Add a new access level of UNLOAD to the DB2TABLE resource class.

Document ID : KB000014031
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

Does CA Top Secret support that a new granular administrative authorization (i.e. "UNLOAD") is now provided for DB2 tables?

Environment:
z/OS
Answer:

PTF RO93265 (CA Top Secret 15.0) and PTF RO92811 (CA Top Secret 16.0) provide enhancement to the DB2TABLE resource class support for UNLOAD privilege.

After the PTF applied, we now support the UNLOAD privilege when securing DB2 tables. Accordingly, an UNLOAD access level is now defined to the DB2TABLE resource class to the RDT.

List the DB2TABL resource class in the RDT, you can find the access level of UNLOAD has been added.

TSS LIST(RDT) RESCLASS(DB2TABLE)

ACCESSORID = *RDT*     NAME       = RESOURCE DEFINITIONS  
                                       
RESOURCE CLASS = DB2TABLE                                               
 RESOURCE CODE = X'0B2'                                                 
     ATTRIBUTE = MASKABLE,MAXOWN(26),MAXPERMIT(255),ACCESS,PRIVPGM      
        ACCESS = NONE(0000),ALTER(0080),DELETE(0040),INDEX(0020)        
        ACCESS = INSERT(0010),TRIGGER(0008),UNLOAD(0004),SELECT(8000)   
        ACCESS = CREATE(2000),UPDATE(4000),REFER(1000),ALL(FFFF)        
        DEFACC = SELECT