z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Example of defining the IEAABD.DMPAKEY profile

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

  1. Define a profile protecting a resource called IEAABD.DMPAKEY in the FACILITY class: 
    RDEFINE FACILITY IEAABD.DMPAKEY UACC(NONE)
  2. If you want to give a user an access authority that is different from the one you specified on the RDEFINE command (in this example, an access authority of READ), enter: 
    PERMIT IEAABD.DMPAKEY CLASS(FACILITY) ID(ASMITH) ACCESS(READ)
    When you specify an access authority on either the RDEFINE command or PERMIT command, RACF® allows access to program dumps as follows:
    • A user who has READ or greater authority to the IEAABD.DMPAKEY resource can obtain program dumps, even when the program is running in a TCB key that is less than 8.
    • A user who has less than READ authority to the IEAABD.DMPAKEY resource can never obtain program dumps when the program is running in a TCB key that is less than 8.
Parent topic: Protecting program dumps using the FACILITY class

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014