CA-GSS/ISERV Commands › CA-GSS Initialization Parameters › SECURITY

SECURITY

This parameter specifies how security is implemented in your installation and to assigns the CA‑GSS default user ID.

Syntax

SECURITY {NONE|SAF} [DEFAULT userid]

Parameters

NONE

No attempt is made to limit processing by user ID. All IMOD tasks and subtasks execute under the authority of the CA‑GSS address space.

CA‑GSS still attemptS to obtain a user ID for each requestor and that user ID IS passed to IMODs and ADDRESS environments that request the information.

SAF

This option should be coded if a SAF-compatible security system is installed. CA‑GSS' CALLs to SAF and its use of ACEEs are compatible with operating-system requirements. All security software should support the needed functions.

userid

There are times when a user ID cannot be assigned to a request. For example, some started tasks do not have user IDs. When no user ID can be determined, this default value is used.

Note: Your security system must recognize this default as a valid user ID.

Usage Notes

• Whenever a request for executing an IMOD is received, an attempt is made to determine the user ID responsible for the request.

  If the user ID cannot be determined, execution is performed under the default user ID, if one has been specified and it is valid. Otherwise, processing occurs under the authority of the CA‑GSS address space.

• The SECURITY is syntax checked and then ignored by SRVBATCH, SRVMAINT, and the IMOD Packaging Facility. These programs always execute under the security that the system assigns at the job initiation.
• If you do not specify the SECURITY parameter, no attempts are made to access the security system of your site.