CA Top Secret AGN security is controlled by the TYPE=RACFAGN parameter of the IMS system definition SECURITY macro, and by the ISIS= IMS initialization parameter.
CA Top Secret administration for AGNs is done in either the AIMS or the APPLICATION resource class. When CA Top Secret security for AGNs is enabled, IMS issues the AGN security validation with a resource class formed from the prefix "A" and the value established for the RCLASS parameter (which defaults to "IMS"). If the AIMS resource class is defined in the RDT, the AGN security validation is performed in this resource class. If the AIMS resource class is not defined, the AGN resource class is translated to the APPLICATION resource class.
The following instructions assume the use of the APPLICATION resource class for AGN security. The administrator should substitute their non‑standard AGN resource class, if one is in use.
APPLICATION is a general resource that can be ADDed to establish ownership:
TSS ADDTO(dept) APPLICATION(agn)
To allow a dependent region ACID access to the AGN, enter:
TSS PERMIT(acid) APPLICATION(agn)
FACILITY(IMSPROD)
TSS PERMIT(acid) APPLICATION(agn)
The first permission allows the dependent region to specify the AGN only in regions using the IMSPROD facility. The second permission allows the dependent region to specify the AGN unrestricted by facility.
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|