ESI is an optional feature that allows you to secure CA Endevor SCM’s access and action functions through IBM's System Authorization Facility (SAF), using the site security package on your system. It does this by allowing you to define the rules for functional security in your site security package (RACF, CA ACF2 for z/OS, CA Top Secret for z/OS) rather than in the native tables supplied with CA Endevor SCM. For more information on how to enable and use CA Endevor SCM ESI, see Enabling External Security Interface (ESI).
The following diagram shows how ESI interacts with site security packages.
If ESI is enabled, security rules must be defined to the site security package. In the previous diagram, CA Endevor SCM uses IBM's System Authorization Facility (SAF) calls to query the installed security package instead of using native security tables.
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|