Security › External Security › Initialization Parameters

More information:

Initialization Parameters

Initialization Parameters

Four initialization parameters affect the operation of external security.

• SECURITY=EXTERNAL

  The SECURITY initialization parameter indicates whether database security is based on external security calls. When the SECURITY initialization parameter is set to EXTERNAL, user and resource verification is performed through an external security product (RACROUTE calls).

• SECTRAN=

  If you use external security (RACF, CA ACF2 Security, CA Top Secret Security) and the report id contains characters from the extended special character set, you must set SECTRAN=YES. This setting causes the extended special characters to be automatically translated to ‘_’ underscores before the RACROUTE security call.

  Note: For more information about this parameter,see Character Translations.

• SECID=secid

  The SECID initialization parameter specifies a one- to eight‑character identifier that prefixes the resource name. The default of the SECID initialization parameter is VIEW.

• SECLIST=NONE|ALL|REPORT,INDEX,DEFINE,JOB

  The SECLIST initialization parameter specifies whether selection lists are to be limited to data accessible by the user.

  NONE indicates that all of the selection list data is presented to the user and accessibility is determined after the user selects the data.

  ALL indicates that all of the selection lists are to be limited to data that is accessible by the user.

  REPORT, INDEX, or DEFINE identify specific selection lists that are to be limited to data accessible by the user.

  • REPORT corresponds to the SYSOUT/Report Selection List
  • INDEX corresponds to the Index Name and Value Selection Lists
  • DEFINE corresponds to the User, SYSOUT, Distribution, Device, Filter, and View Definition Selection Lists.
  • JOB corresponds to the Job Selection List

  You can specify any combination of REPORT, INDEX, DEFINE, or JOB. The default for SECLIST is NONE.

For databases that are versioned from an earlier release, the previous ACF2 and RACF initialization parameters determine the settings of the SECURITY and SECID initialization parameters.

If the ACF2 or RACF initialization parameter is specified, SECID is set to that initialization parameter specification and SECURITY is set to EXTERNAL. Otherwise, SECURITY is set to INIT.

For reference purposes in this section, secid is used to identify the security identifier specified on the SECID initialization parameter.