Valid on z/OS.
Use CSFKEYS to secure CSFKEYS for z/OS Integrated Cryptographic Service Facility (ICSF). For information on setting the keys, see IBM's OS/390 Integrated Cryptographic Service Facility: Administration Guide
When used with TSS ADDTO/REMOVE, this resource class has the following format:
TSS ADDTO(acid) CSFKEYS(CSFKEYS1)
One to eight characters
One to five prefixes per TSS command.
When used with TSS PERMIT/REVOKE, this resource class has the following format:
TSS PERMIT(acid) CSFKEYS(CSFKEYS1)
One to eight characters
This keyword is used with:
The administrator can use any of the following methods to control access to CSFKEYS resources: Expiration, Facility, Program Pathing, Time/Day, and Actions.
This example protects the resource with CA Top Secret by assigning ownership to the Corporate Department(owning acid):
TSS ADDTO(CORPORAT) CSFKEYS(CSFKEYS1)
The administration may now PERMIT access to users or profiles that require access.
This example removes ownership:
TSS REMOVE(CORPORAT) CSFKEYS(CSFKEYS1)
This example permits users to access CSFKEYS(CSFKEYS1) on Fridays only:
TSS PERMIT(TECHUSER) CSFKEYS(CSFKEYS1)
DAYS(FRIDAY)
This example permits users in the Technical Services Department to access CSFKEYS1:
TSS PERMIT(TECHPROF) CSFKEYS(CSFKEYS1)
This example revokes access :
TSS REVOKE(TECHUSER) CSFKEYS(CSFKEYS1)
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|