The CA WA CA 7 Edition External Security Interface lets you define CA WA CA 7 Edition as an application resource to RACF. The application resource name can then be specified on the SECURITY statement in the initialization file. During the LOGON validation process, an additional check is made to determine whether the user has the authority to access the CA WA CA 7 Edition application resource. This feature is optional; however, it allows for an additional level of security protection for CA WA CA 7 Edition.
This statement has the following format:
RDEFINE APPL CA7PROD DATA('CA 7 Security Application Resource')
OWNER(CA7USERS) UACC(NONE)
Identifies the command used to define resources to RACF.
Identifies the resource class name for application resources under RACF.
Identifies the name chosen in this example for the CA WA CA 7 Edition security application resource name.
Describes the application resource entry.
Identifies an existing RACF defined group that owns the resource.
Identifies a RACF keyword used to define the universal access for this resource. In this case, NONE.
After defining the CA WA CA 7 Edition security application resource to RACF, users must be authorized to access the CA WA CA 7 Edition APPL resource. This authorization can be accomplished by using the RACF PERMIT command.
This command has the following format:
PERMIT CA7PROD CLASS(APPL) ID(xxxxxxx)
Identifies the RACF command used to grant access to resources.
Identifies the name chosen in the previous example for the CA WA CA 7 Edition security application resource name.
Identifies the resource class for that this command applies. (Application)
Identifies the USERID you want to grant access to the CA WA CA 7 Edition security application resource.
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|