z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Authorizing users for the ISPF panels to update custom field data

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

To enable users to use the ISPF panels to update data in custom fields, you must first create FACILITY class profiles that define the IRR.RADMIN.LISTUSER and IRR.RADMIN.LISTGRP resources. The ALTUSER and ALTGROUP panels that support custom fields invoke the R_admin callable service on behalf of the ISPF user. Therefore, users who update data in custom fields must be authorized with READ access to the appropriate IRR.RADMIN resource. At your option, you can enable generics for the FACILITY class and define the IRR.RADMIN.LIST* resource.

Tip: Use the UACC(READ) option rather than authorizing each user or group to the appropriate IRR.RADMIN resource. Otherwise, if you use UACC(NONE), you must individually authorize each user or group to use the ISPF panels.

To authorize users for the ISPF panels, create FACILITY class profiles, if not already defined, that define the IRR.RADMIN.LISTUSER and IRR.RADMIN.LISTGRP resources.

Examples:
SETROPTS GENERIC(FACILITY)
RDEFINE  FACILITY IRR.RADMIN.LIST* UACC(READ)
SETROPTS CLASSACT(FACILITY) RACLIST(FACILITY)
  or, if the FACILITY is already in use:
SETROPTS RACLIST(FACILITY) REFRESH
Parent topic: Authorizing users to update data in a custom field

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014