Creating profiles for the CICSPlex SM data sets

You should restrict access to CICSPlex® SM data sets using RACF® data set protection. Use the following guidelines:
  • Prohibit universal access, by specifying UACC(NONE).
  • Ensure that minimum access to the data sets is authorized for the RACF USERID assigned to the:
    • CAS started task.
    • Each CMAS job (or started task).
    • Each MAS.
    • All individuals allowed to use CICSPlex SM via the CICSPlex SM EUI and API (both system administrators and end users).
Table 1 lists the CICSPlex SM data sets and the minimum access that should be granted to each type of user ID.
Table 1. Access by user ID for CICSPlex SM data sets
Data set name CAS CMAS MAS System Admin. Individual User
SYS1.CICSTS31.CPSM.SEYULPA NONE NONE READ UPDATE NONE
SYS1.CICSTS31.CPSM.SEYULINK NONE READ NONE UPDATE NONE
CICSTS31.CPSM.SEYUAUTH READ READ READ UPDATE READ
CICSTS31.CPSM.SEYULOAD NONE READ READ UPDATE NONE
CICSTS31.CPSM.SEYUPARM READ READ READ UPDATE NONE
CICSTS31.CPSM.SEYUCMOD NONE NONE NONE UPDATE NONE
CICSTS31.CPSM.SEYUCOB NONE NONE NONE UPDATE READ
CICSTS31.CPSM.SEYUC370 NONE NONE NONE UPDATE READ
CICSTS31.CPSM.SEYUDEF NONE READ READ UPDATE READ
CICSTS31.CPSM.SEYUADEF READ READ NONE UPDATE NONE
CICSTS31.CPSM.SEYUVDEF READ READ NONE UPDATE NONE
CICSTS31.CPSM.SEYUCLIB NONE NONE NONE UPDATE READ
CICSTS31.CPSM.SEYUMLIB NONE NONE NONE UPDATE READ
CICSTS31.CPSM.SEYUPLIB NONE NONE NONE UPDATE READ
CICSTS31.CPSM.SEYUTLIB NONE NONE NONE UPDATE READ
CICSTS31.CPSM.SEYUINST NONE NONE NONE UPDATE NONE
CICSTS31.CPSM.SEYUJCL NONE NONE NONE UPDATE NONE
CICSTS31.CPSM.SEYUMAC NONE NONE NONE UPDATE READ
CICSTS31.CPSM.SEYUOS2 NONE NONE NONE UPDATE NONE
CICSTS31.CPSM.SEYUPL1 NONE NONE NONE UPDATE READ
CICSTS31.CPSM.SEYUPROC NONE NONE NONE UPDATE READ
CICSTS31.CPSM.SEYUSAMP NONE NONE NONE UPDATE READ
CICSTS31.CPSM.EYUSDEF NONE NONE NONE UPDATE UPDATE
CICSTS31.CPSM.EYUDREP NONE UPDATE NONE UPDATE NONE
CICSTS31.CPSM.EYUIPRM UPDATE NONE NONE UPDATE NONE

For more details about RACF data set protection, see the z/OS Security Server RACF Security Administrator's Guide.