Giving CICS regions access to z/OS UNIX System Services and HFS directories and files

CICS® requires access to z/OS UNIX System Services, and to directories and files in the hierarchical file store (HFS), for the purposes of:
  • Creating JVMs.
  • Using HFS files in connection with CICS Web support.
One possible method to achieve this is as follows:
  1. Choose a RACF® group that all your CICS regions can use to access z/OS® UNIX, and give a z/OS UNIX group identifier (GID) to this RACF group. Give a z/OS UNIX user identifier (UID) to each CICS region user ID, and make sure that each CICS region user ID connects to the RACF group that you chose. During this process, set up a home directory on HFS for each of your CICS regions. Giving CICS regions a z/OS UNIX user identifier (UID) and group identifier (GID) and setting up a home directory tells you how to do all this.
  2. Identify the files that each CICS region needs, and the HFS directories that contain the files. For each directory and file, specify the group for the directory and file as the RACF group that the CICS regions use, and give the group the appropriate permissions. Giving CICS regions permission to access HFS directories and files tells you how to do this. You will need to repeat this task when you tell a CICS region to use any other files or HFS directories.

If you need more general information about RACF facilities for controlling access to z/OS UNIX System Services, see the z/OS Security Server RACF Security Administrator's Guide, SA22-7683. If you need more general information about the UNIX facilities that you can use to control access to HFS files and directories, see z/OS UNIX System Services Planning, GA22-7800.