IBM provides an administrative utility, IXCMIAPU, to modify, add, or delete policy data from the ARM, CFRM, LOGR or SFM data sets. Use of this utility is controlled by the FACILITY class resource MVSADMIN. CA Top Secret implementation of the FACILITY class is done using the IBMFAC resource class.
Two access levels are available for these resources:
Report only on a policy.
Alter and maintain a policy.
To secure access to the IXCMIAPU utility using CA Top Secret
TSS ADDTO(dept) IBMFAC(MVSADMIN)
Ownership of the resource is established.
TSS PERMIT(user) IBMFAC(MVSADMIN.XCF.ARM)
ACCESS(READ | UPDATE)
TSS PERMIT(user) IBMFAC(MVSADMIN.XCF.CFRM)
ACCESS(READ | UPDATE)
TSS PERMIT(user) IBMFAC(MVSADMIN.XCF.LOGR)
ACCESS(READ | UPDATE)
TSS PERMIT(user) IBMFAC(MVSADMIN.XCF.SFM)
ACCESS(READ | UPDATE)
Permits to access the policy are set.
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|