Table of Contents

Search

  1. Preface
  2. Introduction to PowerExchange
  3. DBMOVER Configuration File
  4. Netport Jobs
  5. PowerExchange Message Logs and Destination Overrides
  6. SMF Statistics Logging
  7. PowerExchange Security
  8. Secure Sockets Layer Support
  9. PowerExchange Alternative Network Security
  10. PowerExchange Nonrelational SQL
  11. PowerExchange Globalization
  12. Using the PowerExchange ODBC Drivers
  13. PowerExchange Datatypes and Conversion Matrix
  14. DTL__CAPXTIMESTAMP Time Stamps
  15. PowerExchange Glossary

Security for Data Maps

Security for Data Maps

PowerExchange checks PowerExchange-specific resource profiles to determine whether to permit access to data maps. For this security checking to occur, you must specify the following parameters in the DBMOVER configuration file:
  • 2 in the first parameter of SECURITY statement
  • Y for the DM_SUBTASK parameter
PowerExchange then uses the MVS System Authorization Facility (SAF) interface to check access to the resource profiles.
By default, PowerExchange checks resource profiles in the FACILITY class. Use the RACF_CLASS parameter in the DBMOVER configuration file to specify a different class for checking security profiles. If you specify a different class, it must be defined in RACF or the security product you use, with a resource name that has a maximum length of 128 bytes.
If you specify 2 in the first parameter of SECURITY statement and Y for the DM_SUBTASK parameter, you must specify a resource profile for data maps. Otherwise, PowerExchange fails access.