Perform the following steps to implement Control‑D security.
Step 1.1. Grant Access Permissions
Step 1.2. Customize Security Parameters
Perform the steps in ICE for all the required parameters, as follows:
Table 44 ICE Parameters
Parameter |
Description |
---|---|
DEFMCHKD |
When choosing a definition mode as COND to any of the Control‑D security modules, use qname together with the value given to this parameter as the high-level qualifier, to determine the real definition mode to be used. |
SECTOLD |
Determine the action to perform if your security product is inactive or a specific resource is not defined in the security product. Valid values are:
|
DCDAMCHK |
Specify CDAM CHECK option. Valid values are:
|
DGLBRULR |
Specify Global Ruler option. Valid values are:
|
SYSDCHK |
Specify SYSDATA viewing option. Valid values are:
|
The following parameters determine the number of pages a user is authorized to print using the immediate print request:
Table 45 Page Authorization Parameters
Parameter |
Quantity |
|
---|---|---|
DPAGMIN |
10 |
>0 |
DPAGMID |
100 |
>min |
DPAGMAX |
200 |
>mid |
Table 46 ICE Definition Parameters
Parameter |
Description |
---|---|
RACULIST |
RACF USERLIST options. Valid values are:
|
TSSULIST |
TopSecret USERLIST option. Valid values are:
|
SAFULIST |
ACF2 USERLIST option. Valid values are:
|
DREPLST |
Determine if the current userid must be authorized to entity $$REPLST.qname.recname to access reports of recipient recname.
|
REPNCHK |
Whether to switch on Security by report name, which enables you to control reports based on the report names in Control-D/Page On Demand or the Control-D User Screen (Screen U). Valid values are Y (YES) and N (NO). The default is N. Security by report name works only under Control-D extended security mode. To give permissions for end users to see reports in the report list, the following entity must be defined in the SAF (System Access Facility): $$RPNASR.qname.report name For more information, see Extended Definition Mode of Module CTDSE24 and Extended Definition Mode of Module CTDSE04. |
REPSPACE |
Character to replace blanks in report names in SAF entities. The default character is the underscore (_). Valid values include any character except for the space character and the comma. |
Table 47 Mode Definition Parameter
Mode |
Description |
---|---|
Mode Definition |
Specify one of the following values to determine the Definition mode for the Control‑D security modules:
|
DFMD01 |
Definition mode for the CTDSE01 Control‑D security module. |
DFMD04 |
Definition mode for the CTDSE04 Control‑D security module. |
DFMD08 |
Definition mode for the CTDSE08 Control‑D security module. |
DFMD24 |
Definition mode for the CTDSE24 Control‑D security module. |
DFMD26 |
Definition mode for the CTDSE26 Control‑D security module. |
DFMD27a |
Definition mode for the CTDSE27 Control‑D security module. |
Step 1.3. Save Security Parameters into Product
This step saves all the security parameters specified for Control‑D. When this step completes, the Status column is automatically updated to COMPLETE.
Parent Topic |