Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
Authorizing network jobs and SYSOUT (NJE) z/OS Security Server RACF Security Administrator's Guide SA23-2289-00 |
|
This topic contains information about how to use RACF® to ensure that all work entering or leaving
your node complies with your installation's security policy. You can
control:
JES does not validate work passing through your node on its way to another node in the network, but it does protect the work from unauthorized access while the work is temporarily stored on spool at your node. To provide security for network job entry (NJE), activate the NODES class (for inbound work) or the WRITER class (for outbound work), and define the profiles needed to enforce your installation's NJE security policy. Define the appropriate security labels and ensure that compatible SECLABEL system options (using the SETROPTS command) are active on all member nodes in the NJE network. Consult with your JES system programmer to determine what type of protection is needed for your NJE network and to obtain the information you need to correctly define these profiles. Together, you should decide whether you want to protect inbound work, outbound work, or both. For inbound work, decide whether you want to protect jobs, SYSOUT, or both. You must also determine which users and groups of users can submit work and which security labels are valid for processing on your node. |
Copyright IBM Corporation 1990, 2014
|