IBM Security zSecure 2.2: User interface productivity enhancements
JeroenTiggelman 27000186A5 Visits (8650)
A set of user interface productivity enhancements to zSecure 2.2.0 has been made available in a Service Stream Enhancement (SSE) on July 30, 2016.
IBM Security zSecure suite can help you protect your enterprise, detect threats, comply with policy and regulations and reduce costs. Most of the products run on the z/OS operating system. IBM Security zSecure Admin boosts productivity for RACF administrators. IBM Security zSecure Audit helps review the security of the system in various ways. IBM Security zSecure Alert is a real-time monitor for security events.
The common query language employed by zSecure Admin, zSecure Audit, zSecure Manager for RACF z/VM, zSecure Alert, and zSecure Adapters for QRadar SIEM is called the CARLa Auditing and Reporting Language (CARLa). (This technically applies to zSecure Visual also, but as an end user you do not usually make direct use of the script language when using that product.)
The following enhancements are provided:
* Fast filtering capabilities through the new primary commands X (exclude) and XF (exclude, then find) . Use X to specify what records to exclude, or XF for a positive selection. Excluded records are skipped by block commands and FORALL.
* Quickly navigate to menu options RA.U and RA.G through new primary commands of the same names. Put your cursor on the user or group id to navigate to, then issue the command (which can be assigned to a PF key). Note that a % or * behind the text at the cursor, if there, is taken along as a mask specification.
* When looking at started task detail data, quickly navigate to the RA.U or RA.G detail display from the STUSER or STGROUP fields through a new P line command.
* Ability to maintain basic TSO and UNIX properties (such as uid and region size) from the Quick Admin (RA.Q) menu. A new SETUP VIEW (SE.5) setting governs this application segment information.
* A new SETUP OUTPUT (SE.7) option to specify a non-default SMTP ATSIGN setting (that is, the domain separator in an e-mail address; defaults to '@').
* Ability to specify larger buffer sizes in the zSecure Alert configuration dialog to make use of buffers 'above the bar' (i.e., using addresses that require 64-bit addressing).
All features except the last one apply to zSecure Admin. Except for the RA.Q update, they also apply to zSecure Audit for RACF. Some furthermore apply to zSecure Audit for ACF2 and zSecure Audit for Top Secret. The last two features apply to zSecure Alert. Some of the underlying capabilities can also be used through the CARLa Auditing and Reporting Language (CARLa).
Documentation updates have been provided in a Technote.
To fully benefit from these enhancements the following is required:
Note that this PTF will also pull in the 64-b
You might consider updating site defaults for the new settings in SE.5 and SE.7 through SETUP DEFAULT (SE.D).
If you have any questions, please post them here or on the zSecure forum. You can also visit the zSecure community and wiki. The I