Keywords › MISC4 Keyword—Authority to Administer Functions

MISC4 Keyword—Authority to Administer Functions

Valid on z/OS, z/VSE, and z/VM.

Use the MISC4 keyword to give, or to remove, an CA Top Secret administrator's authority to perform one or more additional administrative functions.

This keyword has the following format:

TSS ADMIN(acid) MISC4(authority level(s))

This keyword can be used with:

• The commands ADMIN, DEADMIN, and WHOHAS
• The ACID types User, DCA, VCA, ZCA, LSCA, SCA, and MSCA

MISC4 Authority Levels

The CA Top Secret administrator may specify the following MISC4 authorities:

ALL

Authorizes administrators to use all of the authorities.

CERTUSER

Allows the security administrator to maintain user ACIDs.

CERTAUTH

Allows the security administrator to maintain certificate authority ACIDs.

CERTSITE

Allows the security administrator to maintain site certificates ACIDs.

CERTLIST

Allows the security administrator to list digital certificate information.

CERTGEN

Allows the security administrator to generate digital certificates.

CERTEXPO

Allows the security administrator to export digital certificates.

CERTCHEK

Allows the security administrator to display information about digital certificates.

KERBUSER

Allows the security administrator to map foreign principal names to individual user IDs.

Examples: MISC4 keyword

This example authorizes an administrator to export digital certificates for users within the administrator's scope:

TSS ADMIN(USER01) MISC4(CERTEXPO)

This example removes MISC4 authority:

TSS DEADMIN(USER01) MISC4(CERTEXPO)