My question was that if you have an SVC that does stuff, can it use RACF to > check if a user has permissions? Based on your kind replies to my query, > the answer is yes. >
Yes, it isn't just for dataset security. You can ask security questions about any logical resource, even ones you make up yourself. RACF and ACF2 and TopSecret are all called via the same macro (RACROUTE) and they all allow you to ask varieties of essentially the same question: "Can user X, do action Y, to resource Z?". So as long as you can correctly formulate the question you want answered in your SVC or PC routine, it doesn't matter which underlying security manager is present. The answer that comes back is one of "yes", "no", or "maybe". How you interpret the answer is up to you. And yes, if you're doing anything non-trivial, using the security manager is a very good idea. As a sidebar comment, if you're tossing up between a PC and an SVC, you're better off with a PC. Either way you have a non-trivial amount of work to get it set up and manage it. You will have lots of questions... -- This email might be from the artist formerly known as CC (or not) You be the judge. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
