There is a CA ACF2 for zVM as well as CA TSS for zVM. IBM has RACF for zVM. What is there role id I have VM:Secure? I am working on Security requirements for zVM.
We only user VMSECURE on the VM systems here. It can handle the directory management and the Rules Facility takes care of access control, etc.
Depending on if you have z/OS systems, and if you want an interface between those systems, you may need to look at other things. Been too long since I've done that to comment with any surety.
CA VM:Secure is both a directory management and External Security Management (ESM) product for z/VM. If you have implemented the VM:Secure rules facility, then you are using its ESM capabilities. You can only have one ESM on your system. So no, you would not need, nor could you use, an additional ESM product with VM:Secure if you have implemented the Rules Facility.
Thanks for the input. I will develop requirement rules that recognized all four security managers.