Components of NMSAF

Using the NMSAF Security Solution › Components of NMSAF

Components of NMSAF

The NMSAF security solution consists of the following components:

UAMS—NMSAF uses the UAMS file to store user records that contain the access authorization details for a user ID. You can add, modify, or delete the user records manually in the UAMS file. If NMSAF is installed as recommended (with grouping and modeling enabled), then NMSAF automatically updates the UAMS file as needed. You do not need to perform any maintenance on your UAMS records.
Partial security exit—NMSAF is a partial security exit to interface with your external security package for password checking. Passwords are not stored in UAMS.
Modeling—You can use the modeling facility to reduce the number of users that must be defined to your product region (by using UAMS). When you use modeling, a set of model users is defined. Each model user definition is used to define the privileges that a specific type of user has.
The NMSAF parameter file defines a list of resource names and associated model names. When a user logs on, this list is searched and each resource name is tested to see whether the user has READ access. The model user ID of the first one that matches is then used as the user ID definition.

By giving users PERMIT access to the appropriate resource, UAMS definitions are created or updated automatically when a user logs on to your product region.
SXCTL parameter file—The SXCTL file is the control file that NMSAF uses. You can use the SXCTL file as supplied, or you can tailor it to your requirements by using parameters.
Additional security exits—NMDSNCHK and NMDSSCHK can work with NMSAF. Several other exits are supplied.

More information:

Understanding Security