This chapter explains the CA ACF2 Option for DB2 non‑rule infostorage records. The chapter “Introducing CA ACF2 Option for DB2,” explains the CA ACF2 Option for DB2 rule infostorage records.
The DB2 EXITS infostorage record lets you tailor CA ACF2 Option for DB2 processing to suit your site’s needs. The DB2 OPTS infostorage record lets you define global options available to the system. It lets you specify the level of security most appropriate for each DB2 resource at your site. You can, for example, decide to abort all violations for tables and allow, but log, all violations to plans. You can also specify a group SYSID to override the DB2 sysid. The DB2 SAFELIST infostorage record allows you to specify resources that are for unrestricted access. No security calls and loggings will be done for resources on the SAFELIST. Access to these resources will automatically be granted.
Multiple DB2 records with different SYSIDs let you tailor the protection given to each resource on a particular DB2 subsystem. With multiple records, you can protect one subsystem with CA ACF2 Option for DB2 security and another with native DB2 security. Or you can allow access to tables on one subsystem and log access to tables on another subsystem. If you want symmetry, you can share one or more DB2 records among subsystems through masking. To create and maintain these infostorage records, use the ACF command or ISPF panels.
This section contains the following topics:
SYSID Use in CA ACF2 Option for DB2
How Do You Maintain DB2 Infostorage Records?
How Do You Maintain Records Using ISPF?
|
Copyright © 2011 CA Technologies.
All rights reserved.
|
|