Predefined Resources Used by External Security
The CA OPS/MVS external security feature uses the following resources to make SAF calls:
- OP$MVS.AP - ADDRESS AP Host command
- OP$MVS.OPSAOF - ADDRESS AOF command
- OP$MVS.OPSBRW - OPSLOG Browse request
- OP$MVS.OPSCMD - ADDRESS OPER (MVS, VM, JES3, IMS)
- OP$MVS.OPSCTL.COF - ADDRESS OPSCTL COF request
- OP$MVS.OPSCTL.ECF - ADDRESS OPSCTL ECF request
- OP$MVS.OPSCTL.MSF - ADDRESS OPSCTL MSF request
- OP$MVS.OPSCTL.OPSLOG - ADDRESS OPSCTL OPSLOG request
- OP$MVS.OPSCTL.OSF - ADDRESS OPSCTL OSF request
- OP$MVS.OPSDOM - DOM message request
- OP$MVS.OPSEPI - ADDRESS EPI command or EPI request
- OP$MVS.OPSGLOBAL.global_variable_name - Global variable access and update request
- OP$MVS.OPSHFI - Shared file I/O request
- OP$MVS.OPSLOG - OPSLOG API request
- OP$MVS.OPSOSF - OPSOSF request (OSF command request)
- OP$MVS.OPSPARM - OPSPARM set parameters request
- OP$MVS.OPSREPLY - OPSREPLY (WTO/WTOR) request
- OP$MVS.OPSREQ - Attempt to execute a REQUEST rule
- OP$MVS.OPSRMT - SEND a command to a server request
- OP$MVS.OPSSMTBL - STATETBL request
- OP$MVS.OPSVIEW - OPSVIEW request
- OP$MVS.OPSWTO - OPSWTO and ADDRESS WTO (WTO, WTP, WTOR request
- OP$MVS.SOF - SOF command request
- OP$MVS.SQL - SQL/RDF request
- OP$MVS.SUBSYSDN - Subsystem data set open request
- OP$MVS.USS - ADDRESS USS command
Note: The two facilities OPSGLOBAL and OPSSQL have an additional suffix appended to their resource names. By default DEFSAF ALL only creates generic resources to control these two resources. You can control access to specific tables under the SQL resources or specific variables under the OPSGLOBAL facility. Simply run DEFSAF with the required parameters to get the resources defined to your external security manager.
More information:
How SAF Resources Are Defined to Use External Security
Commands and Functions that Generate External Security Events
Control Table Access Using SQL Resources or OPSGLOBAL