Introduction to External Security › How System Authorization Facility Works

How System Authorization Facility Works

CA OPS/MVS provides external security using System Authorization Facility (SAF) calls to the security product of your choice. CA OPS/MVS makes standard SAF calls to your external security manager using defined resource names. These calls check for security access to its resources.

The System Authorization Facility (SAF) is part of z/OS and initiates the following process:

• Provides the standard interface between z/OS and any external security manager.
• Receives an access request from a resource manager within z/OS and directs control to the external security manager.

The following illustration demonstrates how SAF works: