|
|
|
One of the most important security features in z/OS is the Authorized Program Facility (APF). If a program meets APF-authorization requirements, it can move into supervisor state and storage protection key zero by issuing the MODESET supervisor call (SVC). In supervisor state, a program can gain access to restricted machine instructions. In storage protection key zero, a program has unlimited access to all main storage.
APF‑authorized libraries contain programs that require APF authorization. Each member in these libraries can potentially circumvent the security mechanisms of z/OS and any access control software. For these reasons, APF libraries should be monitored closely for frequency of updates and proper access controls.
The APF List Library Display shows you the data set names of all APF libraries, how many extents each library has, the DASD volume where each APF library resides, and the OS password or RACF protection of the libraries.
To view the APF list library
The System Installation Choices Menu is displayed.
The Key z/OS Libraries submenu is displayed.
The APF List Library Display screen is displayed.
| Copyright © 2009 CA. All rights reserved. | Tell Technical Publications how we can improve this information |