Steps for Converting CA View 2.0 CA Top Secret Permissions

Security › External Security › Implementing External Security for CA Top Secret › Steps for Converting CA View 2.0 CA Top Secret Permissions

Steps for Converting CA View 2.0 CA Top Secret Permissions

Prior to r11, CA View used the DATASET resource class to secure the resources with CA Top Secret.

Starting with CA View r11, a resource class of CHA1VIEW is used. Therefore, the old CA View DATASET permissions are to be converted to the new resource class CHA1VIEW.

Use these guidelines to convert the permissions.

This command generates a list of users with permission to access CA View resources that are to be converted:
```
TSS WHOHAS DSN(VIEW)
```
Note: Prior to CA View r11, the RACF= parameter determined the high level qualifier for the resource names. In the above example, RACF= is shown as 'VIEW'. Replace 'VIEW' with the value you specified for RACF= in your previous CA View release.

Enter the following command to add the resource class CHA1VIEW to CA Top Secret:

TSS ADD(RDT) RESCLASS(CHA1VIEW) ATTR(LONG,MASK,GENERIC)
ACLST(READ,UPDATE, DELETE=E000,ADD=F000) DEFACC(READ)

Enter the following command to secure all CA View resources:
```
TSS ADD(owningacid) CHA1VIEW(CAVIEW.)
```
For CA View 2.0, the following command permits the report 'SALESREPORT':
```
TSS PERMIT(acid) DSN(VIEW.SALESREP.$ORT)
```
For the new resource class, the following command permits the report:
```
TSS PERMIT(acid) CHA1VIEW(CAVIEW.REPT.SALESREPORT) ACCESS(READ)
```
Notes:
- Starting with CA View r11, a parameter called SECID= determines the high-level qualifier for the resource names. In the above example, SECID= is set to 'CAVIEW'. Replace 'CAVIEW' with the value you specified for SECID=.
- For more information about usage and syntax of the TSS commands, see the CA Top Secret Command Functions Guide.