Overview

Each BSA Service Manager option and function can be protected by RACF definitions. This is achieved by means of the user-specific security exit B04UXSEC, which has to be included in the load module sequence of the started task.

Messages

You can check the JESMSGLG of the started task to find out whether RACF security for BSM functions is active.

If the security exit B04UXSEC is found, the following message is output to indicate that RACF security for BSM functions is active:

9313I SECURITY ENVIRONMENT FOR THE FUNCTIONS OF THE BSA SERVICE MANAGER IS ACTIVE (GLOBAL_SEC_MSG: YES|NO)

If the security exit B04UXSEC is not found, the following message is output to indicate that RACF security for BSM functions is not active:

9314W SECURITY ENVIRONMENT FOR THE FUNCTIONS OF THE BSA SERVICE MANAGER IS NOT ACTIVE

Linking B04UXSEC

1. Open member B04UXSEC in the BSA.SAMPLIB and make sure that comment signs are set as follows in these lines:

   * SELECT THE APPROPRIATE RETURNCODE IN R15
   *----------------------------------------------------------------
   XR R15,R15 SET UP RC=0 FOR RACF-CALL OR
   * LA R15,4 SET UP RC=4 TO BYPASS RACF-CALL
   *----------------------------------------------------------------

2. Open sample job B04UXASM in the BSA sample library. This job creates the user exit in a load module library.
   • In the SYSIN DD statement, enter the name of the source library where B04UXSEC has been stored as a member.
   • In the SYSLIB DD statement, replace BSA.SAMPLIB with the name of your installation sample library.
   • In the SYSLMOD DD statement, specify the dataset name of the output library for load module B04UXSEC.

   Note: As of level 1461-03, you can also use the tailored job in member G#04XSEC in the BSA.CNTL.

3. Submit the job.

   Expect RC=0.