RSA Governance & Lifecycle Integration: IBM RACF Summary
Originally Published: 2020-09-21
Resource Access Control Facility (RACF), is an IBM software product. It is a security system that provides access control and auditing functionality for the z/OS and z/VM operating systems. RACF was introduced in 1976.
This integration with RSA Identity Governance and Lifecycle, allows organisations to automatically collect access control list (ACL) data (who has access to what) and also directly provision/de-provision access too.
| General Applications | Collector | Connector | Identity Source | Authentication | Other | |
|---|---|---|---|---|---|---|
| IBM RACF Summary | ||||||
Page Contents:
- Summary - Collector (Governance) Capabilities
- Summary - Connector (Lifecycle) Capabilities
- Other useful Resources / What Next:
- Detailed Guides
- For Additional Support
Summary - Collector (Governance) Capabilities
| RSA Identity Governance and Lifecycle - IBM RACF Collector Datasheet | Available |
|---|---|
| Accounts | |
| Groups | |
| App Roles | |
| Entitlements |
Summary - Connector (Lifecycle) Capabilities
| RSA Identity Governance and Lifecycle - IBM RACF SSH Connector Datasheet | Available |
|---|---|
| Create an Account | |
| Delete an Account | |
| Reset an Account Password | |
| Enable an Account | |
| Disable an Account | |
| Update an Account | |
| Connect user to a Group | |
| Remove User from a Group | |
| Add application role to an account | |
| Remove an application role from an account | |
| Add an application role to a group | |
| Remove an application role from an account | |
| Add an application role to a group | |
| Remove an application role from a group | |
| Permit a RACF user to a resource | |
| Remove a permitted resource from a RACF user | |
| Permit a group from a resource | |
| Remove a permitted resource from a group | |
| Permit a resource to a group (as role) | |
| Remove a permitted resource from a group (as role) | |
| Permit a resource group to a group (as role) | |
| Remove a permitted resource group from a group (as role) |
Note: Capabilities are always being updated, please check the documentation and comment below if something is not listed, which is required.
Other useful Resources / What Next:
| Resource | RSA Certified | Owner | Cost | Details |
|---|---|---|---|---|
Detailed Guides
To learn more, please find attached the detailed guides:
- RSA Identity Governance and Lifecycle - IBM RACF SSH Connector Datasheet
- https://community.rsa.com/docs/DOC-56560
For Additional Support
For additional Professional Services support, if needed to implement this solution, please contact your local account rep.
