Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
Using the UNIXMAP class and Virtual Lookaside Facility (VLF) z/OS Security Server RACF Security Administrator's Guide SA23-2289-00 |
|||||||||||
It is important to use Virtual Lookaside Facility (VLF) and the UNIXMAP class to improve performance. You might also need to use VLF and UNIXMAP class if your system programmer has not yet converted your systems for stage 3 of application identity mapping. See z/OS Security Server RACF System Programmer's Guide for information about converting to stage 3 by running the IRRIRA00 conversion utility. VLF (and the associated VLF classes IRRUMAP and IRRGMAP) and the UNIXMAP class are used to map UIDs to RACF® user IDs and GIDs to RACF group names. Both VLF and the UNIXMAP class can be either active or inactive. Table 1 shows how these states affect performance. It is recommended that both the UNIXMAP class and VLF remain active, and that the VLF classes IRRUMAP and IRRGMAP should be defined to VLF.
You have the option to cache additional z/OS UNIX security information in VLF. This capability allows RACF to avoid accessing the RACF database when called to create a security environment for z/OS UNIX users. To use the cached user security (USP) packet, the IRRSMAP class must be defined to VLF. For more information, see z/OS Security Server RACF System Programmer's Guide. For information about the effect of certain RACF commands on VLF, see RACF commands for flushing a VLF cache. For more information on VLF, see:
|
Copyright IBM Corporation 1990, 2014
|