Transaction routing security with MRO

In transaction routing, the authority of a user to access a transaction can be tested in both the TOR and the AOR.

In the TOR, a normal test is made to ensure that the user has authority to access the transaction defined as remote, just as if it were a local transaction. This test determines whether the user is allowed to run the relay program.

In the AOR, the transaction has as its principal facility a remote terminal (the "surrogate" terminal) that represents the "real" terminal in the TOR. The way in which the remote terminal is defined (see CICS® Intercommunication Guide) affects the way in which user security is applied.

In both cases, tests against the link security are made as described in Link security with MRO.

Note: During transaction routing, the 3-character operator identifier from the TOR is transferred to the surrogate terminal entry in the AOR. This identifier is not used for security purposes, but it may be referred to in messages and audit trails.
When transaction routing a PSB request, the following conditions must both be satisfied: