z/OS Security › TCP/IP Security › IMS › IMS System

IMS System

From an IMS perspective after a message has been received by OTMA, the security checking is the same as for any other request. When OTMA security is activated, upon receipt of a message IMS invokes RACF to perform one of the following actions:

• If the incoming message contains a valid UTOKEN, build an ACEE from the information in the UTOKEN and return the ACEE to IMS.
• If the incoming message does not contain a UTOKEN, validate that the user ID in the incoming message has been defined to RACF and build (and return to IMS) an ACEE for valid user IDs.

IMS/OTMA determines which, if any, security facilities is invoked for messages received using OTMA based on the OTMA security level and on whether security exits have been included in the system.