Application Performance Analyzer for z/OS, Version 11.1, Customization Guide

Configuring external security (RACF)

This step is part of the Application Performance Analyzer configuration and must be completed only when your Application Performance Analyzer started tasks are configured to use an external security product to control access to Application Performance Analyzer functions. You can bypass this step if your installation has chosen to control access to functions using Application Performance Analyzer's internal security, for example, its own access rules facility.

Note:
Configuring external security is suggested if internal security is used in a sysplex environment when running Application Performance Analyzer. This can prevent situations in which one user has set up an observation request for job aaaaaaaa to run in the sysplex environment, and a second user submits a job with the same name on one of the other machines, resulting in the second job capturing data from the first job submitted.

Access to Application Performance Analyzer functions can be controlled by RACF® or a RACF-compatible external security product. Refer to Defining RACF profiles in Chapter 2 for details on how to use RACF or a RACF-compatible external security product to control access to Application Performance Analyzer functions.

A RACF action is required to support workstation users that connect to an Application Performance Analyzer started task via the Application Performance Analyzer Listener started task. The action is called USE.LISTENER.

Below are examples of RACF commands based on the assumptions made in Defining RACF profiles:

Define the resource profile:

RDEFINE FACILITY SYSTEMD.USE.LISTENER UACC(NONE)

Define the permission to allow all users to connect to the Application Performance Analyzer started task that is running on SYSTEMD:

PERMIT SYSTEMD.USE.LISTENER CLASS(FACILITY) ACCESS(READ)



Rate this page

[ Top of Page | Previous Page | Next Page | Contents | Index ]