************************************************ * 3 - Keyring and Certificate Security RACF.txt * ************************************************ * RACF Examples * * Keyring Access RACF Example PERMIT ..LST CLASS(RDATALIB) ID(FTPD) ACCESS(READ) * Resource rule for Global profile checking * Allow access to a keyring owned by FTPD PERMIT IRR.DIGTCERT.LISTRING CLASS(FACILITY) ID(FTPD) ACCESS(READ) * Allow access to a Keyring owned by another user’s userid PERMIT IRR.DIGTCERT.LISTRING CLASS(FACILITY) ID(FTPD) ACCESS(UPDATE) * Certificate Private Key Access RACF Example * Sample RACF GENCERT, FTPD is the owner: RACDCERT GENCERT ID(FTPD) SUBJECTSDN(CN('FTPd Server Certificate') * Resource rule for Private Key of a Personal certificate not owned by FTPD: PERMIT ..LST CLASS(RDATALIB) ID(FTPD) ACCESS(UPDATE) * Resource rule for Private Key of a SITECERT certificate: PERMIT IRR.DIGTCERT.LISTRING CLASS(FACILITY) ID(FTPD) ACCESS(CONTROL)