RACF Utilities Summary

November 20, 2015 Rui Miguel Feio

IBM provides several utilities for RACF that can be helpful for a mainframe security administrator. Without going into much detail on each of the RACF utilities, the following table provides an explanation of what each of these utilities is for: Utility Description IRRMIN00 RACF database initialisation utility. IRRMIN00 can be […]

What is SAF?

November 9, 2015 Rui Miguel Feio

SAF or System Authorisation Facility is an interface defined by MVS that enables programs to use system authorisation services to control access to resources, such as datasets, MVS commands, JES, etc. SAF can either process security authorisation requests directly, or work with an External Security Manager (ESM) such as RACF, […]

z/OS In-Built Security Features

July 23, 2015 Rui Miguel Feio

The following are the in-built security features that come with z/OS: System Authorization Facility (SAF): SAF is part of the operating system. SAF is available whether or not an additional security product such as RACF, ACF2 or Top Secret is installed. If an additional security product is installed, SAF routes […]

RACF Templates

June 17, 2015 Rui Miguel Feio

The RACF database contains records whose format is controlled by a set of database templates. The templates map out how profiles are written on the RACF database. IBM makes changes to the templates to add new segments to the RACF database, or to add new fields to existing segments. The […]

UACC and ID(*) in RACF

October 4, 2014 Rui Miguel Feio

If you work with mainframes, you are probably familiar with UACC (universal access) and ID(*). Many people believe that UACC and ID(*) represent the same thing. This is not true. They are slightly different and you need to take the difference in consideration when planning your RACF security environment. Access Authority Description […]

1 2 3 4 5 6