Administration Commands
define_rcf_access
If the address does not match, an LS is dynamically defined. To ensure that the explicit LS definition (including the required PU name) is used, be sure that the address defined for this LS matches the address that is supplied by the host or the downstream computer on the incoming call.
2.47 define_rcf_access
The define_rcf_access command defines access to the SNAplus2 Remote Command Facility (RCF). This command defines the user ID used to run UNIX Command Facility (UCF) commands and the restrictions under which administration commands can be issued using the Service Point Command Facility (SPCF). For more information about SPCF and UCF, refer to the
The command can be used to specify the RCF access for the first time, or to modify an existing definition. Because RCF access parameters are defined as domain resources, this command is not associated with a particular node.
SNAplus2 acts on these parameters during node
2.47.1 Supplied Parameters
Parameter name | Type | Length | Default |
[define_rcf_access] |
|
|
|
ucf_username | character | 31 | (null string) |
spcf_permissions | constant |
| NONE |
Supplied parameters are:
ucf_username
Specifies the
All UCF commands are run using the user ID for this user, with the default shell, default group ID, and access permissions that are defined on the
To prevent access to UCF, do not specify this parameter.
spcf_permissions
Specifies the types of SNAplus2 administration commands that can be accessed using SPCF. To prevent access to SPCF, set this parameter to NONE. To allow access to SPCF, set this parameter to one or more of the following values (combined using a + character):
ALLOW_QUERY_LOCAL
The query_* commands are allowed.
ALLOW_DEFINE_LOCAL
The define_*, set_*, delete_*, add_*, remove_* , and init_node commands are allowed.
ALLOW_ACTION_LOCAL
The start_*, stop_*, activate_*, deactivate_*, aping, initial-
ize_session_limit, change_session_limit, and reset_session_limit commands are allowed.
ALLOW_QUERY_REMOTE
174
