Top Secret Equivalents Of RACF Commands For MacKinney JRB software

book

Article ID: 196655

calendar_today

Updated On:

Products

CA Top Secret CA Top Secret - LDAP CA Web Administrator for Top Secret

Issue/Introduction

What are the Top Secret equivalents of the following RACF commands for MacKinney JRB Software?

ADDUSER JRB DFLTGRP(SYS1) +

NAME('MacKinney JRB ') +

OWNER(SYS1)

ALTUSER JRB OMVS( UID(0) )

PERMIT BPX.SUPERUSER CLASS(FACILITY) ID(JRB) ACCESS(READ)

 

Report Group:

RDEFINE FACILITY JRB.JRB.NODE.groupname UACC(NONE) +       

        AUDIT(FAILURES(READ))                              

PERMIT JRB.JRB.NODE.groupname CLASS(FACILITY) ID(userid) + 

       ACCESS(READ)                                        

Admin User:

RDEFINE FACILITY JRB.JRB.PARM.ADMINISTRATOR UACC(NONE) +       

        AUDIT(FAILURES(READ))                                  

PERMIT JRB.JRB.PARM.ADMINISTRATOR CLASS(FACILITY) ID(userid) +                                    

       ACCESS(READ)                                            

 

Environment

Release : 16.0

Component : CA Top Secret for z/OS

Resolution

TSS CREATE(JRB) TYPE(USER) NAME(‘'MacKinney JRB ') DEPT(dept) PASS(xxxxx,0) 
TSS ADD(JRB) UID(0) GROUP(SYS1) DFLTGRP(SYS1)
TSS PERMIT(JRB) IBMFAC(BPX.SUPERUSER) ACCESS(READ)


TSS ADD(dept) IBMFAC(JRB.JRB.) 
TSS PERMIT(userid) IBMFAC(JRB.JRB.NODE.groupname) ACCESS(READ)
TSS PERMIT(userid) IBMFAC(JRB.JRB.PARM.ADMINISTRATOR) ACCESS(READ)

Top Secret does not have an equivalent of only logging access READ violations. Top Secret logs all violations.