eTrustâ¢CA-ACF2Â® Security for z/OS and OS/390 ... - SupportConnect

More documents

Recommendations

Info

o The STC table is searched for an entry matching the STCprocedure name. If found, the Logonid and optionally the groupis used from the appropriate STC table entry.o The appropriate default STC Logonid would be used.• High-Level Interface Enhancements. A new C language interface hasbeen added to HLI, which currently supports Assembler, Cobol, Fortran,and PL/I. This new feature permits you to implement the HLIsubfunctions using C applications.• Rule Cleanup Utility Enhancements. The ACFRULCU utilityidentifies rule lines that are no longer needed. These can be for Logonidsthat no longer exist or UIDs that are no longer valid. The ACFRULCUutility can be used for access rules, resource rules, and DB2 rules.Release 6.5 includes an enhancement to the ACFRULCU utility thatallows you to specify more than one TYPE to run the ACFRULCUagainst. You can also exclude certain TYPE values from being processedby the ACFRULCU through the new EXCLTYPE parameter.• Dynamic Compile Option. A new GSO RULEOPTS option,COMPDYN, simplifies rule administration when RULELONG is active.Rule compiles will be performed initially using the 4K rule compiler andthen, if the rule is greater than 4K, will be retried using the RULELONGcompiler.• CSI Zone Compare Utility. The CSI Zone Compare utility(SAFTAXRF) generates a report to indicate any sysmods present in aneTrust CA-ACF2 Release 6.4 target zone that are not present in thenewly installed Release 6.5 zone. This utility is optional. The targetzones specified must be an eTrust CA-ACF2 Release 6.4 target zone(OLD TZONE) and an eTrust CA-ACF2 Release 6.5 target zone (NEWTZONE). Specifying other target zones may produce incorrect results.The JCL and PROC required to run this report can be found in membersSAFTAXJC and SAFTAXRF in the CAI.ACF2.SAMPJCL library.Review these members and make any necessary changes prior toexecution. For additional information on this utility, see the Release 6.5eTrust CA-ACF2 Security for z/OS and OS/390 Report and UtilitiesGuide.• eTrust CA-ACF2 Security Enhancements for CICS.CICS Installation Enhancements – eTrust CA-ACF2 Security forCICS installation is simplified. The level-set PTF has been eliminated,which streamlines product packaging and client installation proceduresand also helps to eliminate some of the more common installation errors.New API Inquire call - A new ACFAEUCP API inquire call has beenadded. It allows the status of CICSKEY and USERKEY resources to bequeried, providing a subset of the information that the ACFM OD(option display) CICSKEY/USERKEY functions currently provide.February 2003eTrust CA-ACF2 Security for z/OS and OS/390
CICS Startup Messages - To provide for greater auditability,informational WTO messages are issued for all CICS DFHSIT (SystemInitialization Table) values that are overridden by eTrust CA-ACF2CICS security controls.CICS Timeout Processing - All specific terminal sign-on instances thatare signed off by terminal timeout support are now recorded to theACF2LOG report.CICS Multi-Sign-ons - A new initialization control, SIGNONMULTSIGN, designates a Logonid privilege that, when specified, allowsselected users to establish multiple sign-on instances when sign-onenqueue controls (SIGNON ENQSCOPE) are active. This will be of useto technical personnel who have a legitimate business need to establishmultiple CICS sign-on sessions to concurrently use system products andfunctions such as CEMT, ACFM, Unicenter ® CA-SYSVIEW ® RealtimePerformance Management, and other functions.CICS Sign-on Failure Messages - The terminal ID is included in theACFAE145 message issued for sign-on failures. This message is issuedwhen sign-on enqueue controls are active and a user has alreadyestablished a sign-on session on a particular CICS region. The additionalinformation will be helpful for the user and/or the help desk.Demand Analysis Requests. At Computer Associates, customer feedback andsuggestions for product enhancements are very important to us. We value yourinput, not only as our customer, but more importantly, as our partner. Continuingwith our policy of constant product upgrades and improvements, we are pleasedto announce that Release 6.5 of eTrust CA-ACF2 Security for z/OS and OS/390addresses numerous Demand Analysis Requests (DARs) that were submitted byboth individual customer sites and user groups. We believe that theenhancements in Release 6.5 and in related eTrust solutions demonstrate CA’ssecurity leadership and commitment to customers and quality. As always, wewelcome your feedback and your suggestions for future product enhancements.February 2003eTrust CA-ACF2 Security for z/OS and OS/390
Page 5: Computer Associates International,
Page 9 and 10: • $NORULELNG on Rules. A new rule
Page 11: • ACF NEWMOD Enhancements. In eTr
Page 15 and 16: Important Note for eTrust CA-ACF2 S
Page 17: END OF PIB PACKETFebruary 2003eTrus

eTrustâ¢CA-ACF2Â® Security for z/OS and OS/390 ... - SupportConnect

Create successful ePaper yourself

Delete template?

Save as template?

eTrustâ¢CA-ACF2Â® Security for z/OS and OS/390 ... - SupportConnect