Interskill Learning  
myinterskill lms login Demo our courseware
Login

   Forgot Your Password?

Back  Course Description (By Curriculum)

Datatrain

How to Use RACF

Duration

5 to 6 hours

Overview

Audience

Application programmers, systems programmers, database administrators, security administrators, and other personnel requiring knowledge about the use of the Security Server (RACF) on the OS/390 platform

Prerequisites

Knowledge of data sets, basic security issues, and the use of TSO and ISPF

Objectives

After completing this course, the student will be able to:
• Define the concepts of RACF classes, resources, and profiles
• Define the concepts of RACF users, groups, data sets, and general resources
• Recognize RACF commands in TSO and Batch
• Identify the ISPF interface to RACF
• Identify user details, including segment information
• Identify group details, including Group Authority, Default, and Connect groups
• Identify how to change their password and user details
• Identify how to change their Default groups, Connect groups, and Group Authority
• Recognize Discrete and Generic data set profiles
• Recognize access authorities, including UACC
• Identify how to find data set profiles and list them
• Identify how to create, delete, and alter data set profiles
• Identify how to permit or deny access to data set profiles
• Define the management of data set profiles, using the ISPF interface (RACF panels)
• Identify how to create, delete, and alter General Resources, and permit access to them
• Identify how to list UNIX file permissions, and permit or deny access to OS/390 UNIX files

Course Content

Introduction to RACF

Definition of RACF and What it is Used For
Concept of Resource Classes

  • Users Identified By Userid
  • Groups
  • Data Sets
  • General

Concept of RACF Profiles
Identifying and Authenticating Users
Authorizing Access to Resources by Users
Recording and Reporting Access Attempts

User Interfaces to RACF

How to Use TSO to Issue RACF Commands
How to Get Online Help for RACF Commands
How to Use RACF Panels Through ISPF
How to Issue RACF Commands in Batch
Overview of Operator Interface to RACF (Not for General Users)
Programming Interface to RACF

How Users are Defined to RACF

Definition of UserID and User Profile
Logging onto the System with UserID and Password
The LISTUSER (LU) TSO Command to List User Details
Concept of Segments in User Profile
Description of Segment Information:

  • TSO Segment
  • OMVS Segment
  • DFP Segment
  • CICS Segment

The LISTUSER (LU) TSO Command to List Segment Details

How Groups are Defined to RACF

Definition of Group And Group Profile
Definition of Default And Connect Groups
Definition of Group Authority

  • USE
  • CREATE
  • CONNECT
  • JOIN

Group-Level Attributes
Group Profile and Segments
The LISTGRP (LG) TSO Command to List Group Details
Specifying User and Group in Batch

Changing User and Group Details

Changing Password at Logon Time
Changing Password Using PASSWORD TSO Command
Changing Password and Default Group Using ALTUSER Command
Field Level Access Checking
Changing Segment Information Using ALTUSER Command
Connecting Users to Groups Using the CONNECT Command
Removing Users from Groups Using the REMOVE Command
Changing User and Group Details Using RACF Panels

Protecting Data Sets

Definition of Data Set Resource Class
Types of Data Set Profiles:

  • Discrete
  • Generic

Types of Access to Data Sets:

  • NONE
  • READ
  • UPDATE
  • CONTROL
  • ALTER

Description of UACC Authority
Concept of Access Lists
The LISTDSD TSO Command to List Data Set Profiles
Protecting Data Sets on Tape

Controlling Access to Data Sets, Using TSO

The ADDSD TSO Command to Create Data Set Profiles
Generic Characters
The DELDSD TSO Command to Delete Data Set Profiles
The ALTDSD TSO Command to Alter UACC Authority
The PERMIT TSO Command to Change Access Lists
The SEARCH TSO Command to Find Data Set Profiles

Controlling Access to Data Sets, Using ISPF

Using RACF Panels to List Data Set Profiles
Using RACF Panels to Create Data Set Profiles
Using RACF Panels to Delete Data Set Profiles
Using RACF Panels to Alter UACC Authority
Using RACF Panels to Change Access Lists
Using RACF Panels to Search for Data Set Profiles

Protecting General Resources

Examples of Types of General Resources:

  • DASD Volumes
  • Programs or Load Units
  • Applications, such as TSO/E

The SEARCH TSO Command to Find General Resource Profiles
The RLIST TSO Command to List General Resource Profiles
The PERMIT TSO Command to Control Access to General Resource Profile
Using RACF Panels to Manage General Resource Profiles

Protecting UNIX Resources

OS/390 UNIX
Hierarchical File System
File Security
File Permissions
Listing File Permissions and Ownership
Changing File Permissions
Changing File Ownership
ISHELL Interface to Manage UNIX Files

Back

Site Map | © Interskill Learning 2007
+44 1625 441120
Home | News | Catalogues