A rule entry can contain one of the following parameters specifying the access permission. This access permission applies only if the environment described by the rule matches the actual request.
Grant access to the resource.
Grant access to the resource but log it. CA ACF2 Option for DB2 writes a System Management Facility (SMF) record to log the event. CA ACF2 Option for DB2 logs the access request whenever DB2 calls for authorization. For static SQL, this means that CA ACF2 Option for DB2 creates an SMF record to log the access to a DB2 object when the application plan is bound because DB2 checks authorization during the bind. For some utilities, such as LOAD, this can also mean that CA ACF2 Option for DB2 records multiple loggings for a single execution of the utility.
Deny access to the resource. CA ACF2 Option for DB2 writes an SMF record to log the event. This parameter is the default.
|
Copyright © 2011 CA Technologies.
All rights reserved.
|
|