Implementing SmartTrace Security
Implementing SmartTrace Security
Note: This chapter only applies to CA NetMaster Network Management for TCP/IP.
The SmartTrace feature lets users view IP packets flowing into and out of your z/OS systems, while providing instant access to IP packet data.
The following levels of security are associated with SmartTrace:
- Using SmartTrace—To use SmartTrace, a user's UAMS definition or group definition must have a TCP/IP Services value of 2. This allows them to define, delete, start and stop tracing, and view any traced packet headers.
- Viewing Packet Data—Because IP packets can contain sensitive information, a further level of authority is required for users to view packet payload data. This authority must be granted by your external security system (CA ACF2 for z/OS, CA Top Secret for z/OS, or RACF). The user must have READ access to NETMSTR.PKTTRACE.region, where region is the region's ACB name, as specified in the PRI= parameter in the RUNSYSIN member.
This section contains the following topics:
Defining NETMSTR.PKTTRACE.region
|
Copyright © 2012 CA.
All rights reserved.
|
|
