Resources › TSOACCT Resource Class—Secure TSO Logon Account Codes

TSOACCT Resource Class—Secure TSO Logon Account Codes

Valid on z/OS.

Use TSOACCT to secure account codes that are used during TSO logon.

When used with TSS ADDTO/REMOVE, this resource class has the following format:

TSS ADDTO(acid)TSOACCT(code)

Prefix length

One to eight characters

Capacity of list

five accounts per TSS command

When used with TSS PERMIT/REVOKE, this resource class has the following format:

TSS PERMIT(acid)TSOACCT(prefix(es))

Prefix length

One to forty‑four characters

Capacity of list

five accounts per TSS command

This keyword is used with:

• The commands CREATE, ADDTO, REMOVE, PERMIT, REVOKE, ADMIN, DEADMIN, WHOHAS, and WHOOWNS
• The TSOACCT ACID types User, Profile, Department, Division, Zone, DCA, VCA, ZCA, LSCA, SCA, and MSCA when used with TSS ADD/REMOVE
• The TSOACCT ACID types User, Profile, DCA, VCA, ZCA, LSCA, SCA, and MSCA when used with TSS PERMIT/REVOKE
• TSOACCT(OWN) authority to protect user access to specific accounting codes
• TSOACCT(XAUTH) authority to permit or revoke access to accounting codes

The administrator can use any of the following methods to control access to TSO accounting fields: Expiration, Facility, Time/Day, and Actions.

Examples: TSOACCT resource class

This example protects TSOACCT of A044221:

TSS ADDTO(ACCTDEPT)TSOACCT(A044221)

This example removes ownership:

TSS REMOVE(ACCTDEPT)TSOACCT(A044221)

This example allows an ACID to use A044221:

TSS PERMIT(USERA)TSOACCT(A044221)

This example revokes access:

TSS REVOKE(USERA)TSOACCT(A044221)