System Authorization Facility authorization

The user ID that runs the z/OS® DLA job or STC must have the following SAF (System Authorization Facility) authorities:

• READ access is recommended for all the data sets in the system PARMLIB concatenation used during IPL.
• SAF authorizations are required for WebSphere® for MQ resources and commands in order to discover Websphere for MQ objects. See the IBM MQ for z/OS customization section for a description of the required SAF steps for WebSphere for MQ.
• SAF authorizations are required for Db2® resources and commands in order to discover Db2 objects. See the Db2 customization section for a description of the required SAF steps for Db2.
• READ access is recommended to WebSphere configuration files.
• An OMVS (USS) segment with authority to issue the netstat, host, and home commands.