Getting ACF2 ACF99913 Violation with a SCOPE DSN high-level index name, why?

book

Article ID: 106901

calendar_today

Updated On:

Products

CA ACF2 CA ACF2 - DB2 Option CA ACF2 for zVM CA ACF2 - z/OS CA ACF2 - MISC

Issue/Introduction


 

Getting ACF2 ACF99913 Violation with a SCOPE DSN high-level index name, why? 
 

Environment

Release:
Component: ACF2MS

Resolution

A SCOPE record grants no special privileges to a user. A SCOPE record provides a means to delegate security administration to other logonids and limit the power of those logonids.

For example adding a DSN hlq ABCDEF to a SCOPE record's DSN data set high-level index names does not give the logonid access to that hlq, it allows that logonid to administer dataset access rules for the hlq ABCDEF.

In order for logonid USER001 to have access dataset ABCDEF.CNTLFILE the dataset access rule ABCDEF needs to be updated to allow logonid USER001 access.