Creating the RACF classes for securing server resources
Create and activate the RACF® classes that you need to secure the server resources for your zRule Execution Server for z/OS® server.
About this task
You manage security for zRule Execution Server for z/OS using RACF classes. When you create and activate the HBRADMIN class, server security is enabled for all zRule Execution Server for z/OS instances that are running on the z/OS system. Users can then be authorized for certain tasks by using the different classes.
Procedure
Run the ++HBRWORKDS++.SHBRJCL(HBRCRECL) job. The table shows the RACF classes
that are created by the JCL.
Class | Description |
---|---|
HBRADMIN | Controls whether server security and security for specific server resources are enabled or disabled. |
HBRCONN | Specifies the user IDs that are authorized to connect to the zRule Execution Server for z/OS and execute rulesets. This class is ignored if server security is disabled. |
HBRCMD | Specifies the user IDs that are authorized to issue zRule Execution Server for z/OS commands such as START, STOP, PAUSE, or RESUME from the z/OS console (or equivalent). This class is ignored if server security is disabled. |
Note: The supplied JCL gives each class a POSIT value of
128. You must customize this POSIT value for your own local security
setup. More information on POSIT values can be found in Security
Server RACF Security Administrator's
Guide.