Home
Customizing Z Data Tools IMS™ Component
Preparing to customize ZDT/IMS
Security
This section outlines how you can protect IMS™ resources that can be accessed through ZDT/IMS functions.
Resource access security and AGN security considerations
Resource access security (RAS) prevents an application program that is running in a dependent region from using IMS™ resources unless it is authorized to do so.

Customizing Z Data Tools IMS™ Component
- Preparing to customize ZDT/IMS
  - Checklist for installing and customizing ZDT/IMS
  - Supported databases
  - Region types
  - PSB types
  - IMS™ region controller parameters
  - Security
    This section outlines how you can protect IMS™ resources that can be accessed through ZDT/IMS functions.
    - Controlling access to databases by ZDT/IMS functions
      Security administrators can control the access that users have to databases when using ZDT/IMS functions.
    - Controlling access to IMS™ subsystems and ZDT/IMS functions
    - Resource access security and AGN security considerations
      Resource access security (RAS) prevents an application program that is running in a dependent region from using IMS™ resources unless it is authorized to do so.
    - RACF® PADS security considerations
      Program Access to Data Sets (PADS) allows users or groups of users to access data sets with higher authority than they would normally have, but only while running a specified program.
  - IMS™ subsystem access
  - Avoiding resource contention
  - IMS™ management of ACBs
    This topic describes how ZDT/IMS operates when IMS™ is configured to manage the runtime application control blocks (ACBs).
  - Templates
    ZDT/IMS uses templates to format database segments into their individual fields. One template is required for each database.
  - Alternatives for making ZDT/IMS available
  - Alternatives for controlling ZDT/IMS auditing
- Customizing the operating environment for ZDT/IMS
- Customizing ZDT/IMS
- Customizing the ZDT/IMS security environment
- Customizing the Z Data Tools audit facility for IMS™ component
- Customizing ZDT/IMS for national languages
  You can customize ZDT/IMS for national languages other than English.
- Verifying the customization of ZDT/IMS

Resource access security and AGN security considerations

Resource access security (RAS) prevents an application program that is running in a dependent region from using IMS™ resources unless it is authorized to do so.

This means that an ZDT/IMS function running in BMP mode is prevented from using a PSB unless the user is authorized to use that PSB. This in turn means that users cannot use a dynamic PSB unless they are authorized to use all of the dynamic PSBs that ZDT/IMS can use. See Declaring the dynamic PSBs.

You might have to customize the IIMS and JIMS class profiles to provide ZDT/IMS users with the access they require. No special customization is required for ZDT/IMS to be able to access subsystems that use RAS.

Before IMS™ Version 9, Application Group Names (AGNs) were used to secure dependent regions. In IMS Version 9 RAS superseded AGN security. Support for AGNs was removed from IMS in Version 10.

ZDT/IMS still allows the user to specify an AGN on the entry panel or in batch JCL. However, if the IMS™ subsystem you are accessing is Version 10 or later, IMS ignores the specified AGN value.

If you do use ZDT/IMS to access IMS™ subsystems that use AGNs to secure BMP regions, you must specify that the subsystem uses AGN security when customizing the ZDT/IMS installation options module. You also have the option of specifying the AGNs that you want ZDT/IMS to use. For information on both of these tasks, see Specifying AGNS.

Have feedback?
Google Analytics is used to store comments and ratings. To provide a comment or rating for a topic, click Accept All Cookies or Allow All in Cookie Preferences in the footer of this page.