Activating security checking for API commands and resource definitions
To activate CICSĀ® Configuration Manager security checking:
- In your external security manager, such as RACF:
- Choose an existing resource class, such as XFACILIT,
or create a new class for CICS Configuration
Manager security checking.
If you decide to use a resource class other than XFACILIT, you need to be aware of the specific requirements of a resource class for CICS Configuration Manager security checking. For details, see Requirements for a resource class for security checking.
- Define general resource profiles for this class, to match the format of the security keys created by the CICS Configuration Manager server. For details, see:
- Authorize the appropriate users for these profiles.
For details on performing these steps, see the members named CCVXSAFx in the sample library SCCVSAMP.
- Choose an existing resource class, such as XFACILIT,
or create a new class for CICS Configuration
Manager security checking.
- Ensure that the system initialization parameter SEC of the CICS region running the CICS Configuration Manager server is active (SEC=YES). The CICS Configuration Manager server performs security checking only if this SIT parameter is active.
- In CICS Configuration
Manager:
- Select primary menu option 1.1 System Options.
- Activate either or both types of security check: to do this, you need to enter the name of the resource class and the security key prefix that you have chosen for each type of security check.