RACF in everyday life
RACF (Resource Access Control Facility) is used in around 80 percent of all global z/OS installations. This is an IBM security system for managing authorizations in the mainframe environment. RACF ensures that only authorized users have access to a requested resource. If an unauthorized user attempts to access a protected resource – this can be data, applications or hardware – the system records and reports this attempt.
RACF thus fulfils the following basic functions:
- Identification and verification of users using user keys and password checks (authentication)
- Protect resources by managing access rights (authorization)
- Logging of access to protected resources (auditing)
From these functions different activities are derived for the IT department.