zsecure alert - alerts for users who belong to a group

View Only

Expand all | Collapse all

zsecure alert - alerts for users who belong to a group

Luis TapiaMon September 23, 2024 03:39 PM

Hi, How could I create an alert only for users of a group that execute transactions and commands? ...

Rob van HobokenTue September 24, 2024 02:44 AM

Hi Luis, please please please use the forum IBM Security for Z for questions related to RACF, z/OS ...

1. zsecure alert - alerts for users who belong to a group

0 Like
Luis Tapia
Posted Mon September 23, 2024 03:39 PM

Reply
Hi,

How could I create an alert only for users of a group that execute transactions and commands?

for example: user A belonging to the group GROUP executes transactions TX1, TX2 and the CMD command, or executes TX1 and the CMD1 command

Thanks for your time and attention

Atentamente,

Luis Tapia Porras
CoE Seguridad
luistapiap@bcp.com.pe

El sistema de correo electrónico del Banco de Crédito BCP está destinado únicamente para fines del negocio, cualquier otro uso contraviene las políticas del Banco. Toda la información del negocio contenida en este mensaje es confidencial y de uso exclusivo del Banco de Crédito BCP. Su divulgación, copia y/o adulteración están prohibidas y sólo debe ser conocida por la persona a quien se dirige este mensaje. Si Ud. ha recibido este mensaje por error por favor proceda a eliminarlo y notificar al remitente.

Datos elaborados por BCP para uso Interno

El sistema de correo electrónico del Banco de Crédito BCP está destinado únicamente para fines del negocio, cualquier otro uso contraviene las políticas del Banco. Toda la información del negocio contenida en este mensaje es confidencial y de uso exclusivo del Banco de Crédito BCP. Su divulgación, copia y/o adulteración están prohibidas y sólo debe ser conocida por la persona a quien se dirige este mensaje. Si Ud. ha recibido este mensaje por error por favor proceda a eliminarlo y notificar al remitente.

Datos elaborados por BCP para uso Interno
2. RE: zsecure alert - alerts for users who belong to a group

0 Like
Rob van Hoboken
Posted Tue September 24, 2024 02:44 AM

Reply
Hi Luis, please please please use the forum IBM Security for Z for questions related to RACF, z/OS or zSecure. Just click on the link to go to the group.

Your question "how can I see if the user executing an action belongs to group ABC" is possible using the field USER_GROUPS, see here.

This works well with systems with reasonable number of groups. If you have 100,000s of groups, use the field PRIV_USER_GROUPS, and identify the privileged groups names first using a SIMULATE PRIV_USER_GROUPS=(ABC,DEF,GEH) command in the same alert/code. See here.

------------------------------
Rob van Hoboken
------------------------------

Original Message

IBM Security

Join our 16,000+ members as we work together to
overcome the toughest challenges of cybersecurity.

Global Security Forum

zsecure alert - alerts for users who belong to a group

Luis TapiaMon September 23, 2024 03:39 PM

Rob van HobokenTue September 24, 2024 02:44 AM

1. zsecure alert - alerts for users who belong to a group

2. RE: zsecure alert - alerts for users who belong to a group

Additional
Resources

Office

Quick Links

IBM Security

Join our 16,000+ members as we work together to overcome the toughest challenges of cybersecurity.

Global Security Forum

zsecure alert - alerts for users who belong to a group

Luis TapiaMon September 23, 2024 03:39 PM

Rob van HobokenTue September 24, 2024 02:44 AM

1. zsecure alert - alerts for users who belong to a group

2. RE: zsecure alert - alerts for users who belong to a group

Additional Resources

Office

Quick Links

Join our 16,000+ members as we work together to
overcome the toughest challenges of cybersecurity.

Additional
Resources