CA Top Secret zOSMF and the ZMFAPLA resource commands

search cancel

CA Top Secret zOSMF and the ZMFAPLA resource commands

book

Article ID: 40508

calendar_today

Updated On:

Products

Top Secret Top Secret - LDAP

Issue/Introduction

In z/OSMF, the authorization of users to resources (tasks and links) is based on SAF resource validations for traditional z/OS security controls, such as user IDs and groups.

Environment

Release: TOPSEC00200-15-Top Secret-Security
Component:

Resolution

/* Activate the ZMFAPLA class */

TSS ADD(WASDEPT) ZMFAPLA(BBNBASE)

TSS PER(IZUADMIN) ZMFAPLA(BBNBASE.ZOSMF.) ACC(READ)

TSS PER(IZUUSER) ZMFAPLA(BBNBASE.ZOSMF.) ACC(READ)

TSS ADD(WASDEPT) ZMFAPLA(BBNBASE)

TSS PER(IZUADMIN) ZMFAPLA(BBNBASE.ZOSMF.ADMINTASKS.) ACC(READ)

TSS PER(IZUADMIN) ZMFAPLA(BBNBASE.ZOSMF.LINK.) ACC(READ)

TSS PER(IZUUSER) ZMFAPLA(BBNBASE.ZOSMF.LINK.) ACC(READ)

Additional Information

Define Authorizations for the z/OSMF Core Services

Feedback

thumb_up Yes

thumb_down No