTED class. For more information on updating ICHRIN03 or the RACF STARTED class, see z/OS Security Server RACF System Programmer's Guide.

The DFSMSrmm procedures EDGXPROC and EDGBKUP require READ access to STGADMIN.EDG.HOUSEKEEP and ALTER access to the data sets specified in the BACKUP and JRNLBKUP DD statements. The LABEL procedure requires UPDATE access to STGADMIN.EDG.OPERATOR. If you are using the EDGRESET utility, you should make sure it has ALTER access to the STGADMIN.EDG.RESET.SSI access list. For additional information on authorization needed for the DFSMSrmm user ID, see Authorizing DFSMSrmm users and ensuring security.

To run DFSMSrmm with DFSMShsm, ABARS, Tivoli Storage Manager, or OAM, you must define their procedure names to RACF with the STARTED class. See z/OS DFSMSdfp Storage Administration for information about defining the procedure names.

You must define any user ID that requires DFSMSrmm services and makes use of OPERATIONS or privileged attributes to RACF.

If you are using an equivalent security product, review the RACF-related information to determine the changes that might be required to run DFSMSrmm with the equivalent security product.