![[z/OS]](../images/ngzos.gif)
Using writable SAF keyrings
WebSphere® Application Server provides the function to allow a WebSphere Application Server administrator to perform certificate management operations on System Authorization Facility (SAF) keyrings by using the (Open Cryptographic Services Facility) OCSF Data library functions for SAF keyrings.
Before you begin
About this task
Defining RACF Authority for Clients and Servers
The following procedure uses ring-specific profile checking to grant authority. Ring-specific profile checking applies only to a specific keyring and does not allow global access to any keyring.
With ring-specific profile checking, a resource with the format, <ringOwner>.<ringName>.LST is used to provide access control to a specific keyring on the R_datalib READ functions.
A resource with the format <ringOwner>.<ringName>.UPD is used to provide access control to a specific keyring on the UPDATE functions.
The procedure to define RACF authority for clients and servers is as follows: