POI Command Processors › Benefits of POI › Security Considerations for POI
Security Considerations for POI
The POI controls many areas of system operation, so you might want to restrict who can use it and what those users can do. You can maintain security for POI in any of these ways:
- Use RACF or CA ACF2 to restrict the use of the OPSRMT and OPSCMD command processors by user ID.
- Read-protect the library where the OPSCMD load modules reside.
- Use the OPUSEX exit routine to check the authority of users when they issue any POI command processor. All of the POI command processors call this exit, which is described in the chapter “Technical Notes” in the Administrator Guide.
- Write AOF security rules to check the authority of the users instead of using the OPUSEX exit routine.
Note: Security rules execute for all POI commands that are issued from an unsecured environment (for example, the TSO address space of a user).
Copyright © 2014 CA Technologies.
All rights reserved.
|
|