Enhanced Access Control for SCLM for z%3AOS
IBM Enhanced Access Control for Software Configuration and Library Manager (SCLM) for z/OS® provides additional control over access to SCLM-managed libraries.
Improve access control of your SCLM resources
Enhanced Access Control for SCLM augments Resource Access Control Facilty (RACF®) controls. After normal RACF security controls are applied, you can use Enhanced Access Control for SCLM to grant access when a specific set of applications such as SCLM are used.
The applications can even define various subfunctions of SCLM, for example, an SCLM Promote may be allowed access whereas an SCLM Edit may be denied access.
Without Enhanced Access Control for SCLM, SCLM users operating in a RACF environment must be granted UPDATE access to manipulate SCLM-managed data sets. Otherwise, they receive RACF data set violations when performing various SCLM functions.
However, the UPDATE access applies even if the data set is accessed using facilities other than SCLM, thus allowing access to potential users from facilities other than SCLM.
Prevent unintended changes to SCLM managed data sets
The central concept of Enhanced Access Control for SCLM is that access to SCLM resources is provided when SCLM programs are used. This avoids the potential for unexpected changes to SCLM data sets resulting from updates using non-SCLM programs.
The SCLM programs are described using applications. The data sets to be controlled and their access rules are described using Profiles.
Provide additional levels of access control
Currently, access to SCLM-controlled data is restricted, based on RACF or other security package and is done on a data set basis.
Enhanced Access Control for SCLM works with IBM RACF to allow you to further restrict access to SCLM data so that it can only be accessed using the SCLM family of products.
It also allows you to restrict access from within the SCLM family based on function, so you can decide which users should have access to which SCLM functions.
When Enhanced Access Control for SCLM is active, it monitors RACF data set violations. If a violation occurs for a data set managed according to the Enhanced Access Control for SCLM profiles, then the defined access rules are used to assign access privileges. If sufficient access privilege is not defined, then a RACF data set violation occurs.
Like RACF, Enhanced Access Control for SCLM has its own rules database that describes the conditions under which access is granted. These are contained in the Rule File, a VSAM KSDS that is administered through the ISPF Dialog.
From these online panels, the Enhanced Access Control for SCLM administrator can:
- Define the data sets or generic RACF data set profiles to be controlled
- Define SCLM and its subfunctions as applications
- Define the users granted access privileges to a profile through an application
- View violation records collected by Enhanced Access Control for SCLM
All products within the Rational category
- Rational Rhapsody Architect for Software
- Rational Rhapsody Architect for Systems Engineers
- Rational Rhapsody Design Manager
- Rational Rhapsody Designer for Systems Engineers
- Rational Rhapsody Developer
- Rational Software Architect Design Manager
- Rational Software Architect Simulation Toolkit
- Rational System Architect
- Rational Build Forge Enterprise Edition
- Rational Build Forge Enterprise Plus Edition
- Rational Build Forge Standard Edition
- Rational Application Performance Analyzer
- Rational AppScan Build Edition
- Rational AppScan Enterprise Edition
- Rational AppScan Tester Edition
- Rational Functional Tester
- Rational Functional Tester Plus
- Rational Performance Tester
- Rational Performance Tester for z%3AOS
- Rational Policy Tester Accessibility Edition
- Rational Policy Tester OnDemand Privacy, Quality and Accessibility Edition
- Rational Policy Tester Privacy Edition
- Rational Policy Tester Quality Edition
- Rational Publishing Engine
- Rational Purify for Linux and UNIX%20
- Rational Purify for Windows
- Rational PurifyPlus Enterprise Edition%20
- Rational PurifyPlus for AIX
- Rational PurifyPlus for Linux and UNIX%20
- Rational PurifyPlus for Windows
- Rational Quality Manager
- Rational Robot
- Rational Service Tester for SOA Quality
- Rational Software Analyzer Developer Edition%20
- Rational Software Analyzer Enterprise Edition
- Rational Test RealTime
- Rational DOORS
- Rational DOORS Web Access
- Rational Requirements Composer
- Rational RequisitePro
- Rational Rose Data Modeler
- Breeze for SCLM for z%3AOS
- Enhanced Access Control for SCLM for z%3AOS
- Rational Change
- Rational ClearCase
- Rational ClearCase Change Management Solution
- Rational ClearCase Change Management Solution Enterprise Edition
- Rational ClearCase MultiSite
- Rational ClearQuest
- Rational ClearQuest MultiSite
- Rational Lifecycle Package
- Rational Synergy
- Rational Team Concert
- Rational Asset Manager Enterprise Edition %20
- Rational Asset Manager Standard Edition
- Rational Insight
- Rational Method Composer
- Application Workload Modeler
- Rational Focal Point
- Rational Publishing Engine
- Host Access Client Package
- Merge Tool for zOS and OS390
- Personal Communications
- Rational Application Developer for WebSphere Software
- Rational Business Developer
- Rational Dashboard
- Rational Data and Application Modeling Bundle
- Rational Developer
- Rational EGL Community Edition
- Rational Elite Support for Eclipse
- Rational Host Access Transformation Services
- Rational Host On-Demand
- VisualAge Pacbase
- WebSphere Studio Asset Analyzer
- Rational Application Developer Standard Edition for WebSphere Software
- Rational Deployment Automation Content Pack for RAFW and WAS
- Rational Developer
- Rational Developer for System z with Java
- Rational Logiscope
- Rational Modeler
- Rational Programming Patterns for System z
- Rational Rhapsody Design Manager
- Rational Rose Data Modeler
- Rational Rose Developer for Java
- Rational Rose Developer for UNIX
- Rational Rose Developer for Visual Studio
- Rational Rose Enterprise
- Rational Rose Modeler
- Rational Software Analyzer
- Rational Software Architect Design Manager
- Rational Software Architect Extension for C++
- Rational Software Architect Extension for Communications Applications
- Rational Software Architect Extension for Deployment Planning
- Rational Software Architect Extension for Integrated Architecture Frameworks
- Rational Software Architect Extension for SOA and WebSphere
- Rational Software Architect for WebSphere Software
- Rational System Architect
- XL C C++ Advanced Edition for Blue Gene
- XL C C++ for AIX
- XL C C++ for Linux
- XL C for AIX
- zOS XL C C++
- COBOL for AIX
- COBOL for OS 390 & VM
- COBOL for VSE ESA
- COBOL Report Writer
- Compiler and Library for REXX on zSeries
- Enterprise COBOL for zOS
- Enterprise PLI for zOS
- VS FORTRAN
- XL Fortran Advanced Edition for Blue Gene
- XL Fortran for AIX
- XL Fortran for Linux
- Rational Development Studio for i
- XL C C++ for zVM
- Rational Development Studio for i
- PLI for AIX
- PLI for MVS & VM
- PLI for VSE
- Rational Ada Developer base edition
- Rational Ada Developer Enterprise Edition
- Rational Ada Embedded Developer
- Rational Ada Embedded Developer Enterprise Edition
- Rational Rhapsody Architect for Software
- Rational Rhapsody Architect for Systems Engineers
- Rational Rhapsody Designer for Systems Engineers
- Rational Migration Extension
- Rational Open Access RPG Edition
- Rational Rose Technical Developer
- Rational SDL Suite
- Rational Statemate
- Rational Systems Tester
- Rational Tau
- Rational TTCN Suite
- Rational Asset Analyzer
- Rational Asset Manager Standard Edition
- Rational Data and Application Modeling Bundle
- Rational Focal Point
- Rational RequisitePro
- Rational Software Architect
- Rational Software Architect for WebSphere Software
- Rational System Architect XT
- Host Access Client Package
- WebSphere Studio Asset Analyzer
- Rational Asset Analyzer for System z
- Rational Power Appliance
- Rational AppScan Build Edition
- Rational AppScan Enterprise Edition
- Rational AppScan Express Edition
- Rational AppScan OnDemand
- Rational AppScan OnDemand Production Site Monitoring
- Rational AppScan Source Edition
- Rational AppScan Standard Edition
- Rational AppScan Tester Edition
- Rational Virtual Forge CodeProfiler for AppScan Source Edition
- Rational EGL Community Edition
- Rational Team Webtop