Protecting the RACF Database

The minidisks containing the RACF® database should, themselves, be RACF-protected with minidisk profiles with UACC(NONE) and NOWARNING specified. The NOTIFY user ID should be the RACF security administrator. System programmers who may need to use the BLKUPD command to repair the RACF database must have UPDATE authority to the RACF database.

See z/VM: RACF Security Server System Programmer's Guide for details on how to maintain RACF databases, switch to alternate RACF databases, coordinate profile updates, and make other considerations when dealing with shared or multiple RACF databases.