On Thursday, 08/10/2006 at 07:24 AST, Imler, Steven J
[EMAIL PROTECTED] wrote:
You can use the VM:Tape USERSECR EXIT (assembler only) for a non-RACF
solution.
If you can issue CMS commands in the exit, then you can custom-build a
RACF solution. The program would have to take as input the
On Thursday, 08/10/2006 at 10:49 ZE2, Colin Allinson
[EMAIL PROTECTED] wrote:
We use RACF as our ESM and I wondered if there was any API interface
that could
be called by user code to check validity of an access to a resource (I
am not
aware of such a beast).
Yes. You will have to write
If RACF defers to you, what do you do? Also, you can use generic
profiles
to, for example, deny access to all tapes except those specifically
defined and PERMITed.
Continue with normal VM:Tape authorization processing, which includes
calling the USERSECR EXIT if the site has coded one and
On Thursday, 08/10/2006 at 10:42 AST, Imler, Steven J
[EMAIL PROTECTED] wrote:
If RACF defers to you, what do you do? Also, you can use generic
profiles
to, for example, deny access to all tapes except those specifically
defined and PERMITed.
Continue with normal VM:Tape authorization
RESERVE/RELEASE on the volume in response to an ENQ/DEQ. Some tape
managers (e.g. IBM Tape Manager for z/VM) can talk to DFSMSrmm on z/OS
if
you want to use the z/OS tape catalog. I would guess that VM:Tape has
an
equivalent function. (JR?)
Unfortunately ... not yet. I'm sure Mike W.