CSFKEYS Resource Class—Secure ICSF CSFKEYS

Resources › CSFKEYS Resource Class—Secure ICSF CSFKEYS

CSFKEYS Resource Class—Secure ICSF CSFKEYS

Valid on z/OS.

Use CSFKEYS to secure CSFKEYS for z/OS Integrated Cryptographic Service Facility (ICSF). For information on setting the keys, see IBM's OS/390 Integrated Cryptographic Service Facility: Administration Guide

When used with TSS ADDTO/REMOVE, this resource class has the following format:

TSS ADDTO(acid) CSFKEYS(CSFKEYS1)

Prefix length: One to eight characters
Capacity of list: One to five prefixes per TSS command.

When used with TSS PERMIT/REVOKE, this resource class has the following format:

TSS PERMIT(acid) CSFKEYS(CSFKEYS1)

Prefix length: One to eight characters

This keyword is used with:

The commands CREATE, ADDTO, REMOVE, PERMIT, REVOKE, ADMIN, DEADMIN, WHOOWNS, and WHOHAS.
The ACID types User, Department, Division, Zone, DCA, VCA, ZCA, LSCA, SCA, and MSCA when used with TSS ADD/REMOVE
The ACID types User, Profile, DCA, VCA, ZCA, LSCA, SCA, and MSCA when used with TSS PERMIT/REVOKE
CSFKEYS (OWN) authority to ADD or REMOVE ownership of CSFKEYS resources from ACIDs
CSFKEYS(XAUTH) authority to PERMIT or REVOKE access to CSFKEYS resources

The administrator can use any of the following methods to control access to CSFKEYS resources: Expiration, Facility, Program Pathing, Time/Day, and Actions.