Authorization requirements for the Accelerator Loader server

To use an external security product, such as RACF®, ACF2, or Top Secret, define the hlvidPROC started task name to the security product and authorize the data set.

About this task

The following table summarizes the access requirements by data definition name:

Table 1. Access requirements by data definition name
Data definition name	Access
SHLVLOAD	READ, EXECUTE
SHLVRPC	READ, EXECUTE
SHLVEXEC	READ
TRACE	READ, WRITE
SYSCHK1	READ, WRITE
SHLVMAP	READ, WRITE
SHLVTXVTB	UPDATE

Make sure that your z/OS® Security Administrator reviews the security definitions. You might need to change definitions to meet requirements at your site.

If you use SYSOPR with MONITOR1, STARTDB authority may also be required for table spaces being loaded. This authority is required to allow the IDAA stored procedures to perform an ACCESS DB command to externalize RUNSTATS. See the IDAA Installation Guide for details.

Procedure

To define the server and other required permissions for your security product, edit one of the following jobs that are located in the hlq.SHLVCNTL library, and submit the job:

HLVRAVDB is for IBM® Resource Access Control Facility (RACF) security.
HLVA2VDB is for CA ACF2 (Access Control Facility) security.
HLVTSVDB is for CA Top Secret Security (TSS).