Previous Topic: Define the Group Profiles

Next Topic: Example: Set Up Security for Users


Example: Set Up Security for Administrators

You want to define a profile, MSMPRF1, that grants access to all actions. The actions include the management of system settings, system registry, methodologies, deployments, configurations, and of user settings.

Issue the following IBM RACF commands:

ADDGROUP MSMPRF1 DATA(‘CA CSM ADMIN’)

RDEFINE CAMSM LOGON UACC(NONE)
RDEFINE CAMSM ADMIN.* UACC(NONE)
RDEFINE CAMSM SC.* UACC(NONE)
RDEFINE CAMSM SMPE.* UACC(NONE)
RDEFINE CAMSM SYSREG.* UACC(NONE)
RDEFINE CAMSM METHOD.* UACC(NONE)
RDEFINE CAMSM DEPLOY.* UACC(NONE)
RDEFINE CAMSM CONFIG.* UACC(NONE)
RDEFINE CAMSM TM.* UACC(NONE)

PERMIT LOGON CLASS(CAMSM) ID(MSMPRF1) ACCESS(READ)
PERMIT ADMIN.* CLASS(CAMSM) ID(MSMPRF1) ACCESS(READ)
PERMIT SC.* CLASS(CAMSM) ID(MSMPRF1) ACCESS(READ)
PERMIT SMPE.* CLASS(CAMSM) ID(MSMPRF1) ACCESS(READ)
PERMIT SYSREG.* CLASS(CAMSM) ID(MSMPRF1) ACCESS(READ)
PERMIT METHOD.* CLASS(CAMSM) ID(MSMPRF1) ACCESS(READ)
PERMIT DEPLOY.* CLASS(CAMSM) ID(MSMPRF1) ACCESS(READ)
PERMIT CONFIG.* CLASS(CAMSM) ID(MSMPRF1) ACCESS(READ)
PERMIT TM.* CLASS(CAMSM) ID(MSMPRF1) ACCESS(READ)