Table of Contents
Foreword xv
Preface xvii
Acknowledgments xix
About the Authors xxi
Chapter 1 Introduction to the Mainframe 1
1.1 Why Use a Mainframe? 1
1.2 Getting Started 4
1.3 Job Control Language (JCL) 7
1.4 z/OS UNIX System Services 19
1.5 Getting Help 22
1.6 Additional Information 25
Chapter 2 Users and Groups 27
2.1 Creating a User 27
2.2 How to Modify a User for OMVS Access 31
2.3 Groups 36
2.4 zSecure 42
2.5 Additional Information 43
Chapter 3 Protecting Data Sets and Other Resources 45
3.1 Protecting Data Sets 45
3.2 Other Resources 57
3.3 Security Data (Levels, Categories, and Labels) 64
3.4 Securing UNIX System Services (USS) Files 68
3.5 zSecure 70
3.6 Additional Information 71
Chapter 4 Logging 73
4.1 Configuring Logging 73
4.2 Generating Reports 82
4.3 UNIX System Services (USS) Logging 91
4.4 Logging in zSecure 95
4.5 Additional Information 97
Chapter 5 Auditing 99
5.1 Auditing 99
5.2 The RACF Data Security Monitor (DSMON) 100
5.3 The Set RACF Options (SETROPTS) Command 108
5.4 The RACF Database Unload Utility (IRRDBU00) 110
5.5 The RACF Health Checks 114
5.6 zSecure Auditing 118
5.7 Additional Information 120
Chapter 6 Limited-Authority RACF Administrators 121
6.1 Profiles Owned by Users 121
6.2 Group-Owned Profiles and Group Authorities 122
6.3 System-Level Authorities 128
6.4 Manipulating Users 129
6.5 Additional Information 133
Chapter 7 Mainframes in the Enterprise-Wide Security Infrastructure 135
7.1 What Is an Enterprise? 136
7.2 Enterprise Security Administration 144
7.3 Communicating between Enterprises–and Beyond 148
7.4 Additional Information 149
Index 151