Home
Customizing Z Data Tools IMS™ Component
Preparing to customize ZDT/IMS
Security
This section outlines how you can protect IMS™ resources that can be accessed through ZDT/IMS functions.
RACF® PADS security considerations
Program Access to Data Sets (PADS) allows users or groups of users to access data sets with higher authority than they would normally have, but only while running a specified program.

Customizing Z Data Tools IMS™ Component
- Preparing to customize ZDT/IMS
  - Checklist for installing and customizing ZDT/IMS
  - Supported databases
  - Region types
  - PSB types
  - IMS™ region controller parameters
  - Security
    This section outlines how you can protect IMS™ resources that can be accessed through ZDT/IMS functions.
    - Controlling access to databases by ZDT/IMS functions
      Security administrators can control the access that users have to databases when using ZDT/IMS functions.
    - Controlling access to IMS™ subsystems and ZDT/IMS functions
    - Resource access security and AGN security considerations
      Resource access security (RAS) prevents an application program that is running in a dependent region from using IMS™ resources unless it is authorized to do so.
    - RACF® PADS security considerations
      Program Access to Data Sets (PADS) allows users or groups of users to access data sets with higher authority than they would normally have, but only while running a specified program.
  - IMS™ subsystem access
  - Avoiding resource contention
  - IMS™ management of ACBs
    This topic describes how ZDT/IMS operates when IMS™ is configured to manage the runtime application control blocks (ACBs).
  - Templates
    ZDT/IMS uses templates to format database segments into their individual fields. One template is required for each database.
  - Alternatives for making ZDT/IMS available
  - Alternatives for controlling ZDT/IMS auditing
- Customizing the operating environment for ZDT/IMS
- Customizing ZDT/IMS
- Customizing the ZDT/IMS security environment
- Customizing the Z Data Tools audit facility for IMS™ component
- Customizing ZDT/IMS for national languages
  You can customize ZDT/IMS for national languages other than English.
- Verifying the customization of ZDT/IMS

RACF® PADS security considerations

Program Access to Data Sets (PADS) allows users or groups of users to access data sets with higher authority than they would normally have, but only while running a specified program.

To run ZDT/IMS functions, users generally require more access to IMS™ data sets than they would ordinarily have. If you want this access to be restricted to when they are using ZDT/IMS functions, you should use PADS.

To run a Z Data Tools/IMS function in DLI mode, users must be given UPDATE access to the RECON data sets, and if you want this function to use an IMS™ log, users must be given ALTER access to the IMS™ log data set.

When ZDT/IMS functions only require READ access to an IMS™ data set, you may choose not to restrict the access to when ZDT/IMS functions are used. However, when ZDT/IMS functions require UPDATE or ALTER access to the data set, as is the case for the RECON and IMS™ log data sets, the consequences of not restricting access can be more serious. So, access to these data sets should always be provided through PADS.

If PADS is used in the environment in which ZDT/IMS functions are run, you should take the following actions:

Set PADS=Y when you customize the ZDT/IMS installation options module.
For each subsystem specified in the ZDT/IMS installation options module, create a PDSE program library and set the DYNPSB parameter for the subsystem to the name of this library.

For more information on how to code the PADS and DYNPSB parameters, see ZDT/IMS options.

Have feedback?
Google Analytics is used to store comments and ratings. To provide a comment or rating for a topic, click Accept All Cookies or Allow All in Cookie Preferences in the footer of this page.