Previous Topic: Purpose of External SecurityNext Topic: Customize CA ACF2

Interfacing with External SecurityPurpose of External SecurityCustomize CA Top Secret

Customize CA Top Secret

CA Top Secret must be customized before you can activate the CA SYSVIEW interface.

Follow these steps:

  1. Define a task as a facility to CA Top Secret in the Facilities Matrix by adding the following commands to the CA Top Secret parameter file: 
    FAC(USERn=NAME=GSVX)
FAC(GSVX=PGM=GSV,MULTIUSER,SHRPRF,KEY=8,NOLUMSG,NOSTMSG)
FAC(GSVX=MODE=FAIL,LOG(NONE),ACTIVE,NOABEND)
FAC(GSVX=SIGN(M),NOTRACE,AUTHINIT)
FAC(GSVX=NOAUDIT,ASUBM,DEFACID(*NONE*))
FAC(GSVX=UIDACID=8)
    USERn

    Must be a valid Facility Matrix Table entry.

  2. Create a master facility ACID for CA SYSVIEW 
    TSS CREATE(SYSVIEW) NAME('SYSVIEW ACID') FACILITY(STC)
   MASTFAC(GSVX) PASSWORD(NOPW,0) DEPT(owningdept)
   NOLCFCHK NORESCHK NODSNCHK NOVOLCHK NOSUBCHK

    Specifying a password is recommended for the CA SYSVIEW acid and OPTION(4) be set in the CA Top Secret Control Option file. When these passwords are set, the started task does not get prompted on the console for a password.

  3. Define the CA SYSVIEW address spaces as started tasks in the STC record using the master facility ACID you created in Step 2. 
    TSS ADDTO(STC) PROCNAME(SYSVIEW) ACID(SYSVIEW)
TSS ADDTO(STC) PROCNAME(SYSVUSER) ACID(SYSVIEW)
TSS ADDTO(STC) PROCNAME(SYSVAAST) ACID(SYSVIEW)
  4. Add OMVS segment to the ACID. 
    TSS ADDTO(SYSVIEW) UID(0) GROUP(OMVSGRP) DFLTGRP(OMVSGRP)
      HOME(/) OMVSPGM(/bin/sh)

    CA Top Secret is customized. You can activate the CA SYSVIEW interface.