RACF Security

The IOA interface uses the general resource class. A different user‑defined class can be used for IOA by updating the appropriate table (for example, the Class‑Descriptor‑Table) and setting the IOACLASS parameter.

The following resource classes are used within IOA security:

Table 7 RACF Resource Classes

Class	Description
FACILITY	Used to control a user’s access to INCONTROL protected elements
SURROGAT	Used to check authorization of users submitting jobs on behalf of other users A surrogate user is a user who is authorized to submit jobs on behalf of another user without having to specify user ID and password
DATASET	Used to control a specified user ID’s access to datasets

Class

Description

FACILITY

Used to control a user’s access to INCONTROL protected elements

SURROGAT

Used to check authorization of users submitting jobs on behalf of other users

A surrogate user is a user who is authorized to submit jobs on behalf of another user without having to specify user ID and password

DATASET

Used to control a specified user ID’s access to datasets

Parent Topic

Security Resource Classes