z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Restricting access to all zFS file systems

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

In addition to restricting access to individual zFS file systems, your installation might consider adding a top generic profile in the FSACCESS class to restrict access to all zFS file systems. The profile name might consist of two asterisks (**) as the MVS™ data set name. By defining and activating a top generic profile, you will disallow access for all users to any zFS file system that is not protected by another FSACCESS profile.

Important: Before implementing a top generic profile in the FSACCESS class, work with the z/OS® UNIX administrator and carefully plan your profile names and access lists.

Example:
RDEFINE FSACCESS ** UACC(NONE)
Parent topic: Steps for restricting access to a zFS file system

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014