Example: Set Up Security for Restricted Users

How to Set Up Security for CA CSM with CA Top Secret for z/OS › How to Set Up User Security › Define Security Profiles › Example: Set Up Security for Restricted Users

Example: Set Up Security for Restricted Users

You want to define a profile, MSMPRF3, that grants access to the following actions only:

Download product packages.
Install product packages that are downloaded outside of CA CSM.
Migrate an existing SMP/E environment to CA CSM.
Remove knowledge of an SMP/E environment from CA CSM.
Create deployments and deploy them (if they are the owner).
Create and maintain remote systems within the system registry, including profile information.
Implement prepared configurations on remote systems.

Issue the following CA Top Secret for z/OS commands:

TSS CREATE(MSMPRF3) NAME('CA CSM SMPE USER PROFILE') DEPT(MSMDPT) TYPE(PROFILE)
TSS PERMIT(MSMPRF3) CAMSM(ADMIN.SETTINGS.USER)      ACCESS(READ)
TSS PERMIT(MSMPRF3) CAMSM(SC.@ACTION.INSTPKG)       ACCESS(READ)
TSS PERMIT(MSMPRF3) CAMSM(SMPE.@ACTION.MIGRATE)     ACCESS(READ)
TSS PERMIT(MSMPRF3) CAMSM(SMPE.@ACTION.REMOVECSI)   ACCESS(READ)
TSS PERMIT(MSMPRF3) CAMSM(SYSREG)                   ACCESS(READ)
TSS PERMIT(MSMPRF3) CAMSM(METHOD.@DISPLAY)          ACCESS(READ)
TSS PERMIT(MSMPRF3) CAMSM(DEPLOY.@SELF)             ACCESS(READ)
TSS PERMIT(MSMPRF3) CAMSM(CONFIG.@ACTION.IMPL)      ACCESS(READ)