Previous Topic: JCL USERID FormatNext Topic: CA7RTBL Macro

Implementing Security with CA Top SecretUID Resources

UID Resources

UID security validation controls access to information about the CA WA CA 7 Edition database. When a user attempts to access a job on the database, regardless of whether internal or external security is in control, the user's UID value is compared to the UID value associated with the job. This comparison provides job-level security for the CA WA CA 7 Edition database. External security does not provide an equivalent JOB level protection. For this reason, it is important that each CA WA CA 7 Edition user is assigned a UID that relates to the user's area of responsibility.

Note: UID resource security is only valid in an environment where external security controls CA WA CA 7 Edition logons. Calls are made to the external security package to validate the authority of a user to access the resource. The resources have no meaning to internal security.

The UID value (0-999) can be obtained from the USERID entry in the internal security module, through UID resource validation during logons to CA WA CA 7 Edition or through the /UID top line command issued under a CA WA CA 7 Edition session. If you want to maintain USERIDs in the internal security module, see the internal security chapter for information about defining USERIDs in the internal security module. The following information outlines the steps necessary to implement UID resource validation and describes the security processing involved.

UID resource security requires a UID Resource Table that CA WA CA 7 Edition references during UID resource validation. This table contains resource names and associated UID value entries to use during the UID validation process. A sample resource table, SASSRTBL, is provided in both source and load module format and can be used to implement UID resource security. To create a site-specific UID Resource Table with unique resource names and UID values, use the CA7RTBL macro to generate the table.

Note: The default resource class for UID resources is PANEL. You can change the resource class for calls to external security using the RCLASS= parameter on the SECURITY statement of the initialization file.

You can use the /PROF command to establish and maintain a default UID resource for users logging on to CA WA CA 7 Edition.

Note: For a description of the /PROF command, see the Command Reference Guide.

If you use COIDs, the CA WA CA 7 Edition USERID security module described in the USERID macro is required.