Authorizing access to SMP/E data sets
The Z Common Data Provider must have the read access to the SMP/E target data sets.
About this task
You must grant read access to the following SMP/E target data sets:
| Data set name | Content |
|---|---|
hlq.SHBOLOAD |
Load library for runtime modules and stand-alone utilities. |
hlq.SHBODEFS |
System Data Engine definition files. |
Procedure
The following example shows how the sample RACF® command
protects these data sets and grants the Z Common Data Provider
started tasks to access to them.
ADDSD 'hlq.SHBOLOAD' UACC(NONE)
PERMIT 'hlq.SHBOLOAD' ID(HBOLGF) ACCESS(READ)
ADDSD 'hlq.SHBODEFS' UACC(READ)
Note: You can also protect all these data sets with one generic profile such as
'hlq.**'. However, you must strictly control
read access to hlq.SHBOLOAD because it contains APF-authorized
programs, and the profile that protects this data set must be defined with
UACC(NONE). In addition to the user ID (HBOLGF) that is associated
with the Z Common Data Provider started tasks, users who submit System Data Engine bath jobs also must have read
access to hlq.SHBOLOAD.