Introduction

This chapter describes CICS® security as it applies to FM/CICS. For complete information about CICS® security, refer to the CICS Transaction Server for z/OS RACF Security Guide for your CICS® release.

To allow FM/CICS to process user IDs and passwords correctly, the CICS® system should be set up to run with SEC=YES. Without this option the FM/CICS logon panel will not be able to verify or change passwords.

This chapter provides an overview of CICS® security that applies to the functions performed by FM/CICS. It is intended to help you:
  • Ensure proper security is implemented in your environment to prevent unauthorized access to CICS® resources or commands through FM/CICS.
  • Determine why a NOTAUTH response was returned from a File Manager/CICS function.

    Note that a resp2 value of 100 indicates a command security failure, whereas a resp2 value of 101 indicates a resource security failure.

Note:
  1. CICS® Security is turned on for the region by specifying SEC=YES as a SIT parameter.
  2. To use CICS® Security to protect resources accessed in a transaction, you must specify RESSEC(YES) for the transactions FM or FMVU. You can do this in FMNCINST (see Modifying and submitting FMNCINST). The default value for RESSEC in FMNCINST for FM and FMVU is RESSEC(NO).