FACILITY CICSPROD

Document ID : KB000100473
Last Modified Date : 07/06/2018
Show Technical Document Details
Question:
Can you please help us with the translation of this RACF commands to Top Secret, TSOEXEC RDEFINE FACILITY CICSPROD UACC(NONE) OWNER(IBMOWN) + DATA(’CL/SUPERSESSION FOR Z/OS: CICS PROD’) + AUDIT(FAILURES(READ)) TSOEXEC RDEFINE FACILITY CICSTEST UACC(NONE) OWNER(IBMOWN) + DATA(’CL/ SUPERSESSION FOR Z/OS: CICS TEST’) + AUDIT(FAILURES(READ)) TSOEXEC RDEFINE FACILITY TSO01 UACC(NONE) OWNER(IBMOWN) + DATA(’CL/ SUPERSESSION FOR Z/OS: TSO PROD’) + AUDIT(FAILURES(READ)) TSOEXEC RDEFINE FACILITY TSO02 UACC(NONE) OWNER(IBMOWN) + DATA(’CL/ SUPERSESSION FOR Z/OS: TSO TEST’) + AUDIT(FAILURES(READ)) TSOEXEC ADDGROUP #CL/SSPROD OWNER(IBMOWN) + SUPGROUP(IBMSGRP) TERMUACC + DATA(’CL/SUPERSESSION FOR Z/OS PROFIL FOR + Group: function Group #CL/SSPROD)’) TSOEXEC ADDGROUP #CL/SSCTST OWNER(IBMOWN) + SUPGROUP(IBMSGRP) TERMUACC + DATA(’CL/ SUPERSESSION FOR Z /OS PROFIL FOR + Group: CICS TEST)’) TSOEXEC ADDGROUP #CL/SSTTSO OWNER(IBMOWN) + SUPGROUP(IBMSGRP) TERMUACC + DATA(’CL/ SUPERSESSION FOR Z /OS PROFIL FOR + Group: TSO TEST)’) PERMIT CICSPROD CLASS(FACILITY) ACCESS(READ) + ID(#CL/SSPROD) PERMIT TSO01 CLASS(FACILITY) ACCESS(READ) + ID(#CL/SSPROD) PERMIT CICSTEST CLASS(FACILITY) ACCESS(READ) + ID(#CL/SSCTST) PERMIT TSO02 CLASS(FACILITY) ACCESS(READ) + ID(#CL/SSTTSO) CO USERA GROUP(#CL/SSPROD) OWNER(IBMOWN) CO USERA GROUP(#CL/SSCTST) OWNER(IBMOWN) CO USERA GROUP(#CL/SSTTSO) OWNER(IBMOWN) CO USERB GROUP(#CL/SSPROD) OWNER(IBMOWN)
Answer:
TSOEXEC RDEFINE FACILITY CICSPROD UACC(NONE) OWNER(IBMOWN) + 
DATA(’CL/SUPERSESSION FOR Z/OS: CICS PROD’) + 
AUDIT(FAILURES(READ)) 
TSOEXEC RDEFINE FACILITY CICSTEST UACC(NONE) OWNER(IBMOWN) + 
DATA(’CL/ SUPERSESSION FOR Z/OS: CICS TEST’) + 
AUDIT(FAILURES(READ)) 
TSOEXEC RDEFINE FACILITY TSO01 UACC(NONE) OWNER(IBMOWN) + 
DATA(’CL/ SUPERSESSION FOR Z/OS: TSO PROD’) + 
AUDIT(FAILURES(READ)) 
TSOEXEC RDEFINE FACILITY TSO02 UACC(NONE) OWNER(IBMOWN) + 
DATA(’CL/ SUPERSESSION FOR Z/OS: TSO TEST’) + 
AUDIT(FAILURES(READ)) 

TSS ADD(owning_dept) IBMFAC(CICSPROD) 
TSS ADD(owning_dept) IBMFAC(CICSTEST) 
TSS ADD(owning_dept) IBMFAC(TSO01) 
TSS ADD(owning_dept) IBMFAC(TSO02) 
********************************************************************** 
TSOEXEC ADDGROUP #CL/SSPROD OWNER(IBMOWN) + 
SUPGROUP(IBMSGRP) TERMUACC + 
DATA(’CL/SUPERSESSION FOR Z/OS PROFIL FOR + 
Group: function Group #CL/SSPROD)’) 
TSOEXEC ADDGROUP #CL/SSCTST OWNER(IBMOWN) + 
SUPGROUP(IBMSGRP) TERMUACC + 
DATA(’CL/ SUPERSESSION FOR Z /OS PROFIL FOR + 
Group: CICS TEST)’) 
TSOEXEC ADDGROUP #CL/SSTTSO OWNER(IBMOWN) + 
SUPGROUP(IBMSGRP) TERMUACC + 
DATA(’CL/ SUPERSESSION FOR Z /OS PROFIL FOR + 
Group: TSO TEST)’) 

TSS CRE(CLSSPROD) TYPE(GROUP) NAME('CL/SUPERSESSION FOR CICS TEST') DEPT(xxxx) 
TSS CRE(CLSSCTST) TYPE(GROUP) NAME('CL/SUPERSESSION FOR CICS TEST') DEPT(xxxx) 
TSS CRE(CLSSTTSO) TYPE(GROUP) NAME('CL/SUPERSESSION FOR TSO TEST') DEPT(xxxx) 
***************************************************************************** 
You cannot permit a IBMFAC to a TYPE(GROUP) ACID it only contains a GID