search cancel

For IDMS, how do we secure console operator commands?

book

Article ID: 190522

calendar_today

Updated On:

Products

IDMS IDMS - Database

Issue/Introduction

Operator Console commands can be issued and are documented here:
https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-mainframe-software/database-management/ca-idms-reference/19-0/ca-idms-system-tasks-and-operator-commands/dc-ucf-operator-console-interface/operator-commands.html

Many of these perform the same functions as DCMT commands. How can these be secured?

Environment

Release : 19.0 & all supported releases

Component : CA IDMS/DB

Resolution

Top Secret and RACF offer the ability to secure Operator commands for z/OS. This security can restrict the ability of replying to outstanding WTORs to certain users. This is implemented by not allowing access to the MVS.REPLY resource in the OPERCMDS resource class. If this security is enabled, only authorized console users will be able to reply to the outstanding WTOR for IDMS and enter IDMS operator commands.

Additional Information

Full descriptions of how to implement security within an IDMS system can be found here: \https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-mainframe-software/database-management/ca-idms/19-0/administrating/administrating-security-for-idms.html