RACF Commands Translated for JMON
Article ID: 25393
Updated On:
Products
Cleanup
Datacom
DATACOM - AD
CIS
COMMON SERVICES FOR Z/OS
90S SERVICES
DATABASE MANAGEMENT SOLUTIONS FOR DB2 FOR Z/OS
COMMON PRODUCT SERVICES COMPONENT
Common Services
CA ECOMETER SERVER COMPONENT FOC
Easytrieve Report Generator for Common Services
INFOCAI MAINTENANCE
IPC
UNICENTER JCLCHECK COMMON COMPONENT
Mainframe VM Product Manager
CHORUS SOFTWARE MANAGER
CA ON DEMAND PORTAL
CA Service Desk Manager - Unified Self Service
PAM CLIENT FOR LINUX ON MAINFRAME
MAINFRAME CONNECTOR FOR LINUX ON MAINFRAME
GRAPHICAL MANAGEMENT INTERFACE
WEB ADMINISTRATOR FOR TOP SECRET
Xpertware
Top Secret
Top Secret - LDAP
Top Secret - VSE
Issue/Introduction
For JMON (JES Job Monitor) and external security, the following RACF commands are needed. What are the CA Top Secret equivalent commands?
SETROPTS CLASSACT(CONSOLE)
RDEFINE CONSOLE JMON UACC(READ)
RDEFINE OPERCMDS JES2.** UACC(NONE)
PERMIT CLASS(OPERCMDS)JES2.** ID(userid or groupid)
ACCESS(CONTROL) WHEN(CONSOLE(JMON))
Environment
Release: TOPSEC00200-16-Top Secret-Security
Resolution
The RACF commands converted are :
- SETROPTS CLASSACT(CONSOLE)
No equivalent and not needed in CA Top Secret. - RDEFINE CONSOLE JMON UACC(READ)
TSS ADD(dept) TSOAUTH(CONSOLE)
TSS PER(acid) TSOAUTH(CONSOLE)
The user needs at least 1 TSO field on his acid in order for the TSOAUTH(CONSOLE) authority to be picked up. - RDEFINE OPERCMDS JES2.** UACC(NONE)
TSS ADD(dept) OPERCMDS(JES2.) - PERMIT CLASS(OPERCMDS) JES2.** ID(userid or groupid) ACCESS(CONTROL) WHEN(CONSOLE(JMON))
TSS PER(acid) OPERCMDS(JES2.) ACCESS(CONTROL)
There is no equivalent of 'WHEN(CONSOLE(JMON))' under CA Top Secret. A terminal restriction can not be placed on a TSS PERMIT command.
Feedback
Yes
No
Powered by
