Disabling types of security
You can disable all security for a zRule Execution Server for z/OS® server or only specific types of security.
About this task
When you create and activate the HBRADMIN RACF® class, server security is enabled for all zRule Execution Server for z/OS servers that are running on the z/OS system.
In some cases, you might want to disable server security for one or more servers. For example, you might not want to secure servers in a development or test environment. Alternatively, you might want to disable certain types of security for a server while you are maintaining other types of security. For example, you might want to control access to the Rule Execution Server console but allow any application to connect to the server.
To disable a type of security for a server, add the corresponding resource profile to the HBRADMIN class. The following table lists the resource profiles and the types of security they disable:
Resource profile | Description |
---|---|
<HBRSSID_NAME>.NO.SUBSYS.SECURITY | Disables all security for a particular server. If server security is disabled, HBRCONN and HBRCMD classes are not used. |
<HBRSSID_NAME>.NO.CONNECT.SECURITY | Disables connection security for a particular server, but maintains other types of security. |
<HBRSSID_NAME>.NO.COMMAND.SECURITY | Disables command security for a particular server, but maintains
other types of security. Note: If you disable command security, any
user can issue zRule
Execution Server for z/OS commands
from the z/OS console.
|