Define RSE as a secure z/OS UNIX server
RSE requires UPDATE access to the
BPX.SERVER profile to create or delete the security environment for the client's
thread. Note that using UID(0) to bypass this requirement is not supported. This
step is required for clients to be able to connect.
RDEFINE FACILITY BPX.SERVER UACC(NONE)PERMIT BPX.SERVER CLASS(FACILITY) ACCESS(UPDATE) ID(STCRSE)SETROPTS RACLIST(FACILITY) REFRESH
|
Attention: Defining the
BPX.SERVER (or BPX.DAEMON)
profile makes z/OS®
UNIX as a whole switch from UNIX level security to z/OS
UNIX level security, which is more secure. This switch might
impact other z/OS
UNIX applications and operations. Test the security before
activating it on a production system. For more information about the different security levels, see
UNIX System Services Planning (GA22-7800). |