Security options

zDMF TSO Monitor – Option 7: Display Installation Options mentions the zDMF installation options.

The following are the options pertaining to security:

• zDMF DB CPFX: The Command Prefix specified for entering the zDMF Server operator commands.
• zDMF DB DSN: The zDMF server's DATA BASE data set name.
• zDMF DB VOL: The first volume where zDMF resides.
• zDMF DB SAF: The user's SAF authority for the zDMF server's DATA BASE data set name. The zDMF DB SAF options are:
  • None: Indicates this user has NO authority to data set; update impossible.
  • Read: Indicates this user has READ authority to data set; update impossible.
  • Update: Indicates this user has UPDATE authority to data set; update possible.
  • Control: Indicates this user has CONTROL authority to data set; update possible.
  • Alter: Indicates this user has ALTER authority to data set; update possible.
  • No Security: Indicates that SAF is running, but this data set is not protected—anyone can update.
  • SAF Not Active: Indicates that SAF is not running on this system, thus there is no protection—anyone can update.
  • Blank (nothing displayed): Indicates there is no server running with the command prefix that the user has selected. The other two lines also will display nothing.
  Note: This field needs to show Update, Alter, Control, SAF Not Active, or No Security if you want to make updates to the database (PROMOTE, VERIFY, and RESTORE). If this field shows Read or None, you will get a popup once per session unless a new CPFX value is saved (from Option 6; refer to zDMF TSO Monitor - Option 6: Set User Session Options). If the field is blank, None, or Read, the Manage Group Members panel will always show limited commands.