Specify RACF Security

Use this panel to provide security information about the Parallel Sysplex. It asks if you use SecureWay Security RACF as your security product, and if you are sharing the RACF database outside the Parallel Sysplex.

If you use RACF, define the authorization for the users or groups at your installation to be able to use the IXCMIAPU utility that controls the couple data set policies.

A resource profile must exist for any resource name associated with a couple data set policy function:

Based on your input, the wizard can create the following RACF FACILITY class profiles for the user or group and define the universal access authority (UACC) as either READ or UPDATE:

     RDEFINE FACILITY MVSADMIN.XCF.ARM
     RDEFINE FACILITY MVSADMIN.XCF.CFRM
     RDEFINE FACILITY MVSADMIN.LOGR
     RDEFINE FACILITY MVSADMIN.XCF.SFM
     RDEFINE FACILITY MVSADMIN.WLM

.

These FACILITY class profiles will be used for authority checking on an ACTIVE couple data set. When a couple data set is INACTIVE, the rules for normal data set protection apply.

After giving access authority to the appropriate users, activate the FACILITY class.

     SETROPTS CLASSACT(FACILITY)

If you do not use RACF, you must provide the equivalent definitions for your security product.

You can find more detailed help on the following elements of this window:

Are you using RACF as a security product

Is any system outside the GRS complex sharing the RACF database with sysplex systems?

Grant authority

Change authority

Revoke authority

Using the table