Get started with CARLa on IBM Security zSecure

Learn how to customize reports in zSecure to ease auditing and administration for central security personnel

CARLa is IBM® Security zSecure's main reporting engine. In this white paper, learn how to customize reports within IBM Security zSecure to ease auditing and administration for central security personnel.

developerWorks security editors, Staff, IBM

Security icon imageThis article is brought to you by the editors of the developerWorks Security site.



24 September 2013

IBM expert Ori Pomerantz has been securing computer networks (and showing others how to do it too) since 1995. Pomerantz joined IBM in 2003 and since then, he has written classes on several IBM security products, including IBM Security zSecure™. He is also a co-author of the IBM Press publication Mainframe Basics for Security Professionals: Getting Started with RACF, 2007. In this whitepaper, "IBM Security Key Lifecycle Manager for z/OS 1.1: Operator Commands", Pomerantz helps you learn how to implement operator commands to control IBM Security Key Lifecycle Manager (ISKLM) for z/OS from the console of a mainframe. This task requires two prerequisites that you will discover:

The following sections outline what you will learn in the full white paper. To read the full paper, you can access it from Download.

Meet CARLa

CARLa is the main reporting engine used within zSecure Admin, zSecure Audit, zSecure Alert, and zSecure Manager for RACF z/VM. The CARLa programming language is sophisticated and can be used to generate your own reports, displays, emails, XML, and actions like RACF, TSO, UNIX®, and IDCAMS commands, WTO and UNIX system log messages, or more CARLa code.

CARLa contains lots of features that you normally find in a data processing language, including statistical and mathematical features. One advantage of CARLa is that you no longer need to write programs by using REXX or CLISTs to mine data from and correlate data sources. CARLa can process huge volumes of data in an efficient way while using only a minimal amount of CPU cycles.

The reports you see in the ISPF interfaces of IBM Security zSecure are all made possible because of and using the CARLa programming language. For any of the standard reports generated, you can copy the original CARLa code that produced that report. You can then adjust the CARLa program to fully meet your reporting needs (this a good way to learn the CARLa programming language).

CARLa is structured, repeatable, and scalable.


The steps you'll learn

Besides showing you how to run CARLa reports, Pomerantz covers the following instructions in this paper:

  • How to generate a simple report with all the entities of a particular type (groups)
  • Formatting and selecting specific profiles
  • Reporting fields from multiple profile segments
  • Creating reports that use the ISPF interface
  • How to learn from the system reports
  • How to automate administration tasks
    • Selecting the current state as input
    • Identifying inactive accounts
    • Creating the RACF commands
    • Running the RACF commands

In each of these sections, Pomerantz explains:

  • Running the report
  • Interpreting the lines
  • Exploring the results

Download

DescriptionNameSize
Whitepaperget_started_carla.pdf686KB

Resources

Learn

  • Explore the topics and technologies in this article:
    • CARLa is the main reporting engine used within zSecure Admin, zSecure Audit, zSecure Alert, and zSecure Manager for RACF z/VM.
    • IBM Security zSecure provides cost-effective security administration, improves service by detecting threats, and reduces risk with automated audit and compliance reporting.
  • Explore the IBM Security Framework for cutting-edge knowledge on IT security issues.
  • Start your journey to implement IT security through pragmatic, intelligent, and risk-based practices at Security on developerWorks.
  • Follow developerWorks on Twitter.
  • Watch developerWorks on-demand demos ranging from product installation and setup demos for beginners, to advanced functionality for experienced developers.

Get products and technologies

  • Evaluate IBM products in the way that suits you best: Download a product trial, try a product online, or use a product in a cloud environment.

Discuss

  • Get involved in the developerWorks Community. Connect with other developerWorks users while exploring the developer-driven blogs, forums, groups, and wikis.

Comments

developerWorks: Sign in

Required fields are indicated with an asterisk (*).


Need an IBM ID?
Forgot your IBM ID?


Forgot your password?
Change your password

By clicking Submit, you agree to the developerWorks terms of use.

 


The first time you sign into developerWorks, a profile is created for you. Information in your profile (your name, country/region, and company name) is displayed to the public and will accompany any content you post, unless you opt to hide your company name. You may update your IBM account at any time.

All information submitted is secure.

Choose your display name



The first time you sign in to developerWorks, a profile is created for you, so you need to choose a display name. Your display name accompanies the content you post on developerWorks.

Please choose a display name between 3-31 characters. Your display name must be unique in the developerWorks community and should not be your email address for privacy reasons.

Required fields are indicated with an asterisk (*).

(Must be between 3 – 31 characters.)

By clicking Submit, you agree to the developerWorks terms of use.

 


All information submitted is secure.

Dig deeper into Security on developerWorks


  • Bluemix Developers Community

    Get samples, articles, product docs, and community resources to help build, deploy, and manage your cloud apps.

  • Security

    Pragmatic, intelligent, risk-based IT Security practices.

  • DevOps Services

    Software development in the cloud. Register today to create a project.

  • IBM evaluation software

    Evaluate IBM software and solutions, and transform challenges into opportunities.

static.content.url=http://www.ibm.com/developerworks/js/artrating/
SITE_ID=1
Zone=Security
ArticleID=946324
ArticleTitle=Get started with CARLa on IBM Security zSecure
publish-date=09242013