CA Top Secret zOSMF and the ZMFAPLA resource commands

book

Article ID: 40508

calendar_today

Updated On:

Products

CA Top Secret CA Top Secret - LDAP

Issue/Introduction

Description:

In z/OSMF, the authorization of users to resources (tasks and links) is based on SAF resource validations for traditional z/OS security controls, such as user IDs and groups.

Solution:

/* Activate the ZMFAPLA class */

 

TSS ADD(WASDEPT) ZMFAPLA(BBNBASE) 

TSS PER(IZUADMIN) ZMFAPLA(BBNBASE.ZOSMF.) ACC(READ)

TSS PER(IZUUSER) ZMFAPLA(BBNBASE.ZOSMF.) ACC(READ)

TSS ADD(WASDEPT) ZMFAPLA(BBNBASE) 

TSS PER(IZUADMIN) ZMFAPLA(BBNBASE.ZOSMF.ADMINTASKS.) ACC(READ)

TSS PER(IZUADMIN) ZMFAPLA(BBNBASE.ZOSMF.LINK.) ACC(READ)

TSS PER(IZUUSER) ZMFAPLA(BBNBASE.ZOSMF.LINK.) ACC(READ)

 

Additional Information:

https://docops.ca.com/ca-top-secret/16-0/en/product-information

 

Environment

Release: TOPSEC00200-15-Top Secret-Security
Component: