Convert zOS 2.3 member IZUPRSEC from RACF to TSS.
search cancel

Convert zOS 2.3 member IZUPRSEC from RACF to TSS.

book

Article ID: 95766

calendar_today

Updated On:

Products

Top Secret

Issue/Introduction

Convert RACF commands to TSS:

'RDEFINE OPERCMDS MVS.ROUTE.CMD.<sysname> UACC(NONE) OWNER(<owner-id>)' 
'PERMIT MVS.ROUTE.CMD.<sysname> CLASS(OPERCMDS) ACCESS(READ) ID(<tso-userid>)' 

'RDEFINE JESSPOOL <sysname>.+MASTER+.SYSLOG.*.* UACC(NONE) OWNER(<owner-id>)' 
'PERMIT <sysname>.+MASTER+.SYSLOG.*.* CLASS(JESSPOOL) ID(<tso-userid>) ACCESS(READ)' 


'PERMIT SYSPLEX.OPERLOG CLASS(LOGSTRM) ID(<tso-userid>) ACCESS(READ)' 


'ADDUSER <consolename> OPERPARM(AUTH(MASTER) ROUTCODE(ALL) MSCOPE(<mscope-sysname>))' 

Environment

Release:
Component: TSSMVS

Resolution

RACF commands converted to TSS:

  • RDEFINE OPERCMDS MVS.ROUTE.CMD.<sysname> UACC(NONE) OWNER(<owner-id>)
    TSS ADD(owning_acid) OPERCMDS(MVS.)
  • PERMIT MVS.ROUTE.CMD.<sysname> CLASS(OPERCMDS) ACCESS(READ) ID(<tso-userid>)
    TSS PERMIT(<owner-id>) OPERCMDS(MVS.ROUTE.CMD.<sysname>) ACCESS(READ)
  • 'RDEFINE JESSPOOL <sysname>.+MASTER+.SYSLOG.*.* UACC(NONE) OWNER(<owner-id>)
    TSS ADD(owningacid) JESPOOL(sysname.)
  • PERMIT <sysname>.+MASTER+.SYSLOG.*.* CLASS(JESSPOOL) ID(<tso-userid>) ACCESS(READ)
    TSS PER(tso-userid) JESSPOOL(<sysname>.+MASTER+.SYSLOG.) ACC(READ)
  • PERMIT SYSPLEX.OPERLOG CLASS(LOGSTRM) ID(<tso-userid>) ACCESS(READ)
    TSS PER(tso-userid) LOGSTRM(SYSPLEX.OPERLOG) ACC(READ)
  • ADDUSER consolename OPERPARM(AUTH(MASTER) ROUTCODE(ALL) MSCOPE(<mscope-sysname>))
    TSS CREATE(consolename) TYPE(USER) DEPT(dept) NAME(‘Console xxxxx’) PASS(password) FAC(CONSOLE,BATCH,STC)
    TSS ADD(consolename) MCSMSCP(<mscope-sysname)