z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Program control by SMFID in BASIC or ENHANCED mode

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

Program control by system identifier provides a way to restrict access to a program based on system identifier (SMFID). The SMFID is the SID value specified in the active SMFPRMxx member of your system parameter library, such as SYS1.PARMLIB.

To set up program control by system ID, create a conditional access list for the PROGRAM profile that protects the program. To ensure no access to the profile in general, specify UACC(NONE), or specify ID(*) ACCESS(NONE) on the PROGRAM profile. Then, permit users on selected systems using WHEN(SYSID(system-id)) with the ID and ACCESS operands on the PERMIT command:
PERMIT profile-name CLASS(PROGRAM) ID(user or group or *) ACCESS(READ)
   WHEN(SYSID(system-identifier))

This restricts the specified users or groups to executing the program only on a system that has a matching system identifier.

Parent topic: Program security modes

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014