This course is designed for individuals who administer RACF, or those who are interested in sharpening their RACF administration skills through the use of RACF commands, RACF panels or the Vanguard Administrator product. The course not only covers theory, it provides a realistic set of lab exercises that enable the students to apply knowledge learned during the discussion sessions. The lab environment allows them to choose to complete their assignments using RACF commands, RACF panels, and/or the Vanguard Administrator. Lab exercises make up approximately one-fourth of the class experience.
Course material specifically discusses the major RACF functions: user authentication, resource authorization, surveillance, and administration.
The course is designed to enhance existing RACF skills by becoming more familiar with the structure of the RACF database, understanding system settings, RACF utilities, RACF Tables, and digital certificates as well as discussing security for z/OS UNIX, JES, SDSF, storage, and programs.
This course is designed for individuals that need knowledge of RACF reporting tools. The course focuses on the logging and reporting capabilities of RACF. The course not only provides theory; it also provides a realistic set of lab exercises so that students can apply knowledge learned during the discussion sessions. Course material discusses the use of RACF Utilities — IRRUT100, IRRUT200, IRRUT400, IRRRID00, and IRRDBU00, as well the use of the RACF and SMF reporting tool, ICETOOL. The course will also address the reporting capabilities of the Vanguard products — Administrator, Advisor, Analyzer, and Configuration Manager.
The course is designed to enhance existing system and RACF skills by becoming more familiar with the structure of networking in a z/OS environment. The course explores HTTP setup, usage of LDAP, security in z/OS UNIX, the use of Digital Certificates, as well as a discussion on VPN, SSH, SSL/TLS, and AT-TLS and the differences between them.
Upon completion of this course, the student should be able to:
• Explain the reasons for transport level encryption.
• Perform RACF security functions for z/OS UNIX System Services.
• Demonstrate the use of digital certificates in RACF.
• Explain the use of SERVAUTH profiles to control port access.
• Describe the components of network security.
• Explain VPN (IPSec), Kerberos, SSH, SSL/TSL, and AT-TLS and the differences between them.
• Migrate unsecured services (such as TN3270 & FTP) to SSL/TLS protection using digital certificates.
• Transition unsecured services (such as FTP) to utilize AT-TLS, deprecating SSL 3.0 and TLS 1.0
This course is designed for individuals who administer RACF security for DB2®, CICS® or IBM® MQ. The course not only covers theory; it provides a realistic set of lab exercises that enable the students to apply knowledge learned during the discussion sessions. Participants have the option of registering for both modules or just the module applicable to your needs.
Upon completion of this course, the student will be able to:
• Understand how to use RACF security for DB2 objects and authorities
• Administer RACF security for CICS regions, users, transactions, commands, and application resources
• Understand how to implement IBM MQ security using RACF