Use SAF resource profiles to control application access
to the NMI requests and to the real-time data. The profiles are defined
in the SERVAUTH class. You must give the user ID of the application
READ access to each resource that you want the application to use.
The resource names have the format
EZB.TRCCTL.sysname.tcpname.identifier or
EZB.TRCSEC.sysname.tcpname.identifier, where:
- sysname is the MVS™ system name where the TCP/IP stack is running.
- tcpname is the TCP/IP stack
job name.
- identifier is the identifier
that is associated with the specific request.
Restriction: You must define the SAF resource
profiles for the NMI. If profiles protecting these resources are not
defined, no application is authorized to invoke the NMI requests or
obtain the real-time data.
The following resource names are supported:
- EZB.TRCCTL.sysname.tcpname.OPEN
This resource name applies
to the RCCOpen request. In order for the application to invoke an
RCCOpen request, the application user ID must be authorized to the
resource profile.
- EZB.TRCCTL.sysname.tcpname.PKTTRACE
This resource name applies
to the RCCSetFilters request for the packet trace type. In order for
the application to invoke an RCCSetFilters request for the packet
trace type, the application user ID must be authorized to the resource
profile.
- EZB.TRCSEC.sysname.tcpname.IPSEC
This resource name applies
to the RCCSetFilters request for the packet trace type. In order for
the application to set the filter flag to obtain IPSec cleartext data,
the application user ID must be authorized to the resource profile.
- EZB.TRCCTL.sysname.tcpname.DATTRACE
This resource name applies
to the RCCSetFilters request for the data trace type. In order for
the application to invoke an RCCSetFilters request for the data trace
type, the application user ID must be authorized to the resource profile.
- EZB.TRCSEC.sysname.tcpname.ATTLS
This resource name applies
to the RCCSetFilters request for the data trace type. In order for
the application to set the filter flag to obtain AT-TLS cleartext
data, the application user ID must be authorized to the resource profile.