Activating CA IDMS Security › Installation Defaults

Installation Defaults

Security at Installation

The RHDCSRTT module provided with installation of CA IDMS contains an initialized entry for each resource defined by CA IDMS.

The initial security option for each resource is 'OFF'. This means that at installation, there is no security enforcement through CA IDMS centralized security. Any user can create security definitions and grant privileges. Security information is stored in the security databases but has no effect until security is activated. Furthermore, the SVCNUM parameter is set to the SVC number that has been specified in the installation parameters.

Note: The identifier of the user who performed the installation is recorded as the owner of the demonstration database schemas in the schema definitions. Schema ownership affects security processing if security for the DB resource is subsequently activated.

Preserving the Initialized RHDCSRTT

You should preserve a secure copy of the initialized RHDCSRTT module provided at installation. This ensures that after you activate security, you can turn it off again simply by using the initialized RHDCSRTT module.

To preserve the initialized RHDCSRTT, you n take one of these steps:

• Create a backup copy of the initialized RHDCSRTT module that is provided in the installed CA IDMS load library. Store the backup copy in a secure load library and restore it to the CA IDMS installed load library if needed.
• Link your modified SRTT into a different load library during initial testing. To activate security, concatenate the load library containing the new SRTT with the CA IDMS load library. To deactivate security, remove the load library containing the new SRTT from the STEPLIB/CDMSLIB concatenation, or rename the RHDCSRTT load module.