SECURITY(PGM)

When a user program specifies SECURITY(PGM), z/VM® verifies if the specified user ID and password are valid in the TSAF or CS collection. To do so, z/VM requests that each system in the TSAF or CS collection validate the user ID and password against the CP directory entry defined on that system. If a system validates the user ID and password, the user ID is then sent to the resource manager, which determines if the requester is authorized to access the resource.

For private resources, z/VM checks if the specified user ID is the same as the user ID of the server virtual machine. If they are not the same, z/VM checks the :list. field of the $SERVER$ NAMES file entry for the resource to determine if the user ID is authorized to access the resource. If the user ID is the same as the user ID of the server virtual machine, the $SERVER$ NAMES file is not checked.