AO application security

Security consists of controlling which applications can issue the Issue Command (ICMD) call and which commands they can specify using ICMD.

ICMD security is implemented using RACF® (or equivalent), the Command Authorization Exit Routine (DFSCCMD0), or both. To specify one or both methods of securing ICMD, use the AOIS parameter in the DBC, DCC, and IMS procedures.

You need to use the following RACF commands to implement security for AO applications:

• ADDGROUP
• ADDUSER
• PERMIT
• RDEFINE