Previous Topic: Activity EventNext Topic: Approval Category Decisions

Planning the ImplementationGroup and Operation Personnel DecisionsSecurity ControlSecurity Event Activation

Security Event Activation

All security events in CA‑PanAPT are inactive in the delivered system. To activate Security for your CA‑PanAPT environment, you must:

  1. Place your user-written Security Exit Program in a load library accessible to your CA‑PanAPT environment.
  2. Activate the Security Exit Program globally for the INIT and TERM events through the Control File maintenance–System Security Information panel.
  3. Activate the ACTIVITY event for each CA‑PanAPT activity where the ACTIVITY event is applicable.

When an event is active, the Security Exit Program determines whether the user's request for an activity can be honored (see the Activity Event topic presented earlier).

Normally, CA‑PanAPT user authority is considered before invoking the Security Exit Program. CA‑PanAPT user authority can be overridden by the Security Exit Program. CA‑PanAPT passes the Pass/Fail indicator to the Security Exit Program to let the exit know that this user passed or did not pass CA‑PanAPT authority checking. If the exit does not change the value of the Pass/Fail indicator, CA‑PanAPT acts as if the exit is not present or active.

The system administrator can decide the CA‑PanAPT activities where these security events will be active, allowing for further control of security processing.

When an event is inactive for an activity, CA‑PanAPT follows normal user authority to determine if the user's request can be performed.

The CA‑PanAPT system administrator can individually activate and deactivate the ACTIVITY event. Such flexibility enables a phased implementation of security in your CA‑PanAPT environment.