Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
Allowing a warning period z/OS Security Server RACF Security Administrator's Guide SA23-2289-00 |
|
In addition to deciding what to protect, the implementation team must consider how to phase in the
new security controls with minimum disruption of current work patterns.
You should consider:
These commands cause SMF logging to occur for all accesses. If the profiles allow all access, the SMF records indicate what users or jobs need access to the protected resources. RACF® also provides the option
of issuing a warning message to users instead of failing a request
to access a resource. You can control which resources are protected
in this manner by specifying the WARNING operand on the ADDSD, RDEFINE,
ALTDSD, or RALTER command. When a resource check is performed, if
the check fails and WARNING has been specified, RACF issues a warning message to the user, logs
the access, and allows the user to access the resource.
Note:
|
Copyright IBM Corporation 1990, 2014
|