z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Format of the profile name

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

The format of the IRR.PROGRAM.SIGNING profile name is based on how you choose to assign program-signing key rings to users who are authorized program signers.

The first three qualifiers of profile name must be IRR.PROGRAM.SIGNING. The rest of the profile name reflects the available options for assigning key rings to signers.

You can optionally append one or two additional qualifiers to the profile name, as shown in the following list. RACF® checks the profiles in the order listed, and uses the first profile found that matches as follows:

  1. IRR.PROGRAM.SIGNING.group.userid

    This profile assigns the key ring based on the signer's current-connect group and user ID.

  2. IRR.PROGRAM.SIGNING.userid

    This profile assigns the key ring based on the signer's user ID.

  3. IRR.PROGRAM.SIGNING.group

    This profile assigns the key ring based on the signer's current-connect group.

  4. IRR.PROGRAM.SIGNING

    This profile assigns the same key ring to all authorized signers.

Rule: No generic characters are allowed in the name of a IRR.PROGRAM.SIGNING profile.

Parent topic: Details about defining IRR.PROGRAM.SIGNING profiles

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014