Landmark Lighting D20R2-06/99 User Manual

applid.SIGNON UACC(NONE)

where “applid” is the product application ID defined during
installation and “SIGNON” is the function name that controls
user access and logon to the product. Review the function code
table, later in this chapter, for more information about product
functions. The default user access level should be NONE (no
access to the product), as shown in the UACC parameter in the
model. Logon access to the product is then controlled through
RACF access lists.

6.

Define a RACF general resource for each product function.

To control access to the product functions, use the following model
to define a RACF general resource for each product function:

applid.function[.res1[.res2]] UACC(NONE)

where “applid” is the product application ID defined during
installation, “function” is the function name, “res1” is the
primary resource specification (if any) for this security
definition, “res2” is the secondary resource specification (if
any) for this security definition, and the UACC parameter
specifies the access level for the function. You can specify
asterisks (*) as pattern matching characters for “res1” and
“res2.” The default user access level should be NONE (no
access to product functions), as shown in the UACC parameter
in the model.

You can find descriptions of all product functions, their applicable
resources, and their valid access levels in the function code and
the function access level tables, later in this chapter.

You can find $RACFGDF, a supplied CLIST program, in the
Strategic Services sample library. The CLIST creates a sample
set of RACF general resource definitions for product functions
and resources.

Once general resources are defined for all product functions, access
to them is controlled through RACF access lists.

7.

Activate External Security for user logon access and access to
functions.

Enter X in both the USER LOGON and FACILITIES fields of the
Security Definitions Menu.

With Internal
Security for
Functions

If you are using RACF to secure user logon access, you can use
Internal Security or User Exit Security to control access to product
functions. If you choose to do this, skip Steps 6 and 7 and perform
the following steps instead. You also can use the External Security
simplified sign-on feature described later in this section.

8.

Define Internal Security profiles for your site.

Use the supplied profiles or create your own. Read “Using Internal
Security,” later in this chapter, for further information.

Using External Security

Chapter 2: Security Definitions

2-6