However if the service delivery department doesn’t have full control over RACF for every system running in the environment it would be possible for an installation-written program running in one LPAR to impact any LPAR that has been enabled for BCPii.” New z14 BCPii Security Enhancements
How can I control the scope of bcpii?
To exploit this capability you have to enable BCPii and the only way to control the scope of BCPii actions is currently RACF.
Where can I find more details about the RACF commands?
More details of the commands and their parameters can be found in IBM’s manual. Add a userid to the RACF database. Note that this is a very simplified example.
How to start bcpii address space at IPL time?
• System automatically tries to start BCPii address space at IPL time. •You don’t need to add anything to COMMNDxx or automation. • Successful start requires that certain steps have been carried out: •Setup on the HMC/SE: •Enable Cross Partition Authority for every LPAR that you want to be able to issue or be the target of BCPii commands.
