z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Customizing the SIGVER segment of PROGRAM profiles

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

The SIGVER segment of a profile in the PROGRAM class contains the signature verification options that apply to one or more programs that are controlled by the profile. Customize the fields of the SIGVER segment using the SIGVER operand of the RALTER or RDEFINE command.

When you customize the SIGVER segment of a PROGRAM profile, you can specify options for the following suboperands of the SIGVER operand:
SIGREQUIRED
Specifies whether the program must be digitally signed.
FAILLOAD
Specifies the conditions under which the program should fail to load in the event of a signature verification failure.
SIGAUDIT
Specifies which signature verification events are logged.

For details about customizing the SIGVER segment using the RALTER and RDEFINE commands, see z/OS Security Server RACF Command Language Reference.

For examples of customizing the SIGVER segment, see Steps for verifying a signed program.

If you want to delegate authority for customizing the SIGVER segment to auditors or other users who do not have the SPECIAL attribute, see Delegating the authority for specifying signature verification options.

Parent topic: Overview of enabling RACF to verify signed programs

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014