z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Controlling the use of the AT operand

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

Commands that specify the AT operand are subject to a security check to determine if the command issuer is authorized to direct RACF® TSO commands to the specified node. Because command direction is controlled at a node level, the local node and all target nodes defined to it must have appropriate profiles.

To allow command direction to a specific node, create a profile in the RRSFDATA class to protect a resource called DIRECT.node, where node is the node name.

The request issuer needs to have READ access to the resource. The request will fail if:
  1. The RRSFDATA class is inactive.
  2. There is no RRSFDATA profile protecting DIRECT.node for the specified node.
  3. The command issuer is not properly authorized to the resource.

For information on implementing command direction using the AT operand, see Directing commands using the AT option.

Parent topic: Controlling the use of remote sharing functions

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014