|
|
|
|
|
The RUNTSEC parameter is used by the CMEM security interface for interaction with external security products, such as CA-RACF, CA-TOP SECRET, and CA-ACF2. For more information see the INCONTROL for z/OS Security Guide.
CMEM security checks are carried out in two stages: at order time and at runtime.
At order time, security checks are carried out to ascertain whether the owner of the rule, as specified in the OWNER subparameter, is authorized to code each one of the rule statements.
At runtime, additional security checks are carried out to determine whether the user who owns the rule (RUNTSEC=OWNER) or the user who triggered the rule (RUNTSEC=TRIGGER) is authorized to execute a DO COND or DO FORCEJOB statement defined in the rule.
Parent Topic |