Micro Focus recommends disabling features you don't need, particularly for production regions, by editing your various
Enterprise Server for .NET configuration files. These are items you can disable in the region startup file for a CICS region.
- VSAM file, program, and map locations that are not used by your CICS applications. This is a small exposure if your filesystems and databases are already secured.
- Web Services paths that you do not use. This is a larger exposure, since Web Services let any client invoke a matching CICS transaction using an HTTP request.