The SECURITY macro statement in the IMS system definition lets you specify security features in effect for the IMS system being defined. These security features can be overridden during IMS system initialization by IMS initialization parameters.
The following parameters for the SECURITY macro are used to select CA Top Secret for IMS security:
SECURITY SECLVL=(TRANAUTH,SIGNON),
TYPE=(RACFTERM,RACFCOM,RACFAGN|RASRACF),
...
Specifies that transaction authorization is to be performed.
Specifies that user ID verification is to be performed.
Specifies that CA Top Secret will be used for transaction authorization.
Specifies that CA Top Secret will be used for command authorization.
Specifies that CA Top Secret will be used for application group name (AGN) authorization during IMS dependent region initialization.
RACFAGN is valid in IMS r9.1 and below, and is mutually exclusive with the RASRACF option.
Specifies that CA Top Secret will be used for resource access security authorization during IMS dependent region processing. RASRACF is valid in IMS r9.1 and above, and is mutually exclusive with the RACFAGN option.
The other parameters for the SECURITY macro should be specified as appropriate for your installation.
Note: The RCLASS keyword in the SECURITY macro should normally not be used. CA Top Secret is designed to look for resources using the default value (RCLASS=IMS) in the resource class names, for example, TIMS for transactions and CIMS for commands. If a site chooses a non‑default RCLASS, they are responsible for defining the resulting resource classes. Rather than use RCLASS to distinguish security permissions for different regions, CA Top Secret encourages the administrator to make use of separate FACILITYs for distinguished regions and to distinguish region-specific permissions by FACILITY.
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|