Activating security checking for API commands and resource definitions

To activate CICSĀ® Configuration Manager security checking:

  1. In your external security manager, such as RACF:
    1. Start of change Choose an existing resource class, such as XFACILIT, or create a new class for CICS Configuration Manager security checking.

      If you decide to use a resource class other than XFACILIT, you need to be aware of the specific requirements of a resource class for CICS Configuration Manager security checking. For details, see Requirements for a resource class for security checking.

      End of change
    2. Define general resource profiles for this class, to match the format of the security keys created by the CICS Configuration Manager server. For details, see:
    3. Authorize the appropriate users for these profiles.

    Start of change For details on performing these steps, see the members named CCVXSAFx in the sample library SCCVSAMP. End of change

  2. Ensure that the system initialization parameter SEC of the CICS region running the CICS Configuration Manager server is active (SEC=YES). The CICS Configuration Manager server performs security checking only if this SIT parameter is active.
  3. In CICS Configuration Manager:
    1. Select primary menu option 1.1 System Options.
    2. Activate either or both types of security check: to do this, you need to enter the name of the resource class and the security key prefix that you have chosen for each type of security check.

Information Information

Feedback


Timestamp icon Last updated: Friday, 1 November 2013


http://pic.dhe.ibm.com/infocenter/cicsts/v5r1/topic//ccv-security-activate.htm