Securing Resources › Resource Access Control › Using the TSS PERMIT Command

Using the TSS PERMIT Command

The TSS PERMIT command is used to designate which ownable resources an ACID is allowed to access. To enter the command you need to supply the ACID being granted access, along with the resource class and the name of the individual resource. For example:

TSS PER(USER01) TERM(PD01)

lets USER01 access the PD01 terminal. If you were using generic prefixing you could use the following command to permit USER02 to access all programs beginning with the IEH prefix:

TSS PER(USER02) PGM(IEH)

By adding the appropriate keywords to the TSS PERMIT command you can restrict that ACID’s access by designating the following:

• Source of access (a designated terminal, CPU, and so on)
• Time/Date of access (9 to 5, weekdays, until 5-31-92, and so on)

  Note: Time restrictions are designated on a 24 hour clock; therefore, rather than specifying 9 to 5 you would specify 09,17.

• Facility access
• Path of access (through a particular program, loaded from a particular library)
• Access level (READ, WRITE, UPDATE, ALL, and so on).
• SMFID access
• ACTION taken byCA Top Secret when a particular access request is received

Note: These restriction options are not available for all resource classes.