RACF data set profiles
Using RACF® facilities, you can protect data sets on direct access storage devices (DASD) and tape by defining profiles for the data sets you want to protect.
The rules for defining data set profiles to RACF are described in the z/OS® Security Server RACF Security Administrator's Guide, and the z/OS Security Server RACF Command Language Reference. For examples, see the z/OS Security Server RACF General User's Guide.
You define profiles to protect two RACF categories
of data sets:
- Profiles for user data sets, where the high-level qualifier is a RACF userid. All RACF-defined users can protect their own data sets.
- Profiles for group data sets, where the high-level qualifier is a RACF group name (see RACF group profiles for information about RACF groups). A RACF-defined user can RACF-protect group data sets provided the user has the necessary authority or attributes. (See the z/OS Security Server RACF Security Administrator's Guide for details.)
Note: Data set profiles do not apply to CICS® terminal
users, but only to the CICS region
userid.