What is the resource BPX.SMF Resource Class FACILITY used for and how would I code rules for it?
The resource rule FACILITY-BPX.SMF controls the ability to write SMF records from UNIX (OMVS) processes. ACF2 protects this resource by default.
IBM details on the BPX.SMF Facility class resource:
BPX.SMF or BPX.SMF.type.subtype
Permit user access to write an SMF record or to test if an SMF type or subtype is being recorded.
Some examples are as follows:
RACF commands to set up the permissions:
RDEFINE FACILITY BPX.SMF UACC(NONE)
PERMIT BPX.SMF CLASS(FACILITY) ID(user001) ACCESS(READ)
SETROPTS RACLIST(FACILITY) REFRESH
Sample ACF2 equivalent:
RECKEY BPX ADD(SMF UID(UID string for user001) SERVICE(READ) ALLOW)
* NOTE: If access is allowed to BPX.SMF the caller(application that calls smf_record callable service BPX1SMF) does not need to be APF-authorized