Define the MVS program controlled libraries for RSE
Servers with authority to BPX.SERVER must
run in a clean, program-controlled environment. This requirement implies
that all programs called by RSE must also be program controlled. For MVS™ load libraries, program control
is managed by your security software. This step is required for clients
to be able to connect.
RSE uses system (
SYS1.LINKLIB), Language Environment®'s
runtime (CEE.SCEERUN*) and ISPF Gateway (ISP.SISPLOAD)
load libraries. RALTER PROGRAM ** UACC(READ) ADDMEM('SYS1.LINKLIB'//NOPADCHK)RALTER PROGRAM ** UACC(READ) ADDMEM('SYS1.CSSLIB'//NOPADCHK)RALTER PROGRAM ** UACC(READ) ADDMEM('SYS1.MIGLIB'//NOPADCHK)RALTER PROGRAM ** UACC(READ) ADDMEM('CEE.SCEERUN'//NOPADCHK)RALTER PROGRAM ** UACC(READ) ADDMEM('CEE.SCEERUN2'//NOPADCHK)RALTER PROGRAM ** UACC(READ) ADDMEM('ISP.SISPLOAD'//NOPADCHK)SETROPTS WHEN(PROGRAM) REFRESH
Note: Do not use the
** profile if you already have
a * profile in the PROGRAM class.
The profile obscures and complicates the search path used by your
security software. In this case, you must merge the existing * and
the new ** definitions. Use the ** profile, as documented
in Security Server RACF® Security
Administrator's Guide (SA22-7683).The following additional prerequisite libraries must be made program controlled to support the use of optional services. This list does not include data sets that are specific to a product that z/OS® Explorer interacts with.
- System load library, for encrypted communication
SYS1.SIEALNKE
Note: Libraries that are designed for LPA placement also require program
control authorizations if they are accessed through LINKLIST or STEPLIB.
This publication documents the usage of the following LPA libraries:
- ISPF, for ISPF Gateway
ISP.SISPLPA
- REXX runtime
library
REXX.*.SEAGLPA
- z/OS Explorer
FEK.SFEKLPA