Datatrain | OS/390: Operations | Applications | Security || Linux | iSeries | VSE | Tandem | Cobol | Contact | Search 

Datatrain Computer Based Training / Online e-Learning

Security - RACF Auditor

RunRun Demo (without the LMS): Auditing Functions
Flash 5 required

Duration

5 - 6 hours

Overview

Audience

Application Programmers, Systems Programmers, Database Administrators, Security Administrators and anyone requiring knowledge on how to use the Security Server (RACF) on the OS/390 platform

Prerequisites

Knowledge of TSO and ISPF, understanding of data sets and basic security issues

Objectives

After completing the core modules (1-10) the student should be able to:
  • Explain the Objectives and functions of Auditing
  • Set audit controls for users, groups and access to data sets and general resources
  • Set general audit controls
  • List general audit controls
  • Control logging and gathering of statistics
  • Use various utilities to analyze collected auditing data

Course Content

Module 1 AUDITING FUNCTIONS
  • Objective - To Identify Security Exposures
  • AUDITOR User/Group Attribute
  • Access Control
  • Logging
  • RACF Utilities Overview (More Detail in Module 4)
    • SMF Data Unload (IRRADU00)
    • Cross-Reference (IRRUT100)
    • Database Unload (IRRDBU00)
    • DSMON program

Module 2 AUDIT CONTROLS
  • General Auditing Options (SETROPTS) Command (covered in detail next module)
  • Auditing Users (ALTUSER command with UAUDIT operand)
  • Auditing Data Set Access (ALTDSD command with GLOBALAUDIT operand)
  • Auditing General Resources (RALTER command with GLOBALAUDIT operand)
  • Listing Audit Controls (LISTDSD, LISTUSER, LISTGRP, RLIST commands)

Module 3 GENERAL AUDITING OPTIONS
  • The TSO SETROPTS Command
  • Uses of SETROPTS Command
    • Current Options in Effect
    • RACF Statistics
    • Logging
    • Auditing
  • Auditing Options
    • Activating/Deactivating Auditing Functions
    • Auditing of Access Attempts
    • Auditing of APPC Transactions
    • Auditing of OS/390 UNIX System Services

Module 4 AUDITING UTILITIES
  • Analyzing Audit Data
  • SMF Data Unload Utility (IRRADU00)
  • DSMON Program
  • Cross-Reference Utility (IRRUT100)
  • Database Unload Utility (IRRDBU00)

Library

This course is part of the Security library.

  Monitor
1e Atjehstraat 132-1
NL-1094 KT Amsterdam		 |