The entity used to check authorization is $$CTBACT.qname.groupname.jobname
For example, to permit USERA to use all jobs invocations in all groups beginning with SYS, use the following commands:
For RACF:
RDEFINE FACILITY $$CTBACT.qname.SYS* UACC(NONE)
PERMIT $$CTBACT.qname.SYS* CLASS(FACILITY) ID(USERA) ACCESS(READ)
For TopSecret:
TSS PERMIT(USERA) IBMFAC($$CTBACT.qname.SYS) ACC(READ)
For ACF2/SAF:
SET RESOURCE(CMF)
COMP
$KEY($CTBACT.qname.SYS***********************)
UID (USERA) ALLOW
Parent Topic |