IOA verifies if the user is authorized to specify the user ID (owner) in the rule definition.
RACF Security
The entity checked for this verification is:
$$BALORD.qname.owner
where owner is the user ID specified as the owner of the Control‑M/Analyzer rule or balancing mission. To permit USERA to order Control‑M/Analyzer missions owned by USERB, use the following commands:
RDEFINE FACILITY $$BALORD.qname.USERB UACC(NONE)
PERMIT $$BALORD.qname.USERB ACCESS(READ) ID(USERA) CLASS(FACILITY)
TopSecret Security
The entity checked for this verification is:
$$BALORD.qname.owner
where owner is the user ID specified as the owner of the Control‑M/Analyzer rule or balancing mission. To permit USERA to order Control‑M/Analyzer missions owned by USERB, use the following commands:
TSS ADD(sec-administrator-dept) IBMFAC($$BALORD)
TSS PERMIT(USERA) IBMFAC($$BALORD.qname.USERB) ACC(READ)
ACF2/SAF Security
The entity checked for this verification is:
$$BALORD.qname.owner
where owner is the user ID specified as the owner of the Control‑M/Analyzer rule or balancing mission. To permit USERA to order Control‑M/Analyzer missions owned by USERB, use the following ACF2 commands:
SET RESOURCE(CMF)
COMP
$KEY($$BALORD.qname.USERB)
UID (USERA) ALLOW
Parent Topic |