For SYSVIEW's new security requirement at R14.1, if using RACF, is it possible to use a SAF class other than than FACILITY?

book

Article ID: 36940

calendar_today

Updated On:

Products

CA SYSVIEW Performance Management NXBRIDGE - SYSYVIEW/ENDEVOR

Issue/Introduction

Question:

In R14.1 of SYSVIEW, we understand there is a new SAF Resource Security requirement specific to the new system configuration data set the GSVXSCFG DDname points to. We use RACF security but do not want to use the SAF class of FACILITY for this.

Is it possible to use another SAF class for the GSVXSCFG DDname?

Environment:

z/OS

 

Answer:

Specific to this example, when using RACF security, a SAF class of FACILITY is required as it is the only one that is supported for the GSVXSCFG DDname.

ACF2 requires a SAF class of SYSVIEW and TSS requires a SAF class of CAGSVX. Optionally, the SAF entity can be definted as a generic resource in your External Security Manager as: SV.CREATE.SSID.*

 

Additional Information:

Additional information relating to SYSVIEW R14.1's Security Enhancements can be found at:

https://docops.ca.com/display/CSPM10/Security+Enhancements

 

Environment

Release: FAQSO.00200-14.1-SYSVIEW-Performance Management
Component: