Security › External Security › Implement External Security for CA ACF2 › Bypassing Password Verification

Bypassing Password Verification

For the following online interfaces, you can bypass password specification and allow a user to log on to a CA Deliver database once that user is logged on to the online interface:

• CICS pseudo-conversational
• IMS
• ISPF/cross‑memory
• TSO/cross‑memory
• CA Roscoe/cross‑memory

To implement this functionality, follow these steps:

1. Specify LGNSEC=YES for the cross-memory region startup parameter.
2. Specify the appropriate SAFPROT rules for CA ACF2.

   Note: For information about the LGNSEC parameter, see the Installation Guide. For CA ACF2, see the following sample SAFPROT rules (additional modification can be required due to site requirements):

   For the ISPF interface:

   SAFPROT.RMO1CLASSES(DATASET)CNTLPTS(RMOSPF)SUBSYS(SVC019)
   SAFPROT.RMO2CLASSES(DATASET)CNTLPTS(RMOSPF)SUBSYS(RMOSPF)
   

   For the VTAM/XMEM interface:

   SAFPROT.RMO3CLASSES(DATASET)CNTLPTS(EB0XMDRV)SUBSYS(SVC019)
   SAFPROT.RMO4CLASSES(DATASET)CNTLPTS(EB0VTDRV)SUBSYS(SVC019)
   SAFPROT.RMO5CLASSES(DATASET)CNTLPTS(EB0XMDRV)SUBSYS(EB0XMDRV)
   SAFPROT.RMO6CLASSES(DATASET)CNTLPTS(EB0VTDRV)SUBSYS(EB0VTDRV)