I found a statement in the AUTHORIZ CONFIG file as follows: GRANT $INVPW TO VTUBES
VTUBES is a valid user id on our system (a z/VM Session Manager) but when I went to look up what $INVPW allows for, I could not find anything VM:Secure's documentation.
Any idea if $INVPW is still valid?
Release: Component: VMX
There is not a macro of this name in VM:Secure. It is likely a local macro used to interface with VTUBE or TUBES. Check VM:Secure's disks (particularly the 191) and disks it has access to when it is running for something with a filename of $INVPW and filetype *. If it is still there, maybe there is some information in the file on where it came from.
If you don't see anything around that has that filename, then you may want to comment out the authorization. This can be done by issuing VMSECURE CONFIG AUTH to get to the authorization configuration file. So, if you have to put the authorization back, you can uncomment it the same way to make it available again.