The OMEGAMON for IMS Classic Realtime Monitor security facility

IBM® provides a security facility in OMEGAMON for IMS Classic to prevent unauthorized use of OMEGAMON® for IMS on z/OS® commands. IBM ships OMEGAMON for IMS Classic with the internal security feature as the default. For an added level of security, you can set up an interface between OMEGAMON for IMS Classic and an external security package, such as RACF® or CA-ACF2.

Whether you use internal security, external security, or a combination of the two, you can customize the OMEGAMON for IMS Classic security table to meet the needs of your installation.

Internal security for authorized commands

All OMEGAMON for IMS Classic commands (major, minor, immediate, and INFO-line) have a security level of 0, 1, 2, or 3. Each security level can have its own password, as follows:
  • The level 3 password accesses all levels.
  • The level 2 password accesses levels 2 and 1.
  • The level 1 password accesses only the lowest level.
  • Level 0 commands run without a password.

IBM ships all authorized commands with a default security level of 3, and all others with a level of 0. Level 3 provides the highest degree of protection, while a setting of 0 means that any user can access the command.

You can change the security level of any OMEGAMON for IMS Classic command to suit the needs of your installation. For more information, see Updating the security table.

Important: Passphrase support for the OMEGAMON 3270 Classic interface requires APAR OA57133 (PTF UA98944) and APAR OA57125 (PTF UA98947). When passphrase support is enabled, OMEGAMON implements the OMEGAMON 3270 Classic interface external security without the use of security exits. For more information, see OMEGAMON 3270 Classic interface security and How to: Configure passphrase and MFA support in the OMEGAMON 3270 Classic interface in OMEGAMON shared documentation.