Defining security authorizations

To use an external security product, such as RACF, ACF2, or Top Secret, define the started task name to the security product and authorize the data set.


To define the server and other required permissions for your security product, customize the appropriate security option located in the hlq.SAZKCNTL library, and submit the job:
  • AZKRAVDB is for IBM Resource Access Control Facility (RACF) security.

  • AZKA2VDB is for CA ACF2 (Access Control Facility) security.

  • AZKTSVDB is for CA Top Secret Security (TSS).


Make sure that your z/OS Security Administrator reviews the security definitions. You might need to change definitions to meet requirements at your site.