Introduction to External Security › How to Control Access to Product Resources with External Security

How to Control Access to Product Resources with External Security

As a security administrator in your mainframe environment, your responsibilities include implementing security in CA OPS/MVS.

You can perform the following tasks using external security:

• Check users executing commands and functions on an OSF server.
• Use standard system authorization facility (SAF) calls to control access to CA OPS/MVS resources without coding AOF rules or using the assembler exit. SAF lets you protect commands and features.

  Note: Consider keeping your currently supported methods with the assembler exit and existing rules in place for backward compatibility issues.

• Use the external security interface to implement external security within CA OPS/MVS.

  The following external security packages provide a high degree of control over unique resources used by CA OPS/MVS:

  • CA Top Secret
  • CA ACF2
  • RACF
• Centralize the maintenance of your security.

The following illustration shows the process for using external security to control user access to resources.

These chapters help you control access to product resources with external security:

• External Security Considerations
  • How Security Options Interact
  • Prepare to Use External Security
  • Control Table Access Using SQL Resources or OPSGLOBAL
• Implementing External Security with CA Top Secret
• Implementing External Security with CA ACF2
• Implementing External Security with RACF