Example: Giving CICSPlex SM operators appropriate authorizations

CICSPlex® SM operators need access, at least, to all of the OPERATE views. In this example, we'll show you how to give CICSPlex SM operators update access to all OPERATE views and read access to the MONITOR views. This will allow operators to look at monitor data, but not to create or change monitor definitions.
  1. Give CICSPlex SM operators update access to the OPERATE views:
        RDEF CPSMOBJ OPERATE.** OWNER(admin_group) UACC(NONE)
        PE OPERATE.** CLASS(CPSMOBJ) ID(ops_group) A(UPDATE)
  2. Give CICSPlex SM operators read access to the MONITOR views:
        RDEF CPSMOBJ MONITOR.** UACC(NONE) OWNER(admin_group)
        PE MONITOR.** CLASS(CPSMOBJ) ID(ops_group) A(READ)

In both steps, you can see that we begin by creating a RACF® profile to protect the resource, and then grant access to users in group ops_group.