|
|
|
Before you can use external security, set values for the following parameters:
Turns on or off external security. Specify ON to turn on external security.
Specifies the resource class name for your site. The value you specify depends on the external security manager running on your host system. Set this parameter to one of the following values:
You can create and use another resource class name that is based on the security package you have installed on the target z/OS system. See the chapter specific to your security package for information about selecting a resource class name.
Specifies the prefix for all security resource names that CA OPS/MVS defined. Use this value as the first or highest level qualifier for all resource names that your external security uses. The examples showing resource names in this guide use the default OP$MVS.
Sends trace messages to the OPSLOG. Specify ON to turn on trace messages. The trace messages show event checking information from SAF.
The message has the following format:
OPS2109T *CKSAF: <userid> <class> <prefix>.<rname>[.<ext>] <access> RC=<SAF rc> REASON:<reason>
Specifies the user ID the SAF resource check uses.
Specifies the SAF resource class.
Specifies the SAF resource prefix or first-level qualifier of the resource name.
Specifies the internally defined name to represent the security event.
(Optional) Specifies an additional qualifier for the resource class. The presence and content depend on the resource name.
Requests resource access. Valid values are either READ or UPDATE.
Specifies the return code from the SAF call.
Converts into text the reason code from the SAF call.
| Copyright © 2012 CA. All rights reserved. | Tell Technical Publications how we can improve this information |