RACF to ACF2 translation for SNMPv3 security setup
search cancel

RACF to ACF2 translation for SNMPv3 security setup

book

Article ID: 219367

calendar_today

Updated On:

Products

ACF2 - z/OS ACF2 ACF2 - MISC

Issue/Introduction

The following are sample ACF2 commands to setup SNMPv3

Resolution

*SETROPTS CLASSACT(STARTED)                                          
*SETROPTS RACLIST(STARTED)                                           
*SETROPTS GENERIC(STARTED)

/* SETROPTS and RDEFINE for STARTED resources */

There is no translation for this in CA ACF2. CA ACF2 uses the STC GSO record
to assign a logonid to a started task. The commands for inserting these records
are given later in the instructions.                                         

*ADDUSER  OSNMPD DFLTGRP(OMVSGRP) OMVS(UID(0) HOME('/')) NOPASSWORD  
*RDEFINE  STARTED OSNMPD.* STDATA(USER(OSNMPD))                      
*SETROPTS RACLIST(STARTED) REFRESH                                   
*SETROPTS GENERIC(STARTED) REFRESH 

ACF
SET LID
INSERT OSNMPD GROUP(OMVSGRP) UID(0) HOME(/) STC  
SET C(GSO)
INSERT STC.OSNMPD LOGONID(OSNMPD) STCID(OSNMPD-)
F ACF2,REFRESH(STC)   
                           
*ADDUSER  SNMPQE DFLTGRP(OMVSGRP) OMVS(UID(nnn) HOME('/')) -    
*   NOPASSWORD                                                  
*RDEFINE  STARTED SNMPQE.* STDATA(USER(SNMPQE))                 
*SETROPTS RACLIST(STARTED) REFRESH                              
*SETROPTS GENERIC(STARTED) REFRESH  

ACF
SET LID
INSERT SNMPQE GROUP(OMVSGRP) UID(nnn) HOME(/) STC
SET C(GSO)
INSERT STC.SNMPQE LOGONID(SNMPQE) STCID(SNMPQE-)
F ACF2,REFRESH(STC)                   
                                                                
*Permit access to BPX.SUPERUSER                                 
*PERMIT   BPX.SUPERUSER CLASS(FACILITY) ID(SNMPQE) ACCESS(READ) 

ACF
SET R(FAC)
RECKEY BPX ADD( SUPERUSER UID(ACF2 UID for SNMPQE) SERVICE(READ) ALLOW)
F ACF2,REBUILD(FAC)