Home
Customizing File Manager
Customizing the File Manager security environment
File Manager provides security for system-oriented functions through RACF® (or an equivalent security product).

Customizing File Manager
- Preparing to customize File Manager
- Customizing the operating environment for File Manager
- Customizing File Manager
- Customizing the File Manager security environment
  File Manager provides security for system-oriented functions through RACF® (or an equivalent security product).
  - Setting up the security environment by using RACF® or an equivalent security product
  - Unprotected functions and profile names for protected functions
  - Setting up the security environment for IBM® MQ
    File Manager provides security features to secure access to MQ resources when using File Manager functions.
- Customizing File Manager to write audit records to SMF
- Customizing the File Manager audit facility for Base component
- Customizing File Manager for national languages
  You can customize File Manager for national languages other than English.
- Customizing File Manager Service Provider for z/OS® Connect
  File Manager Service Provider for IBM® z/OS® Connect Enterprise Edition enables client applications to access IBM Z data sources using z/OS Connect.
- Customizing File Manager to use library management system libraries
- Customizing File Manager to use the Optim™ Data Privacy Provider API
- Customizing File Manager to use an I/O exit
- Customizing File Manager to use a scrambling exit
- Verifying the customization of File Manager
  After you have completed the initial installation and customization of File Manager base function, you can perform the following steps to verify your customization.

Customizing the File Manager security environment

File Manager provides security for system-oriented functions through RACF® (or an equivalent security product).

If RACF® or an equivalent security product is active, the System Authorization Facility (SAF) with the File Manager enhanced security facility is used for access control and authorization verification. Authorization is controlled by File Manager-specific profiles in the FACILITY class. See Setting up the security environment by using RACF or an equivalent security product for information on defining profiles. If you use another security product than RACF®, consult the documentation for your product to determine how to define the FILEM facility to your product.

As a minimum, you should define the following individual group profiles:

RDEFINE FACILITY FILEM.DISK.*         UACC(READ)   or NONE
RDEFINE FACILITY FILEM.DISK.FULLPACK  UACC(NONE)
RDEFINE FACILITY FILEM.LOADMOD.UPDATE UACC(READ)   or NONE
RDEFINE FACILITY FILEM.TAPE.*         UACC(READ)   or NONE
RDEFINE FACILITY FILEM.TAPE.BLP       UACC(NONE)
RDEFINE FACILITY FILEM.VSAM.*         UACC(READ)   or NONE
RDEFINE FACILITY FILEM.OAM.*          UACC(READ)   or NONE
RDEFINE FACILITY FILEM.OTHER.ALL      UACC(READ)   or NONE

Have feedback?
Google Analytics is used to store comments and ratings. To provide a comment or rating for a topic, click Accept All Cookies or Allow All in Cookie Preferences in the footer of this page.