CA ACF2 for z/VM controls access to the resources of your computer system. Resources are objects or system services, such as group IDs, VM accounts, and the DIAL command. CA ACF2 for z/VM also defines some system resources. You can define your own resources for protection.
After CA ACF2 for z/VM grants a user access to the system, that user can access any data that he owns. However, because he does not own system resources, he cannot use them or allow others to use them. CA ACF2 for z/VM protects all defined system resources by default. Because no user owns system resources, a security administrator must write resource rules to allow use.
|
Copyright © 2009 CA Technologies.
All rights reserved.
|
|