Security for ODBA application programs

You can secure any PSB specified on an APSB call from an ODBA application program using the z/OS® System Authorization Facility (SAF).

After APSB SAF is security-enabled, IMS calls SAF to secure the PSB specified on an APSB call against the AIMS or Axxxxxxx general resource class, based on the user associated with the ODBA application at the task level (TCB) or the address space level (ASCB/ASXB) respectively. Therefore, you must define the PSBs that you want RACF® (or your installation exit) to protect to the AIMS or Axxxxxxx resource class.

Since the AIMS resource class can contain PSBs, all PSB names specified in the AIMS resource class should be unique.

You must also specify RCLASS=IMS|xxxxxxx with an initialization EXEC parameter during IMS system definition.

Related reading: For more information about RACF and IMS, search for IMS in z/OS Security Server RACF Security Administrator's Guide.