If you work for an outsourcer, yes, you could have all three
security products (BTDT with ACS).
And you could have JES2 and JES3 environments.
For me, as a developer of OBS/ACS Wylbur, I had to know those
three and WACF (Wylbur Access Control Facility -- IF I remember
the name correctly). And I had to support customers that had
them. To cut down on the work load I started working on
implementing SAF(?) which allowed a client to run any and I only
needed one access interface --- in theory. And I had to know the
interfaces for JES2 and JES3 since we had customers split between
those.
Same kind of problem at Droole & Babble (formerly Boole &
Babbage, which is now owned by BMC). And Sterling Commerce's NDM
or Connect:Direct -- acquired by IBM (and then sold off...).
Steve Thompson
On 2/5/2026 2:17 PM, Phil Smith III wrote:
I'm sure you're right (I've heard that the approaches are surprisingly
different), but why would you need to know all three, unless you're going to a
vendor? I've heard of shops with two (typically trying to get to one), but is
it common to have all three??
-----Original Message-----
From: IBM Mainframe Discussion List <[email protected]> On Behalf Of
David Spiegel
Sent: Thursday, February 5, 2026 2:13 PM
To: [email protected]
Subject: Re: Cross Posted
Hi Len,
Your statement is somewhat naive.
RACF has a hierarchical structure (Users and Groups) TSS is user-centric,
unlike the other 2.
ACF2 has a 24-Byte UID String. G-d help you if it is not designed properly.
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
