A CA-TOP SECRET facility for the MSO job must be created and made available for CA-TOP SECRET. The INITPGM for the facility must be SSFOC, and the TENV and MULTIUSER attributes in the facility must be on. A sample facility that works at one MSO site follows:
FACILITY DISPLAY FOR FOCUSMSO
INITPGM=SSFOC ID=F TYPE=07
ATTRIBUTES=IN-USE,ACTIVE,SHRPRF,ASUBM,TENV,NOABEND,MULTIUSER,NOXDEF ATTRIBUTES=LUMSG,NOSTMSG,SIGN(S),NOPSEUDO,INSTDATA,NORNDPW,AUTHINIT ATTRIBUTES=NOPROMPT,MENU,NOAUDIT,RES,NOMRO,WARNPW,NOTSOC ATTRIBUTES=TRACE,NOLAB,NODORMPW,NONPWR,NOIMSXTND
MODE=FAIL LOGGING=ACCESS
UIDACID=8 LOCKTIME=000 DEFACID=*NONE* KEY=8
If the MSO Console is being installed, an additional facility must be defined. A sample facility and user definition follows:
FACILITY DISPLAY FOR FOCCON
INITPGM=SSCONS ID=F TYPE=99
ATTRIBUTES=IN-USE,ACTIVE,SHRPRF,ASUBM,NOABEND,MULTIUSER,NOXDEF ATTRIBUTES=LUMSG,NOSTMSG,SIGN(S),INSTDATA,RNDPW,AUTHINIT ATTRIBUTES=NOPROMPT,NOAUDIT,RES,WARNPW,NOTSOC,LCFTRANS ATTRIBUTES=MSGLC,TRACE,NOEODINIT,NODORMPW,NOPWR,NOIMSXTND
MODE=WARN DOWN=GLOBAL LOGGING=INIT,SMF,MSG
UIDACID=8 LOCKTIME=000 DEFACID=*NONE* KEY=8
MAXUSER=03000 PRFT=003
FACILITY(USER1=NAME=FOCCON)
FACILITY(FOCCON=PGM=SSCONS,ID=F) FACILITY(FOCCON=ACTIVE,SHRPRF,ASUBM,NOABEND,MULTIUSER,NOXDEF) FACILITY(FOCCON=LUMSG,NOSTMSG,SIGN(S),NOPSUEDO,INSTDATA,NORDNPW,AUTHINIT) FACILITY(FOCCON=AUTHINIT,NOPROMPT,MENU,NOAUDIT,RES,MOMRO,WARNPW,NOTSOC) FACILITY(FOCCON=TRACE,NOLAB,NODORMPW,NONPWRM,NOIMSXTND) FACILITY(FOCCON=MODE=WARN,LOG=ACCESS,LOCKTIME=000)
The TENV parameter is required until CA-TOP SECRET 4.3, but is no longer required as of that release.
Each MSO user must be defined to CA-TOP SECRET.
MSO must be executed from an APF-authorized library, and EXTSEC=YES must be specified.
Note: If there are problems getting CA-TOP SECRET to process MSO security properly, the CA-TOP SECRET system administrator should contact Computer Associates TOP SECRET Technical Services directly.
| Information Builders |