ESP RACF Requirements.

book

Article ID: 223083

calendar_today

Updated On:

Products

CA Workload Automation ESP Edition

Issue/Introduction

We have an lpar running IBM RACF using ESP. All the rest of our lpars are using ACF2. For the  rest of our lpars we defined these access to our ESP. What is the RACF resource for a type SAF? Can please provide the equivalence?

USERID    KEY                       TYPE                               DETAILS
TSO001    ESP.CALENDAR.********     SAF           __UID(*********7TSO001)_SERVICE(READ,ADD,D     
TSO001    ESP.CALENDAR.SYSTEM       SAF           __UID(*********7TSO001)_SERVICE(UPDATE)_ALLO   
TSO001    ESP.MODEL.********        SAF           __UID(*********7TSO001)_SERVICE(READ,ADD,DELE  
TSO001    ESP.RESOURCE.********     SAF           __UID(*********7TSO001)_SERVICE(ADD,DELETE     
TSO001    ESPT.CALENDAR.SYSTEM      SAF           __UID(*********7TSO001)_SERVICE(UPDATE)_ALL    
TSO001    ESPT.RESOURCE.********    SAF           __UID(*********7TSO001)_SERVICE(ADD,DELET         

Thank you,

 

Environment

Release : 12.0  Component : CA ESP WORKLOAD AUTOMATION

Setting up under RACF.

Resolution

In this example CAESPWLM is the CA WA ESP Edition SAF class defined in the SAFCLASS initialization parameter.

RDEFINE CDT CAESPWLM UACC(NONE) CDTINFO( +
CASE(UPPER) FIRST(ALPHA) OTHER(ALPHASPECIAL,NUMERIC) +
MAXLENGTH(39) MAXLENX(39) POSIT(nnn) GENERIC(ALLOWED) +
RACLIST(REQUIRED) )
SETROPTS RACLIST(CDT) REFRESH
SETROPTS RACLIST(OME3270)
SETROPTD GENERIC(OME3270)
SETROPTS CLASSACT(OME3270)
 /*             */
RDEFINE CAESPWLM  ESP.** UACC(NONE)  
 /* Create the ESP groups  */
ADDGROUP DATACNTR OMVS(GID(nnn))
ADDGROUP OPERATNS OMVS(GID(nnn))
ADDGROUP PRODBAT OMVS(GID(nnn))
ADDGROUP TECHSUPP OMVS(GID(nnn))
ADDGROUP TSOUSER OMVS(GID(nnn))
 /*             */
PERMIT ESP.AGENT.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(READ)                        
PERMIT ESP.AGENT.** CLASS(CAESPWLM) ID(PRODBAT) ACCESS(READ)
PERMIT ESP.AGENT.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(READ)                          
 /*             */
PERMIT ESP.AGENTMSG.CONTROLGETSPOOLFILE.** CLASS(CAESPWLM) ID(*) ACCESS(READ)
PERMIT ESP.AGENTMSG.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(READ)  
PERMIT ESP.AGENTMSG.** CLASS(CAESPWLM) ID(PRODBAT) ACCESS(READ)
 /*             */
PERMIT ESP.APPL.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(READ)                        
PERMIT ESP.APPL.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(READ)
 /*             */
PERMIT ESP.APPLX.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(READ)                        
PERMIT ESP.APPLX.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(READ)
 /*             */
PERMIT ESP.CALENDAR.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER)  
 /*             */
PERMIT ESP.CSF.CHECK.CMDS CLASS(CAESPWLM) ID(OPERATNS) ACCESS(NONE)
 /*             */
PERMIT ESP.CSF.CHECK.CMDS CLASS(CAESPWLM) ID(*) ACCESS(READ)
 /*             */
PERMIT ESP.CSF.LC.$** CLASS(CAESPWLM) ID(*) ACCESS(NONE)
 /*             */
PERMIT ESP.CSF.LC.CA CLASS(CAESPWLM) ID(*) ACCESS(NONE)
 /*             */            
PERMIT ESP.CSF.LC.XP CLASS(CAESPWLM) ID(*) ACCESS(NONE)
 /*             */
PERMIT ESP.CSF.LC.** CLASS(CAESPWLM) ID(*) ACCESS(READ)
 /*             */
PERMIT ESP.EVENTINITCLASS.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(READ)
 /*             */
PERMIT ESP.EXPEDITE.** CLASS(CAESPWLM) ID(*) ACCESS(READ)
 /*             */
PERMIT ESP.GROUP.MITS CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER)
 /*             */
PERMIT ESP.GROUP.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER)
 /*             */
PERMIT ESP.GROUP.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(ALTER)
 /*             */
PERMIT ESP.GROUP.** CLASS(CAESPWLM) ID(TSOUSER) ACCESS(ALTER)
 /*             */              
PERMIT ESP.GROUP.** CLASS(CAESPWLM) ID(*) ACCESS(READ)
 /*             */
PERMIT ESP.GROUPX.USER CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER)
 /*             */
PERMIT ESP.GROUPX.USER CLASS(CAESPWLM) ID(OPERATNS) ACCESS(ALTER)
 /*             */
PERMIT ESP.GROUPX.USER CLASS(CAESPWLM) ID(*) ACCESS(READ)
 /*             */
PERMIT ESP.GROUPX.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER)
 /*             */
PERMIT ESP.GROUPX.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(ALTER)
 /*             */
PERMIT ESP.GROUPX.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(READ)
 /*             */
PERMIT ESP.GROUPX.** CLASS(CAESPWLM) ID(PRODBAT) ACCESS(READ)
 /*             */
PERMIT ESP.GROUPX.** CLASS(CAESPWLM) ID(TSOUSER) ACCESS(ALTER)
 /*             */
PERMIT ESP.JOB.** CLASS(CAESPWLM) ID(*) ACCESS(ALTER)
 /*             */
PERMIT ESP.MODEL.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER)
 /*             */
PERMIT ESP.ONLINE CLASS(CAESPWLM) ID(*) ACCESS(READ)
 /*             */
PERMIT ESP.OPER CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER)
 /*             */
PERMIT ESP.OPER CLASS(CAESPWLM) ID(OPERATNS) ACCESS(READ)
 /*             */
PERMIT ESP.OPER CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER)
 /*             */
PERMIT ESP.OPER CLASS(CAESPWLM) ID(PRODBAT) ACCESS(READ)
 /*             */
PERMIT ESP.PNODE.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(UPDATE)
 /*             */
PERMIT ESP.PNODE.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(UPDATE)
 /*             */
PERMIT ESP.PNODE.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER)
 /*             */
PERMIT ESP.RACID.** CLASS(CAESPWLM) ID(*) ACCESS(READ)
 /*             */
PERMIT ESP.RESOURCE.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER)
 /*             */
PERMIT ESP.RESOURCE.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(UPDATE)
 /*             */
PERMIT ESP.RESOURCE.** CLASS(CAESPWLM) ID(PRODBAT) ACCESS(UPDATE)
 /*             */
PERMIT ESP.REXXON CLASS(CAESPWLM) ID(*) ACCESS(ALTER)
 /*             */
PERMIT ESP.SETOWNER.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER)
 /*             */
PERMIT ESP.SETOWNER.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(ALTER)
 /*             */
PERMIT ESP.SYMLIB.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER)
 /*             */
PERMIT ESP.SYMLIB.** CLASS(CAESPWLM) ID(*) ACCESS(READ)
 /*             */
PERMIT ESP.TJD.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER)
 /*             */
PERMIT ESP.UTIL.** CLASS(CAESPWLM) ID(TECHSUPP) ACCESS(ALTER)
 /*             */
PERMIT ESP.VARTABLE.** CLASS(CAESPWLM) ID(DATACNTR) ACCESS(ALTER)
 /*             */
PERMIT ESP.VARTABLE.** CLASS(CAESPWLM) ID(OPERATNS) ACCESS(UPDATE)
 /*             */
PERMIT ESP.VARTABLE.** CLASS(CAESPWLM) ID(*) ACCESS(READ)