FTP/Guardian enables a company to control exactly who can access z/OS FTP, from where and what they are authorized do with it, by writing SAF security rules (RACF, Top Secret or ACF2). SAF security rules can be written to allow some activity and block others.
Examples of how FTP/Guardian can work:
- Block unwanted FTP activity
- Block access to the FTP server from unauthorised locations
- Allow access and download of sensitive data from specific FTP clients only, behind the company firewall
- Downloads of job output enabled for specific users only
- Access to z/FS folders controlled on a case-by-case basis