CICS Storage Protection with IDMSINTC and IDMSINTL

Beginning with Version 3.3 of CICS, IBM introduced storage protection.
idms
Beginning with Version 3.3 of CICS, IBM introduced storage protection. To use the features for RENTPGM and STGPROT with programs that access CA IDMS using the IDMSINTC or IDMSINTL interfaces, certain procedures must be followed.
TRANSACTION ISOLATION is NOT supported for CICS transactions thataccess CA IDMS using the IDMSINTL interface. It is supported for transactions that use the IDMSINTC interface if the appropriate procedures are followed.
CICS Setup Procedures
  1. Ensure that IDMSINTC, IDMSINTL, and UCFCICS are linked with NORENT parameter.
  2. The transactions that invoke the IDMSINTC and UCFCICS interfaces need to be defined with TASKDATAKEY=CICS.
  3. The IDMSINTC and UCFCICS interface programs need to be defined with EXECKEY=CICS. Application programs can be defined with EXECKEY=USER.
  4. IDMSINTL needs to be defined with EXECKEY=CICS on z/OS systems and with EXECKEY=USER on z/VSE systems.
  5. The task that invokes IDMSINTL needs to be defined with TASKDATAKEY=CICS on z/OS systems and with TASKDATAKEY=USER on z/VSE systems.
DC/UCF Setup Procedures
The following procedures are required for z/OS operating systems. They are not required on z/VSE operating systems because the primary key for each partition is unique.
  1. Set up a PPT entry for the CV startup module (RHDCOMVS) to specify any KEY other than the CICS protect key (usually 8). The key for the CV startup module should normally be 4.
    For more information on specifying a CV startup key, see Storage Key Considerations for z/OS CSA subpools.
  2. Set the CV SYSGEN
    SYSTEM
    statement
    STORAGE KEY IS
    parameter to any KEY other than the KEY specified for item 1.
  3. Link the CV STARTUP module in an APF authorized library. The CV STARTUP JCL should contain only this APF AUTH library in the STEPLIB. Other loadlibs should be concatenated under CDMSLIB. Note that the STARTUP module must reside in an authorized library, however, the load module may or may not be authorized (that is, linked with AC(1)).
    For more information, see Creating a Secured CA IDMS System on z/OS in the section "Getting Started" in the
    Installing section -- z/OS
    .