Miscellaneous Security Features

TIBCO MFT Platform Server for z/OS includes two features, documented in the TIBCO® Managed File Transfer Platform Server for z/OS Installation and Operation Guide, that can limit access to z/OS files: CFACCESS and CFALIAS. Both of these features are supported for responder transfers only.

CFACCESS

MFT Platform Server Access Control gives the administrator the ability to control file transfer capabilities for users and nodes. The administrator can restrict the following transfer functions:

• Send a file

• Receive a file

• Submit a job into the internal reader

• Execute a command

• The High Level Qualifier (HLQ) for a file SEND

• The High Level Qualifier (HLQ) for a file RECEIVE

Additionally, the administrator can restrict the following Post Processing Actions (PPA):

• Execute a command

• Submit a job into the internal reader

• Submit the DSN for JCL into the internal reader

CFALIAS

MFT Platform Server File Alias Control gives the administrator the ability to provide an alias for a file based on the information about the initiator. In other words, you can tell the user to define the file name as DOG, and TIBCO MFT Platform Server CFALIAS changes that file name to an actual file name. You can define the following criteria:

• A USER

• A NODE or IP Address

• A combination of USER and NODE/IP Address

Additional criteria can be used to allow a user to supply aliases on a file:

• Send or Receive

• File name (as it exists on the mainframe)

• Alias file name (as entered by the user)