|
|
|
You want to define a profile, MSMPRF2, that grants access to all user actions, but the user can only access the SANDBOX system within the environment. A user with this setup cannot manage system or other users' settings, modify the system registry, nor create methodologies. The user can create deployments that are targeted for the SANDBOX system and can use methodologies that other CA CSM users defined. The user can create configurations that are targeted for the SANDBOX remote system using system profile values already defined, but cannot implement those configurations.
Issue the following CA Top Secret for z/OS commands:
TSS CREATE(MSMPRF2) NAME('CA CSM USER PROFILE') DEPT(MSMDPT) TYPE(PROFILE)
TSS PERMIT(MSMPRF2) CAMSM(ADMIN.SETTINGS.USER) ACCESS(READ)
TSS PERMIT(MSMPRF2) CAMSM(ADMIN.LMPKEY) ACCESS(READ)
TSS PERMIT(MSMPRF2) CAMSM(SC.@ACTION) ACCESS(READ)
TSS PERMIT(MSMPRF2) CAMSM(SMPE.@ACTION) ACCESS(READ)
TSS PERMIT(MSMPRF2) CAMSM(SYSREG.@DISPLAY) ACCESS(READ)
TSS PERMIT(MSMPRF2) CAMSM(SYSREG.@PROFILE.DISPLAY) ACCESS(READ)
TSS PERMIT(MSMPRF2) CAMSM(SYSREG.@SYSTEM.SANDBOX) ACCESS(READ)
TSS PERMIT(MSMPRF2) CAMSM(METHOD.@DISPLAY) ACCESS(READ)
TSS PERMIT(MSMPRF2) CAMSM(DEPLOY.) ACCESS(READ)
TSS PERMIT(MSMPRF2) CAMSM(CONFIG.@DISPLAY) ACCESS(READ)
TSS PERMIT(MSMPRF2) CAMSM(CONFIG.@ACTION.CREATE) ACCESS(READ)
TSS PERMIT(MSMPRF2) CAMSM(CONFIG.@ACTION.REMOVE) ACCESS(READ)
| Copyright © 2013 CA. All rights reserved. |
|