4.4.3 Authorization Assignment

4. Operation › 4.4 Administering CA MICS › 4.4.3 Authorization Assignment

4.4.3 Authorization Assignment

-------------------------- Authorization Assignment ------------ ROW 1 OF 9

Command ===>                                                  Scroll ===> CSR

Line Cmds: S Select I Insert R Repeat D Delete 1 1 1 1 1 1 1 1 1 1 2 2 2 Cmd User ID Comment 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 - -------- -------------------- - - - - - - - - - - - - - - - - - - - - - - _ ACCT. Accounting Staff Y Y Y Y N N N N N N N N N Y Y Y N N N Y N N _ CAP. Capacity Planners Y Y Y Y N N N N N N N N N N N N Y N N Y N N _ DATAENT. Data Entry Clerks Y Y N Y N N N N N N N N Y N N Y N N N N N N _ HLPUSR. Help Desk Staff Y Y Y Y N Y Y N Y N N N N N N N N N N Y N N _ MGMT. Managers Y Y N N N N N N N N N N N N N N N N Y N N N _ OPRUSR. Operations Staff Y Y N Y N N Y N Y N N N N N N N N N N Y Y N _ SYS. Systems Pgming Staff Y Y Y Y N Y Y N N N N N N N N N N N N N Y N _ SYSUSR1 CA MICS Administrator Y Y Y Y Y Y Y Y Y Y Y Y Y Y Y Y Y N N Y Y N _ USER. General Users Y Y Y N N N N N N N N N N N N N N N N N N N ****************************** BOTTOM OF DATA ********************************

. . . . . . . . . . . . . . . . . . . . . . . . . .


 Use Authorization Assignment to review and update
 specifications controlling access to the CA MICS ISPF
 applications.  Authorization Assignment is the application
 security provided by the CA MICS Workstation Facility (MWF).
 You can use Authorization Assignment to limit access to each
 of the MWF applications and also to limit the use of
 facilities within those applications.
 
 Authorization Assignment does NOT secure the CA MICS
 database.  Authorization Assignment can block access to MICF
 facilities, but that does NOT prevent database access.  You
 must use your installation's data set security facilities
 (for example, RACF) to limit access to the CA MICS data sets.
 See the CA MICS Data Sets section (4.3.10) of this guide for
 a list of CA MICS data set names and each data set's purpose.
 
 
 AUTHORIZATION ASSIGNMENT PANEL
 
 The Authorization Assignment panel presents a scrollable
 display of the MWF Authorization table.  Each row of the
 display specifies the MWF authorization for an individual
 user or a group of users.  You can update individual rows,
 insert (add) new rows, and/or delete existing rows of this
 table.  Each column of the display is described below.
 
 User ID - Required.  Specify a seven-character TSO user ID
 (or logon ID) to define MWF authorization for a specific TSO
 user.  Specify one to seven characters followed by a period
 (.) to define MWF authorization for a range of users (that
 is, specify ABC.  to specify authorization for user IDs from
 ABC through ABC9999).  When a user accesses MWF, the
 authorization table will be searched for an exact match with
 the user's TSO logon ID.  If an exact match is not found,
 then the table will be scanned for a user ID range that
 includes this user ID.  If such a range is found, then
 authorization specifications in that row will apply.  If no
 match is found, access to MWF is rejected.
 
 Comment - Optional.  One to twenty characters.  This is
 provided for your convenience to include a meaningful label
 for the authorization assignment.  It could be the user's
 name or a description of the user group defined by the
 authorization specification.  This parameter provides the
 initial default author specification for MICF inquiry
 composition.
 
 The remaining columns of the display are the actual
 authorization specifications.  They may be updated directly
 on this scrollable display or through the fixed data entry
 panel displayed when an authorization row is selected using
 the S line command or SELECT primary command.  Specify Y
 (Yes) to allow access to the corresponding application or
 application function.  Specify N (No) to refuse access.
USER AUTHORIZATION PANEL

----------------------------- User Authorization ----------------------------

Command ===>

. . . . . . . . . . . . . . . . . . . . . . . . . .

The User Authorization panel displays the contents of the
 selected row from the MWF authorization table.  Specify YES
 (or Y) following an authorization category's prompt to allow
 access to the corresponding application or application
 facility.  Specify NO (or N) to refuse access.
 
 
 AUTHORIZATION CATEGORY DEFINITIONS
 
 In order to access MWF and use CA MICS facilities, a user
 must have READ access to most CA MICS sharedprefix and prefix
 level data sets.  Additional READ and UPDATE authority is
 required in order to use certain MWF application facilities.
 Specific access requirements are documented below.
 
 The following authorization categories control access to
 CA MICS online applications selected from the MWF primary
 menu.
 
   1 - Documentation Access
 
   Allows the user to select the Documentation Access option
   to search and browse CA MICS documentation.
 
   2 - MICF
 
   Allows the user to select the CA MICS Information Center
   Facility (MICF) option and to access the CA MICS database
   using MICF facilities.
 
   19 - Immediate Reports and Graphics Review
 
   Causes the user to skip directly to the MICF Reports and
   Graphics option for online review of production reports and
   other inquiry outputs.  This category is intended for those
   users who access the CA MICS online facilities primarily to
   review production reports and graphics (for example,
   managers).  Using this option, these "reports only" users
   can review current production reports with a single panel
   interaction (that is, they can select CA MICS and
   immediately see reports).
 
   3 - SAS with CA MICS Libraries
 
   Allows the user to select the SAS With CA MICS Libraries
   (MSAS) option and to access the CA MICS database and
   libraries with the SAS Display Manager (interactive SAS).
 
   4 - Management Support Applications
 
   Allows the user to select the Management Support
   Applications option.  Additional authorization is required
   to access a specific management support product's ISPF
   application.
 
   5 - CA MICS Administrator
 
   Allows the user to select the CA MICS Administrator
   Facility (MAF) option and to access all of the CA MICS
   administrator facilities including Authorization
   Assignment, Product Support Program (PSP) Online Services,
   and Operational Status and Tracking.  Requires UPDATE
   authority for most sharedprefix and prefix CA MICS
   libraries, including the sharedprefix.MICS.ISPTLIB data
   set.
 
 The following authorization categories control access to MICF
 Administration facilities.
 
   6 - Shared Inquiry Catalog
 
   Allows the user to update the shared inquiry catalog.  New
   inquiries can be added to the catalog and existing entries
   can be deleted.  Requires UPDATE authority for the
   sharedprefix.MICS.ISPTLIB data set.
 
   7 - Shared Inquiry Output Cat
 
   Allows the user to update the shared inquiry output
   catalog.  New reports and color graphics can be added to
   the catalog and existing entries can be deleted.  Requires
   UPDATE authority for the sharedprefix.MICS.ISPTLIB,
   sharedprefix.MICS.MWFPDS.DATA, and
   sharedprefix.MICS.MWFSAS.DATA data sets.
 
   8 - Shared MICF Options
 
   Allows the user to update the shared options
   specifications.  Requires UPDATE authority for the
   sharedprefix.MICS.ISPTLIB data set.
 
   20 - Production Reporting
 
   Allows the user to access the MICF Production Reporting
   Administration option.  Requires UPDATE authority for the
   sharedprefix.MICS.ISPTLIB data set so the user can insert
   new production reporting definitions or change CA MICS
   production job and/or database unit associations.
   However, users can update individual production reporting
   job stream definitions if they are given UPDATE authority
   for the specific, unique data sets associated with the
   production reporting job stream.
 
 The following authorization categories relate to the
 Documentation Access application.
 
   9 - Document Printing
 
   Allows the user to print CA MICS documentation. Requires
   UPDATE authority for the sharedprefix.MICS.ISPTLIB data
   set.
 
   10 - Reserved
 
   Reserved for future use.
 
 The following authorization categories relate to the
 Accounting and Chargeback (ACT) application.
 
   14 - ACT Access
 
   Allows the user to select the Accounting and Chargeback
   option from the Management Support Applications menu.
 
   15 - ACT Parameter Generations
 
   Allows the user to select the Parameter Specification
   option from the Accounting and Chargeback primary menu.
   Requires UPDATE authority for the sharedprefix.MICS.ISPTLIB
   and the sharedprefix.MICS.TABLES data sets.
 
   16 - ACT Manual Data Entry
 
   Allows the user to select the Application Database Data
   Entry option from the Accounting and Chargeback primary
   menu.  Requires UPDATE authority for the
   sharedprefix.MICS.TABLES data set.
 
 The following authorization categories relate to the Capacity
 Planner (CAP) application.
 
   17 - CAP Shared Catalog Admin.
 
   Allows the user to update the shared capacity planning file
   catalog.  New file definitions can be added to the catalog,
   existing entries can be deleted, shared files can be
   updated (executed), and saved forecasts can be replaced.
   Requires UPDATE authority for the sharedprefix.MICS.ISPTLIB
   and sharedprefix.MICS.CAPACITY data sets.
 
   18 - Reserved
 
   Reserved for future Capacity Planner use.
 
 The following authorization category relates to the Network
 Service Reporter (NSR) application.
 
   21 - NSR Administration
 
   Allows the user to select the Network Service Reporter
   Administration option from the Management Support
   Applications menu.  Requires UPDATE authority for the
   sharedprefix.MICS.ISPTLIB data set and the prefix CA MICS
   libraries for CA MICS unit databases in which you have
   installed the Network Service Reporter.
 
 The following authorization category is reserved for future
 use.
 
   22 - Reserved

Tell Technical Publications how we can improve this information