Return to Catalog Home Return to Curriculum Listing

RACF - Protecting General Resources Using RACF

Duration

4 hours

Overview

The “RACF - Protecting General Resources Using RACF” course describes how RACF is used to define access to system resources such as DASD and tape volumes, load modules (programs), and terminals. Details of the profiles used to provide access to these items is also discussed in detail.

Audience

Application programmers, systems programmers, database administrators, security administrators and anyone requiring knowledge about how user access is defined using RACF on the z/OS platform.

Prerequisites

Successful completion of the “RACF - Introduction” course or equivalent knowledge.

Objectives

Explain how General Resources are protected by RACF
Define, Modify, List and Delete General Resource profiles
Describe how security levels and categories can be used to create additional access to resources
Describe how controls can be implemented to prevent unauthorized use and access to programs

Course Content

Protecting and Controlling Access to General Resources

Identifying Resources to be Protected
General Resource Profile Structure
Resource Profile Naming
Defining and Modifying General Resource Profiles
Displaying General Resource Profile Details
Granting User Access to Resources

Defining Security Classifications

Need for Additional User and Data Access Control
Security Checking Process
Creating Security Levels and Security Categories
Assigning Security Levels and Security Categories to User and Data Set Profiles
Activating Security Levels and Security Categories
Working with Security Labels
RACF-Supplied Security Labels
Security Label Processing

Controlling Programs

Programs that can be Controlled
Program Security Modes
PROGRAM Class Profile Definitions
Preventing Copying of Programs
Program Access to Data Sets (PADS)
Providing Program Access to SERVAUTH Resources
Protecting Program Dumps