The SECURITY Multi-User startup option has options related to path security. Path security allows you to identify security rules for different command paths.
The resource name syntax is DBaabbb. This is the format of a path security class-and-path option parameter, where DB is a constant. The aa represents valid class codes. These class codes correspond to the table classes defined in the external security system. The table classes must be defined before implementing path security in CA Datacom/DB. The bbb represents one of the ten valid path codes you can secure with path security. For a description of all ten paths, see Using the DTSYSTEM.
If a class-and-path is specified in the SECURITY Multi-User startup option, a security check is issued for the DTSYSTEM class with a resource name cxxname.class-and-path.The class-and-path name must exactly match the seven letters coded in the Multi-User startup option (DBaabbb).
If access is denied, this path is secured using the class-and-path specified. If access is granted, an error is returned and the MUF does not enable. For more information about path security, see Using the DTSYSTEM sub-section "SECURITY Multi-User Startup Option". The following is an example of coding the Multi-User startup option:
SECURITY DBDTSSR,DBDTRAT,DBDTSCI,DBDTRSR,DBDTSQL,DBDTRCI
The following rule secures all paths to the DTTABLE resource class with CA ACF2 and there is no security in place for the DFTABLE resource class.
SET RESOURCE(DTS) COMPILE $KEY(cxxname) TYPE(DTS) $USERDATA(Path Security Secure DTTABLE no security for DFTABLE DBDT- UID(logonid) PREVENT DBDF- UID(logonid) ALLOW STORE
|
Copyright © 2014 CA.
All rights reserved.
|
|