|
|
|
To deactivate the SAF Interface or prevent the SAF Interface from being activated during CA Tape Encryption initialization or reload processing, the BES.SECURITY control profile must be defined with INACTIVE specified on the APPLDATA field of the PERMIT command.
This definition can be used to alter the existing BES.SECURITY control profile to disable the SAF Interface:
TSS REVOKE(STCDEF) CA@BES(BES.SECURITY)
TSS PERMIT(STCDEF) CA@BES(BES.SECURITY) ACCESS(READ) APPLDATA('INACTIVE')
Note: You can dynamically activate or inactivate the SAF Interface by replacing the BES.SECURITY APPLDATA parameter and refreshing CA Top Secret and CA Tape Encryption storage profiles.
| Copyright © 2011 CA. All rights reserved. | Tell Technical Publications how we can improve this information |