Security-related EXEC parameters for the control region

Several parameters control the kind of security checking that is done during the current execution by acting as switches for different types of security.

Moreover, these parameters determine how much flexibility the MTO has to override the choice of security checking. You must coordinate the setting of these switches with both overall security design and operational procedures. The parameters are RCLASS, SECCNT, TRN, SGN, RCF, ISIS, ASOT, ALOT, AOI1, AOIS, and TCORACF.

All the values generated for the IMS procedure parameters specify no security. You need to reset them to match the security design. You must also coordinate the level of the security tables with the suffix identifier for the nucleus.

Related reading: Operational restrictions for the MTO, and the parameter values and their meaning are discussed in IMS Version 15 System Administration.

The IMSID parameter is partially related to security and to operations. The one- to four-character value that you specify uniquely identifies the control region. Dependent regions executing under control of this nucleus must specify the same identifier. The definition default is IMSA.

Any message sent to the console from subsystem execution is identified by this name; therefore, the name chosen should be unique to other subsystems executing in the z/OS® system, including any batch executions. The IMSID name should not be the same as the procedure name in order to avoid confusion as to the source of the message.