To see this screen, select option 1, Add Access Rule Set, from the Data Access Control screen. You can also select 2.1 from the Primary Option Menu and go directly to this screen.
M9PA‑2110 Add Access Ruleset Control Information (2.1.1) CA ACF2 for VM COMMAND ===> ___________________________________________________________ TIME 12:43 Rulekey ==> ________ Prefix ==> ________________________ Owner ==> ________________________ Resowner ==> ________ Mode ==> _____ Userdata ==> _______________________________________________________ Sort Option ==> _ Total Rule Entries : ___ PF1=Help 2=Print 3=Quit 4=Return 5=Execute 6= PF7= 8= 9= 10=Previous 11=Next 12=Ret
Following is a brief description of the fields on this screen.
Specifies the key value of the rule set. Normally, the rulekey is the ID of a VM user who has one or more MDISKs specified in the VM directory under his user entry. In most cases, this is also the user's CA ACF2 for VM logonid. The rulekey can also be the high‑level qualifier of an OS/390 or VSE data set. The rule ID specified can be up to eight characters long for access rules. You cannot mask this field.
Tells CA ACF2 for VM logonid the value to use as the high‑level qualifier for validations instead of the rulekey. You can enter up to 24 characters and specify multiple levels in this control statement (TLCAMS.V0191). You do not need to specify this field.
Tells CA ACF2 for VM logonid the ID of the owner of this rule set. This field is for information only. CA ACF2 for VM logonid does not process rules based on this parameter. This option does not grant the owner any special privileges relative to the rule set. You can enter the logonid, UID, name of the owner, or other values for local tracking purposes. This information is displayed when the rule set is decompiled.
Specifies the resource owner of the data set. CA ACF2 for VM logonid DFSMS support uses this information. CA ACF2 for VM does not use it. For more information, see the Administrator Guide.
Specifies the value of the mode for the rule set. Valid options are QUIET (the access is not checked), LOG (violations are allowed but logged), WARN (violators are warned, but the violation access is allowed), and ABORT (violations are not allowed). Use the $MODE option as a transition aid to phase in protection of data on a rule set basis. Two conditions must be met before the $MODE option is in effect:
Use this space for any comments you care to enter. This information does not affect the rule. This field can contain up to 64 characters. Information you enter in this field is stored with the rule set.
Specifies how CA ACF2 for VM logonid sorts this rule set. If you enter 1 or Y in this field, CA ACF2 for VM logonid does not sort the rule set from most specific to most general. This field does not appear if sort option is not active at your site.
Specifies the number of rule entries currently in the rule.
Press PF11 (NEXT) to add additional information to this rule set.
|
Copyright © 2009 CA Technologies.
All rights reserved.
|
|