z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Controlling job class usage

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

An installation can control job class usage by granting access based on the submitter’s profile, or based on the owner’s profile, or both.

The control is based on the presence or absence of two FACILITY class profiles:
  • If the profile JES.JOBCLASS.OWNER is defined in the FACILITY class, job class profiles for owners are enforced.
  • If the profile JES.JOBCLASS.SUBMITTER is defined in the FACILITY class, job class profiles for submitters are enforced.
  • If both profiles are defined in the FACILITY class, a job class must pass both sets of profiles before it is considered valid.
  • If neither profile is defined in the FACILITY class, any job class can be used.
The job class profiles are of the form:
JOBCLASS.localnodeid.jobclass.jobname
where:
localnodeid
Is the name of the node on which the job is located
jobclass
Is the 1 - 8 character job class that is being controlled
jobname
Is the name that is in the name field of the JOB statement
Parent topic: Controlling the use of job names

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014