Define the MVS program controlled libraries for RSE
Servers with authority to BPX.SERVER must
run in a clean, program-controlled environment. This requirement implies
that all programs called by RSE must also be program controlled. For MVS load libraries, program control
is managed by your security software. This step is required for clients
to be able to connect.
RSE uses system (
SYS1.LINKLIB), Language Environment®'s
runtime (CEE.SCEERUN*) and ISPF Gateway (ISP.SISPLOAD)
load libraries. RALTER PROGRAM ** UACC(READ) ADDMEM('SYS1.LINKLIB'//NOPADCHK)RALTER PROGRAM ** UACC(READ) ADDMEM('SYS1.CSSLIB'//NOPADCHK)RALTER PROGRAM ** UACC(READ) ADDMEM('SYS1.MIGLIB'//NOPADCHK)RALTER PROGRAM ** UACC(READ) ADDMEM('CEE.SCEERUN'//NOPADCHK)RALTER PROGRAM ** UACC(READ) ADDMEM('CEE.SCEERUN2'//NOPADCHK)RALTER PROGRAM ** UACC(READ) ADDMEM('ISP.SISPLOAD'//NOPADCHK)SETROPTS WHEN(PROGRAM) REFRESH
Note: Do not use the
** profile if you already have
a * profile in the PROGRAM class.
The profile obscures and complicates the search path used by your
security software. In this case, you must merge the existing * and
the new ** definitions. Use the ** profile, as documented
in Security Server RACF® Security
Administrator's Guide (SA22-7683).The following additional prerequisite libraries must be made program controlled to support the use of optional services. This list does not include data sets that are specific to a product that z/OS® Explorer interacts with.
- System load library, for encrypted communication
SYS1.SIEALNKE
Note: Libraries that are designed for LPA placement also require program
control authorizations if they are accessed through LINKLIST or STEPLIB.
This publication documents the usage of the following LPA libraries:
- ISPF, for ISPF Gateway
ISP.SISPLPA
- REXX runtime
library
REXX.*.SEAGLPA
- z/OS Explorer
FEK.SFEKLPA