Web User Interface security changes

In CICS® Transaction Server for z/OS®, Version 3 Release 1 you can use your external security manager to control user access to views, menus, help information and the View Editor. In order to do this you need to create an approptiate profile in the FACILITY class. The following ESM FACILITY profiles are available:

EYUWUI.wui_server_applid.VIEW.viewsetname
-- used to protect view sets.
EYUWUI.wui_server_applid.MENU.menuname
-- used to protect menus
EYUWUI.wui_server_applid.HELP.helpmembername
-- used to protect help pages.
EYUWUI.wui_server_applid.EDITOR.
-- used to protect the View Editor..

where wui_server_applid is the CICS APPLID of the server.

Users can be given read or update access to views and menus:

If the ESM that you are using, neither grants nor refuses access to a profile (for example, if no RACF profile is defined), all users who are successfully signed on to the Web User Interface have access to the resources. You can make not authorized the default by setting up a generic profile.

Note:
This security is designed to protect the views and menus themselves and not the objects they manage, which is covered by normal CICSPlex SM security.
[[ Contents Previous Page | Next Page Index ]]