DFSMSrmm uses the system authorization facility (SAF) to authorize the use of DFSMSrmm commands and functions to further secure your DFSMSrmm resources. For DFSMSrmm command authorization decisions, you can use volume ownership, or volume and data set authorization. When RACF® name hiding is in use, DFSMSrmm makes extra calls via SAF to ensure that users can only access DFSMSrmm resource information for volumes and data sets that they are authorized to use. You can use discrete Resource Access Control Facility (RACF) TAPEVOL profiles and the RACF TAPEDSN option to ensure that only authorized users can access data on volumes that are defined to DFSMSrmm.