Step 5.2 Function Security Definitions (Optional)

Job IOASSAF3 in the IOA INSTWORK library is optional. It contains some definition samples for various entities. Customize this job according to your use and submit this job.

1. Define entities and user authorizations to ACF2.

   For information about how to define IOA entities and user authorizations to ACF2, see Basic Definition Security Calls and Extended Definition Security Calls.

   Example: To permit USERA to use the IOA Online facility, specify the following command:

   SET RESOURCE(CMF)
   COMP
   $KEY($$IOAEDM.qname)
   UID(USERA) ALLOW

   where qname is the name used to assign different authorizations to different IOA environments (such as Test and Production). This parameter is specified during IOA installation.

   To define and authorize all conditions beginning with SYS, use the following command:

   SET RESOURCE(CMF)
   COMP
   $KEY($$IOARES.qname.SYS************************)
   UID(USERA) ALLOW

   Example: To authorize USERA (the user ID of the IOA installer) access to a given IOA entity, use the following command:

   SET RESOURCE(CMF)
   COMP
   $KEY($$IOAnnn.qname)
   UID(USERA) ALLOW

   Example: All entity names for each IOA protected element appear in Basic Definition Security Calls and Extended Definition Security Calls.

2. Submit the job.

   Verify that all job steps end with a condition code of 0.

   This job must be run under a user of an ACF2 administrator who is authorized to enter these ACF2 commands.