z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Commands from NJE nodes

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

To control the commands entering from NJE nodes, do the following:
  1. Take the steps to define a user profile and FACILITY class profile for each node. FACILITY/USERID for NJE commands are verified as each command comes through the network. No advance sign on exists as with RJE workstations. See Remote workstations (RJP/RJE consoles). For example, for a node named HYDEPARK: 
    ADDUSER HYDEPARK
        DATA('NJE node at xxx, phone yyy')
        PASSWORD(initial-password)
        DFLTGRP(groupname)

RDEFINE FACILITY NJE.HYDEPARK
  2. If the NODES class is active, create a NODES profile with RUSER as the second qualifier: 
    RDEFINE NODES nodename.RUSER.userid UACC(appropriate-access)
    where appropriate-access is one of the following:
    NONE
    Reject the command
    READ
    Reverify
    UPDATE or higher
    Pass
  3. Permit the node's user ID to the command profiles the node can issue: 
    PERMIT command-profile-name CLASS(OPERCMDS) ID(HYDEPARK)
       ACCESS(appropriate-access)
  4. If the OPERCMDS and FACILITY classes are not already active, activate them: 
    SETROPTS CLASSACT(OPERCMDS FACILITY)
Parent topic: Authorizing the use of operator commands

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014