IBM Security Server RACF

Using Your Security System › The z/OS External Security Manager › CA@BES Resource Class Definition › IBM Security Server RACF

IBM Security Server RACF

If you are running IBM Security Server RACF, you must define the CA@BES general resource class. One of the following options should be used to define CA@BES:

The easiest, most convenient, and least disruptive way to define the class is to use the RACF RDEFINE CDT command to update the dynamic Class Descriptor Table (CDT).
Use the CA Tape Encryption TBESAF99 utility program to generate the required RDEFINE statements. This method will still generate CA@BES dynamically.
The most disruptive process is to update the RACF ICHRRCDE and ICHRFR01 tables. After the source is updated, the tables must be assembled and a z/OS IPL performed to load the updated tables.

Tell Technical Publications how we can improve this information