How to Define $SOLVE.FTP.CONTROL to Your Security System

Setting Up File Transfer Resources › How to Set Up SAF Access for TCPAccess Policy Rule Sets › How to Define $SOLVE.FTP.CONTROL to Your Security System

How to Define $SOLVE.FTP.CONTROL to Your Security System

The steps to define $SOLVE.FTP.CONTROL depend on your security system. They are described in the sections that follow.

Define $SOLVE.FTP.CONTROL to CA ACF2

To define $SOLVE.FTP.CONTROL to CA ACF2 for z/OS, compile the following rule to authorize users to maintain policy rules:

ACF
COMP *
$KEY($SOLVE.FTP.CONTROL) TYPE(FAC)
 UID(uid_string) SERVICE(UPDATE) ALLOW

STORE
END

Note: Rule lines after the $KEY line must be in column 2. If you compile this rule in TSO, you must enter a blank line after the last rule line entry and before the STORE command.

Define $SOLVE.FTP.CONTROL to CA Top Secret

Use this procedure to define $SOLVE.FTP.CONTROL to CA Top Secret for z/OS.

To define $SOLVE.FTP.CONTROL to CA Top Secret for z/OS

To define ownership of the SAF facility, enter the following command:
```
TSS ADD(department-id) IBMFAC($SOLVE.FTP.CONTROL)
```
To allow access to policy maintenance functions, enter the following command:
```
TSS PER(userid) IBMFAC($SOLVE.FTP.CONTROL) 
ACC(WRITE)
```

Define $SOLVE.FTP.CONTROL to RACF

Define $SOLVE.FTP.CONTROL to RACF by issuing the following command:

RDEFINE FACILITY $SOLVE.FTP.CONTROL  UACC(NONE)
PE $SOLVE.FTP.CONTROL CLASS(FACILITY) ID(userid or group)
ACCESS(UPDATE)
SETROPTS GENERIC(FACILITY) REFRESH