Table of Contents

Search

  1. Preface
  2. Introduction to PowerExchange
  3. DBMOVER Configuration File
  4. Netport Jobs
  5. PowerExchange Message Logs and Destination Overrides
  6. SMF Statistics Logging and Reporting
  7. PowerExchange Security
  8. Secure Sockets Layer Support
  9. PowerExchange Alternative Network Security
  10. PowerExchange Nonrelational SQL
  11. DTLDESCRIBE Metadata
  12. PowerExchange Globalization
  13. Using the PowerExchange ODBC Drivers
  14. PowerExchange Datatypes and Conversion Matrix
  15. Appendix A: DTL__CAPXTIMESTAMP Time Stamps
  16. Appendix B: PowerExchange Glossary

PC_AUTH Statement

PC_AUTH Statement

The PC_AUTH statement controls whether the PowerExchange Listener uses APF authorization of programs that run its address space or uses the PowerExchange MVS Program Call (PC) services routine to acquire the authorization required to access z/OS system services that require supervisor state, such as RACF signon when the SECURITY=2,… statement is specified for the Listener.
z/OS
All
No
PC_AUTH={
N
|Y}
  • N
    .
    The PowerExchange Listener requires APF-authorization of DBMS load libraries. Concatenate APF-authorized copies of the DBMS load libraries in the STEPLIB DD statement of the PowerExchange Listener.
  • Y
    . If you have user programs that do not require APF authorization, or if you do not want to maintain any APF-authorized PowerExchange copies of the DBMS load libraries, specify Y. This setting causes the PowerExchange Listener to disable APF authorization for the address space after startup and then use the PowerExchange-installed MVS Program Call (PC) services routine to access authorized system services that PowerExchange uses, such as RACF and some built-in functions. For Listener processes that need to access the DBMS load libraries, you must define the DBMS load libraries in the DTLLOAD DD statement, instead of in the STEPLIB DD statement. If you use netport jobs to access data, define the load libraries in the DTLLOAD DD statement of the netport JCL.
Default is N.
  • If you've added user programs to the IDMS/DB load library and do not want them to be APF-authorized, specify PC_AUTH=Y and also specify the non-APF-authorized load libraries in Listener DTLLOAD DD statement. You can use this strategy for other things that are not APF-authorized, such as tape data sets or user-defined programs invoked by the CallProg function in a data map.

0 COMMENTS

We’d like to hear from you!