Security
You specify these parameters to protect HCL Workload Automation for Z functions and data, and to record access to HCL Workload Automation for Z data.
Statement | Parameters | Description |
---|---|---|
AUTHDEF | Specifies how HCL Workload Automation for Z resources are defined to RACF® | |
AROPTS | AUTHUSER | Specifies where HCL Workload Automation for Z retrieves a name for authority checking |
USERREQ | Specifies if a valid user ID is required | |
AUDIT | Specifies when access to HCL Workload Automation for Z data is recorded | |
JTOPTS | JOBCHECK | Specifies if the job name in JCL must match the operation job name |
USRREC | USRNAM | Specifies the user name. |
USRPSW | Specifies the user password. | |
SERVOPTS | USERMAP | Defines a member that contains all the associations between Dynamic Workload Console users (via HCL Workload Automation for Z connector) and matching RACF® user IDs. |
You set up the security environment when you install HCL Workload Automation for Z.
You can then customize HCL Workload Automation for Z security
by specifying particular levels of protection. If you use RACF®, you perform these steps:
- Add HCL Workload Automation for Z to the started-procedure table, ICHRIN03. If you use RACF® 2.1, you can instead add HCL Workload Automation for Z to the STARTED class. You need not perform this action if you run HCL Workload Automation for Z as a batch job.
- Add each HCL Workload Automation for Z subsystem name to the APPL class. This determines the level of access to the subsystem.
- Add a general resource class for HCL Workload Automation for Z to the class descriptor table. If you use RACF® 2.1, you can use the general resource class supplied for HCL Workload Automation for Z, IBMOPC.
- Update the router table, ICHRFR01, to specify what action is taken for the resource class.
You can then specify levels of protection for particular HCL Workload Automation for Z functions and data. The Planning and Installation describes how you set up the security environment. Implementing security describes in detail how to protect HCL Workload Automation for Z.
You specify parameters on the AUDIT and AUTHDEF statements to determine when AUDIT information is produced. For more information, see Generating audit information (JT log data).