...
The following TSO commands define the required profile and permits access to TSO user TSO555.
Panel | |
---|---|
Html bobswift | RDEF $UNV (UCMD.I010023090002.*.*) UACC(NONE)
PE UCMD.I010023090002.*.* CLASS($UNV) ID(TSO555) ACCESS(READ)
</pre>
|
Example 2
Assume that you run all Universal Brokers on privileged port 1000. To enforce the policy that z/OS Managers connect only to port 1000, define profile UCMD.*.*.* with universal access none and define UCMD.*.P01000.* with universal access read.
The following TSO commands define the required profiles.
Panel |
---|
<pre>
RDEF $UNV (UCMD.*.*.*) UACC(NONE)
RDEF $UNV (UCMD.*.P01000.*) UACC(READ)
</pre>
|
Example 3
Assume that you want to restrict root access to all hosts from Universal Command Manager for z/OS. The following profile would restrict root access to only those z/OS users who have read access to the profile UCMD.*.*.ROOT.
The following TSO command defines the required RACF profile.
Panel |
---|
<pre>
RDEF $UNV (UCMD.*.*.ROOT) UACC(NONE)
</pre>
|
Example 4
Assume that you want to restrict Universal Command Manager access to data sets PROD.*. You also don't want Universal Command Manager to use any temporary data sets. The following profiles would restrict access to only those z/OS users who have read access to the profile.
The following TSO command defines the required RACF profile.
Panel |
---|
<pre>
RDEF $UNV (UCMD.STD*.*.*.DPROD.**) UACC(NONE)
RDEF $UNV (UCMD.STD*.*.*.TEMPORARY) UACC(NONE)
</pre>
|