Upload
clarissa-fox
View
219
Download
5
Embed Size (px)
Citation preview
Our z/OS Security Administration and AuditingCompany name
Introducing z/OS Security
1 hour
1 hour
1 hour
PowerPoint Our z/OS Security
PowerPoint Our z/OS Security Administration and
Auditing
WebinarUnderstanding
z/OS Security and Your Role
= Datatrain Course Modules
Mainframe Security Basics
z/OS Security Administration
z/OS Security Auditing and Recording
z/OS Authorized Program Facility
1 hour
Our SMF
• Logged to Coupling Facility
• Archived to tape every night: one onsite, one offsite
• Kept for 7 years
• Security related events also archived to datasets for reporting
2 | Copyright © Interskill Learning 2012
SMF
RACFCICSDB2z/OS
Our Other Logging
IMS• Archived to tape every night: one onsite, one offsite
• Kept for 7 years
Operlog• Archived to BMC Control/D every night
• Kept for one year
Syslogd• Routed to Operlog
3 | Copyright © Interskill Learning 2012
Our Log Access Tools
SMF• SAS/MXG
• Tivoli z/Secure
• Custom DFSORT ICETOOL jobs
Operlog• Control/D
IMS Logs• SAS/MXG
• Tivoli z/Secure
4 | Copyright © Interskill Learning 2012
Our Security Related Reports
• Logon IDs Suspended
• Logon IDs Not Used for More Than Three Months.
• RACF Rule Changes
• Updates to Sensitive Datasets
• Sensitive z/OS and USS Commands Issued
• Excessive Rule Violations
• Excessive Logons from a Logon ID
• Internal Firecall Utility Use
5 | Copyright © Interskill Learning 2012
Our Security Administration Tools
• Tivoli z/Secure
• RACF Panels
• RACF TSO Commands
• Internal Firecall
• ASPG ReAct
6 | Copyright © Interskill Learning 2012
Our Security Audits
External• Every Two Years
• External Audit Company
• Different Scope Every Audit
Internal• Every April
• Security Administrators
• Analyze Tivoli z/Secure Audit Reports
7 | Copyright © Interskill Learning 2012
Our APF Security
• Only Systems Programmers can update APF libraries
• Daily report of APF library updates
• Daily report of commands adding APF authorization
• Annual Audit of APF authorized modules and libraries
8 | Copyright © Interskill Learning 2012
Summary
• Our SMF
• Our Other Logging
• Our Log Access Tools
• Our Security Related Reports
• Our Security Administration Tools
• Our Security Audits
• Our APF Security
9 | Copyright © Interskill Learning 2012
Introducing z/OS Security
1 hour
1 hour
1 hour
PowerPoint Our z/OS Security
PowerPoint Our z/OS Security Administration and
Auditing
WebinarUnderstanding
z/OS Security and Your Role
= Datatrain Course Modules
Mainframe Security Basics
z/OS Security Administration
z/OS Security Auditing and Recording
z/OS Authorized Program Facility
1 hour