Specifying security options at startup

Depending on your system definition, the MTO might be able to specify whether IMS activates various security options during startup. Each restart command options affects security differently, and can be used with the /NRESTART command or the /ERESTART COLDSYS command.

The following table shows the restart command options that affect security.

Table 1. Security options on the /NRESTART or /ERE COLDSYS command
JCL EXEC parameters	/NRE or /ERE command input	System security level after restart
SGN=Y	USER TRANAUTH CMDAUTH CMDAUTHE MULTSIGN	Signon active. Single signon per user for static users.¹ Signon and transaction authorization active. Signon, static, and ETO command authorization active. Signon and ETO command authorization active. Signon active. Multiple signon per user (static users).¹
SGN=N	NOUSER	Signon not active.
TRN=N	NOUSER NOTRANAUTH	Signon and transaction authorization not active. Transaction authorization not active. Signon active.
TRN=Y	TRANAUTH	Signon and transaction authorization active.
TRN=F	FORCTRAN	Signon and transaction authorization enforced.
SGN=F SGN=Z SGN=G	FORCSIGN SNGLSIGN	Signon enforced. Signon active. Single signon per user (static users).¹ Signon enforced. Multiple signons per user (static users).¹
RCF=C	NOUSER NOCMDAUTHE NOCMDAUTH	Signon and command authorization for ETO not active. Command authorization for ETO not active. Command authorization for ETO/static users not active.
RCF=S	NOUSER NOCMDAUTHE NOCMDAUTH CMDAUTHE	Signon for ETO and static users not active. Command authorization for ETO/static users not active. Command authorization for ETO/static users not active. Command authorization for ETO active. Command authorization for static users not active.
RCF=N	NORACTRM+NORACFCM CMDAUTHE CMDAUTH	Signon and command authorization for ETO active. Signon and command authorization for ETO and static users active.

Note:

This also applies to dynamic users signing on to ETO terminals where the user structure name is different from the user ID.