ESP RACF definitions requirements
Article ID: 223083
Updated On:
Products
ESP Workload Automation
Issue/Introduction
The following ESP access is defined using ACF2. What is the equivalence for RACF? What is the RACF resource for a type SAF?
USERID KEY TYPE DETAILS
TSO001 ESP.CALENDAR.******** SAF __UID(*********7TSO001)_SERVICE(READ,ADD,D
TSO001 ESP.CALENDAR.SYSTEM SAF __UID(*********7TSO001)_SERVICE(UPDATE)_ALLO
TSO001 ESP.MODEL.******** SAF __UID(*********7TSO001)_SERVICE(READ,ADD,DELE
TSO001 ESP.RESOURCE.******** SAF __UID(*********7TSO001)_SERVICE(ADD,DELETE
TSO001 ESPT.CALENDAR.SYSTEM SAF __UID(*********7TSO001)_SERVICE(UPDATE)_ALL
TSO001 ESPT.RESOURCE.******** SAF __UID(*********7TSO001)_SERVICE(ADD,DELET
Environment
Release : 12.0
Component : ESP WORKLOAD AUTOMATION
Resolution
In this example CAESPWLM is the ESP SAF class defined in the SAFCLASS initialization parameter.
RDEFINE CDT CAESPWLM UACC(NONE) CDTINFO( +CASE(UPPER) FIRST(ALPHA) OTHER(ALPHASPECIAL,NUMERIC) +MAXLENGTH(39) MAXLENX(39) POSIT(nnn) GENERIC(ALLOWED) +RACLIST(REQUIRED) )SETROPTS RACLIST(CDT) REFRESHSETROPTS RACLIST(OME3270)SETROPTD GENERIC(OME3270)SETROPTS CLASSACT(OME3270) /* */RDEFINE CAESPWLM ESP.** UACC(NONE) /* Create the ESP groups */ADDGROUP DATACNTR OMVS(GID(nnn))ADDGROUP OPERATNS OMVS(GID(nnn))ADDGROUP PRODBAT OMVS(GID(nnn))ADDGROUP TECHSUPP OMVS(GID(nnn))ADDGROUP TSOUSER OMVS(GID(nnn)) /* */PERMIT ESP.AGENT.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(READ) PERMIT ESP.AGENT.** CLASS(CAESPWLM) ID(PRODBAT) ACCESS(READ)PERMIT ESP.AGENT.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(READ) /* */PERMIT ESP.AGENTMSG.CONTROLGETSPOOLFILE.** CLASS(CAESPWLM) ID(*) ACCESS(READ) PERMIT ESP.AGENTMSG.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(READ) PERMIT ESP.AGENTMSG.** CLASS(CAESPWLM) ID(PRODBAT) ACCESS(READ) /* */PERMIT ESP.APPL.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(READ) PERMIT ESP.APPL.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(READ) /* */PERMIT ESP.APPLX.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(READ) PERMIT ESP.APPLX.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(READ) /* */PERMIT ESP.CALENDAR.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER) /* */PERMIT ESP.CSF.CHECK.CMDS CLASS(CAESPWLM) ID(OPERATNS) ACCESS(NONE) /* */PERMIT ESP.CSF.CHECK.CMDS CLASS(CAESPWLM) ID(*) ACCESS(READ) /* */PERMIT ESP.CSF.LC.$** CLASS(CAESPWLM) ID(*) ACCESS(NONE) /* */PERMIT ESP.CSF.LC.CA CLASS(CAESPWLM) ID(*) ACCESS(NONE) /* */ PERMIT ESP.CSF.LC.XP CLASS(CAESPWLM) ID(*) ACCESS(NONE) /* */PERMIT ESP.CSF.LC.** CLASS(CAESPWLM) ID(*) ACCESS(READ) /* */PERMIT ESP.EVENTINITCLASS.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(READ) /* */PERMIT ESP.EXPEDITE.** CLASS(CAESPWLM) ID(*) ACCESS(READ) /* */PERMIT ESP.GROUP.MITS CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER) /* */PERMIT ESP.GROUP.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER) /* */PERMIT ESP.GROUP.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(ALTER) /* */PERMIT ESP.GROUP.** CLASS(CAESPWLM) ID(TSOUSER) ACCESS(ALTER) /* */ PERMIT ESP.GROUP.** CLASS(CAESPWLM) ID(*) ACCESS(READ) /* */PERMIT ESP.GROUPX.USER CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER) /* */PERMIT ESP.GROUPX.USER CLASS(CAESPWLM) ID(OPERATNS) ACCESS(ALTER) /* */PERMIT ESP.GROUPX.USER CLASS(CAESPWLM) ID(*) ACCESS(READ) /* */PERMIT ESP.GROUPX.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER) /* */PERMIT ESP.GROUPX.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(ALTER) /* */PERMIT ESP.GROUPX.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(READ) /* */PERMIT ESP.GROUPX.** CLASS(CAESPWLM) ID(PRODBAT) ACCESS(READ) /* */PERMIT ESP.GROUPX.** CLASS(CAESPWLM) ID(TSOUSER) ACCESS(ALTER) /* */PERMIT ESP.JOB.** CLASS(CAESPWLM) ID(*) ACCESS(ALTER) /* */PERMIT ESP.MODEL.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER) /* */PERMIT ESP.ONLINE CLASS(CAESPWLM) ID(*) ACCESS(READ) /* */PERMIT ESP.OPER CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER) /* */PERMIT ESP.OPER CLASS(CAESPWLM) ID(OPERATNS) ACCESS(READ) /* */PERMIT ESP.OPER CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER) /* */PERMIT ESP.OPER CLASS(CAESPWLM) ID(PRODBAT) ACCESS(READ) /* */PERMIT ESP.PNODE.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(UPDATE) /* */PERMIT ESP.PNODE.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(UPDATE) /* */PERMIT ESP.PNODE.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER) /* */PERMIT ESP.RACID.** CLASS(CAESPWLM) ID(*) ACCESS(READ) /* */PERMIT ESP.RESOURCE.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER) /* */PERMIT ESP.RESOURCE.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(UPDATE) /* */PERMIT ESP.RESOURCE.** CLASS(CAESPWLM) ID(PRODBAT) ACCESS(UPDATE) /* */PERMIT ESP.REXXON CLASS(CAESPWLM) ID(*) ACCESS(ALTER) /* */PERMIT ESP.SETOWNER.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER) /* */PERMIT ESP.SETOWNER.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(ALTER) /* */PERMIT ESP.SYMLIB.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER) /* */PERMIT ESP.SYMLIB.** CLASS(CAESPWLM) ID(*) ACCESS(READ) /* */PERMIT ESP.TJD.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER) /* */PERMIT ESP.UTIL.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER) /* */PERMIT ESP.VARTABLE.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER) /* */PERMIT ESP.VARTABLE.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(UPDATE) /* */PERMIT ESP.VARTABLE.** CLASS(CAESPWLM) ID(*) ACCESS(READ)Feedback
Yes
No
Powered by
