Understanding RACF


Today a sound understanding of security is essential for all of us working in IT. This one-day course is the ideal introduction to IBM's RACF, and is suitable for all technicians, administrators, support personnel and managers who will come across RACF in their daily work. It is also an ideal introduction to RACF for Systems Programmers and those training to be RACF Administrators. The course clearly explains the concepts and terminology of RACF, and introduces all the major RACF commands.

This course is also available for one-company, on-site presentations and for live presentation over the Internet, via the Virtual Classroom Environment service.

The next step

If this course is your first step to developing RACF Administrator skills, the course RACF Administration & Auditing is the logical follow-on.
If you are a Systems Programmer then the next RACF course you should take is RACF for z/OS Systems Programmers.

Virtual Classroom Environment dates - click to book!

13 November 2017 25 January 2018

What is a 'Virtual Classroom Environment'?

 

What do I need?

  • webcam
  • headphones with microphone
  • sufficient bandwidth, at least 1.5 Mb/s in each direction.

Objectives

On successful completion of this course you will be able to:

  • identify the need for security in business information systems
  • explain all major RACF commands
  • explain dataset and general resources
  • understand how to connect users to groups
  • understand the dataset related commands to manage both discrete and generic profiles
  • understand the commands to manage general resources
  • describe the audit facilities available in RACF
  • use and explain the operation of the setropts management commands.

Who Should Attend

The course is suitable for anyone who wishes to gain an understanding of RACF concepts and terminology.

Prerequisites

Attendees should have a clear understanding of z/OS at a conceptual level.

Duration

1 day

Fee (per attendee)

£450 (ex VAT)

Course Code

3092

Contents

Introduction to RACF

What is required of a security system?; IBM's Resource Access Control Facility (RACF); Main RACF/MVS components; How does RACF work?; RACF Profiles; RACF classes; Controlling access; RACF commands.

Planning for RACF

Management commitment; Selecting a security planning and implementation team; Responsibilities of the implementation team; Deciding what to protect; Deciding how to protect data; Establishing ownership structures; Establishing who needs access.

RACF Group Structure

RACF group structure; Group types; Data set owning groups; Users owning groups; General Resource groups; Concept of group and profile ownership; Administration delegation; Benefits of RACF groups; Defining RACF groups; Group CONNECT authority; Group profile contents; Group related commands.

Defining Users to RACF

Information on users; RACF user information; DFP segment information; TSO segment information; OPERPARM segment information; NETVIEW segment information; CICS segment information; OMVS segment information; Defining a new User; Prepare to create the user profile; Create the User Profile; Give user access to any RACF-protected areas; User-related commands; User attributes; Classifying users and data; Security categories and levels; Security labels.

Defining Data Sets to RACF

Data set related commands; Data set protection; Discrete profiles; Generic profiles; Rules for defining data set profiles; Naming Convention; Data set profile ownership; Defining Generic Profiles; Access authority for data sets; Adding data set profiles - ADDSD; Permitting access (PERMIT command).

Defining General Resources

General Resource related commands; Class Descriptor Table (CDT); IBM-defined Resource Classes; Steps for defining General Resource profiles; Granting access to a General Resource; Global Access Table (GAT).

Maintenance & Housekeeping

Maintenance and housekeeping activities; SETROPTS command options; Options for initial setup; In-storage profiles; SETROPTS REFRESH Option; Maintaining the RACF database(s); Maintenance utilities; Maintaining the Started Task Table; Data Security Monitor (DSMON).


What the students say

Very friendly and well organised tutor, who took time to answer questions fully and recap where needed

Norwich Union plc

© RSM Technology 2017