You use the LINKAUTH MIM file to determine which CP commands can be issued from other systems and what LINK authority level is required to issue each command. A single CP command may be assigned to more than one authority level. There must be one entry in the file for each CP command users will be able to issue as a cross-system command. The format of the entry is as follows:
cpcommand minlen AUTHCLASS=authority
This value represents the CP command that users will be permitted to issue from other systems.
This value represents the minimum abbreviation length for this command. It is an optional entry. However, if it is specified, it indicates the shortest character string you must enter for this command to be recognized by CA MIC. It should be the same size or longer than the minimum abbreviation length that CP recognizes for this command. If minlen is shorter than the valid CP length for this command, CP will not recognize the shorter abbreviations. If minlen is not specified, no abbreviation is allowed.
This value represents the LINK authority levels needed to issue the CP command across systems. Valid authority levels are CONSOLE, INFO, IO, MASTER, OPERPRIV, SYSTEM, and USERPRIV.
If AUTHCLASS=ANY is entered, the CP command is unrestricted, and can be issued through linkages with any authority level. If one or more authority levels are specified, the command can be issued through linkages with any of the specified authorities.
If a CP command is not included in the LINKAUTH MIM file on a target system or if AUTHCLASS=NONE is specified, then users on external systems cannot send that command to the target system.
Note: Do not include CP as a valid command in the LINKAUTH MIM file because it will allow users to direct any CP command to this system by using CP as a command prefix.
A sample LINKAUTH MIM file is provided on the distribution tape. The following example shows a valid LINKAUTH MIM file.
* * SAMPLE LINKAUTH MIM FILE * ATTACH 3 AUTHCLASS=IO AUTOLOG 6 AUTHCLASS=(SYSTEM,CONSOLE) DETACH 3 AUTHCLASS=IO FORCE 5 AUTHCLASS=MASTER MESSAGE 1 AUTHCLASS=INFO MSG 1 AUTHCLASS=INFO QUERY 1 AUTHCLASS=ANY SHUTDOWN 8 AUTHCLASS=NONE VARY 4 AUTHCLASS=IO
In the preceding example, the CP SHUTDOWN command could have been omitted from the file since AUTHCLASS=NONE means that the command cannot be issued from another system. However, you may want to include the entry in the file to allow for a future change, or to emphasize that the CP SHUTDOWN command is not authorized for use.
For more information about the LINKAUTH MIM file, see the CA MIM Resource Sharing for z/VM Programming Guide.
|
Copyright © 2014 CA.
All rights reserved.
|
|