Controlling Access to Database Tokens

Each data set containing TP profiles or side information entries can have a database token assigned to it. The database token is a 1 through 8-character name from character set Type A that represents the file name in security definitions. If a TP profile or side information entry has no database token, APPC/MVS does not call RACF® to verify access requests.

To create and maintain database tokens, APPC/MVS administrators use the APPC/MVS administration utility's DBMODIFY command. For more information about that command, see Using the APPC/MVS Administration Utility.

To control administrator access to database tokens, you can define the APPCMVS.DBTOKEN profile in RACF's FACILITY class and give UPDATE access to the appropriate APPC/MVS administrators. For example: 
RDEFINE FACILITY APPCMVS.DBTOKEN UACC(NONE)

PERMIT APPCMVS.DBTOKEN CLASS(FACILITY) ID(userid or groupid) ACCESS(UPDATE)
Parent topic: Controlling User Access to TP Profiles and Side Information on MVS