JVMSHRC020E during z/OSMF with CA Top Secret

book

Article ID: 130204

calendar_today

Updated On:

Products

CA Top Secret CA Top Secret - LDAP

Issue/Introduction

Ran TSSSEC after applying the fix SO03835 to setup security for z/OSMF

The z/OSMF STC during startup receives messages:

VMSHRC020E An error has occurred while opening semaphore 314
JVMSHRC336E Port layer error code = -262894 315 JVMSHRC337E Platform error message: semctl : EDC5111I Permission 316

If I define the User IZUSRV as superuser with UID(0), the messages disappear.

Is there an alternative to UID(0)?

Environment

Release:
Component: TSSMVS

Resolution

We decide to modify the chown using IZUSECGP Group in BPXBATCH SH chown -R IZUSVR:IZUSECGP /global/zosmf in:

TMVS SYS1.SAMPLIB(IZUMKFS) - 01.00 Columns 00001 00080 
Command ===> Scroll ===> CSR 
000057 //* autostart group. * 
000058 //* * 
000059 //* This step: * 
000060 //* 1. Creates the z/OSMF data directory as /global/zosmf. * 
000061 //* 2. Mounts the filesystem at mount point /global/zosmf. * 
000062 //* 3. Creates the home directory for the z/OSMF started task. * 
000063 //* 4. Changes the ownership and permissions of the directories * 
000064 //* and files in the z/OSMF data file system. * 
000065 //******************************************************************** 
000066 //* 
000067 //MOUNT EXEC PGM=IKJEFT1A,COND=((0,NE,DEFINE),(0,NE,FORMATFS)) 
000068 //SYSTSPRT DD SYSOUT=* 
000069 //SYSTSIN DD * 
000070 BPXBATCH SH mkdir -p /global/zosmf 
000071 MOUNT FILESYSTEM('IZU.SIZUUSRD') TYPE(ZFS) + 
000072 MOUNTPOINT('/global/zosmf') MODE(RDWR) PARM('AGGRGROW') AUTOMOVE 
000073 BPXBATCH SH mkdir -p /global/zosmf/data/home/izusvr 
000074 BPXBATCH SH mkdir -p /global/zosmf/configuration/workflow 
000075 BPXBATCH SH chown -R IZUSVR:IZUADMIN /global/zosmf 
000076 BPXBATCH SH chmod -R 755 /global/zosmf 
000077 /* 

instead of giving UID(0)