z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Example 3: The master catalog and user catalogs

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

With the exception of a very select group, users should only be allowed to READ the master catalog. To allow this, enter: 
RALTER GLOBAL DATASET ADDMEM('CATALOG.MASTER.**'/READ)
ADDSD  'CATALOG.MASTER.**' UACC(READ)
PERMIT 'CATALOG.MASTER.**' ID(SYSGROUP) ACCESS(CONTROL)
Note:
  1. The exact form of the names specified on these commands depends on the naming conventions at your installation. This example assumes that catalog names take the form: 
    CATALOG.MASTER.MVSESA.Vvvvvvv for a master catalog
and
CATALOG.applic.Vvvvvvv for application-specific catalogs
                   (for example, TSO or DB2)
  2. The access authority that is required to update and maintain the catalog depends on the DFP release that is installed on your system.
For user catalogs, most users should be allowed to add entries as they create data sets. To allow this, enter: 
RALTER GLOBAL DATASET ADDMEM('CATALOG.**'/UPDATE)
ADDSD 'CATALOG.**' UACC(UPDATE)
Parent topic: Examples of creating global access checking table entries

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014