IBM® Security zSecure™ Manager for RACF® z/VM® enables efficient and effective IBM Resource Access Control Facility (RACF) administration, reporting and auditing in IBM z/VM virtual environments. It automates functions to help you optimize IT resources, reduce errors, mitigate complexity, improve quality of service, demonstrate compliance and reduce costs.

IBM Security zSecure Manager for RACF z/VM provides auditing and reporting capabilities designed to help RACF users efficiently measure and verify the effectiveness of their z/VM security and compliance policies.

IBM Security zSecure Manager for RACF z/VM helps you:

  • Simplify security administration through efficient automation.
  • Minimize threats through automated analysis and reporting.
  • Ease database consolidation and verify security effectiveness by merging databases quickly and customizing reports.
  • Get answers quickly through analysis of RACF profiles and SMF log files.

Simplify security administration

  • Simplify complex tasks using one-step actions that can be performed without extensive RACF knowledge.
  • Execute queries in seconds and implement mass changes with little administration.

Minimize threats

  • View vital z/VM information and identify problems that might require further investigation.
  • Rank problems by audit priority with a number indicating the relative impact of a problem.
  • Fix or help prevent mistakes before they become a threat to security and compliance.

Ease database consolidation and verify security effectiveness

  • Merge security rules from different databases; copy or move users, groups, resources, applications or whole databases; rename IDs within the same database.
  • Perform—when merging—extensive consistency checks and report potential conflicts before generating commands.
  • Produce reports in email format on a daily or custom schedule only when specific events occur or when there is a security breach.
  • Modify displays and reports using CARLa Auditing and Reporting Language (CARLa).
  • Run reports under IBM Interactive System Productivity Facility (ISPF) or in batch without changing the CARLa programs.

Get answers quickly

  • Read and update the RACF database directly from an OS-formatted disk or a copied or unloaded RACF database.
  • Answer questions such as: “Who has access to this file?” and “Which system special users have not changed their passwords?”
  • Analyze SMF information from the live SMF data or from extracted SMF data on tape or disk.
  • View information using live data interactively almost immediately after an event has occurred.