> The RACROUTE Macro Reference describes the macros, but does not provide > much guidance on how to use them. But it will describe the macro(s) and > their parameters. You can find the book online at http://preview.tinyurl.com/35j8xd > > Note that you need to run APF-authorized to do what you want, which may > not be possible depending on the environment in which your code will > run. You should also already be familiar with doing assembler coding. > Don't make this your first project in assembler.
I agree with all of Walt's advice and want to add a thought or two. The first is that the RACROUTE interface (any SAF call) is generalized so that the customer can use any underlying ESM product they want. We're all familiar with RACF, ACF/2 and TSS but there are also home grown solutions believe it or not. Each of those has different internal architecture and design models and they can have subtle to glaring differences of opinion on the same question, depending upon how they are configured by your security admin folks. They are all capable of securing resources, but you can't necessarily just ask a mindless question and deal with the answer without knowing more than you'd like to about the ESM and the customer's environment. The first problem you will run into is what specific question to ask. You can read the RACROUTE macro doc for years and still not fully grock what is expected because the answer can be different depending on very subtle differences in the parameters and the environment. The second problem is how to interpret the answer. In reality all you ever get back from a security question is "yes", "no" or "maybe". The way you respond to those answers seems fairly clear cut for "yes" or "no", but what do you do for a "maybe"? One of the smartest people I have ever met (Bill Blair) has spent most of his working life dealing with the minutiae of security systems on z/OS and when HE says this is an area that I should not fool around in, I take him at his word. I know I'm not man enough to tackle security interfaces. Make your own judgment about where you stand on it. CC ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
