z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Suggestions for assigning user attributes

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

When defining users to RACF® with the ADDUSER command, or when modifying user attributes with the ALTUSER command, RACF security and group administrators should assign:
  • SPECIAL, AUDITOR, and OPERATIONS attributes to only those users responsible for administering RACF on a system-wide basis
  • CLAUTH attributes to only those users who are responsible for defining other users and general resources
  • RESTRICTED attribute to only those user IDs that should not gain access to protected resources they are not specifically authorized to access
Note: You cannot assign the ADSP attribute to a user who allocates space for data sets that do not meet the RACF or installation naming conventions.
Parent topic: Defining users

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014