How do I modify RDT SERVAUTH to enable masking?

book

Article ID: 130711

calendar_today

Updated On:

Products

CA Top Secret CA Top Secret - LDAP

Issue/Introduction

If the SERVAUTH resource is currently defined with NOMASK how is it SET to allow MASKING? 

If the SERVAUTH resource is currently defined with NOMASK
E.G
RESOURCE CLASS = SERVAUTH RESOURCE CODE = X'063' POSIT = 558 ATTRIBUTE = NOMASK,MAXOWN(08),MAXPERMIT(064),ACCESS,PRIVPGM ACCESS = NONE(0000),CONTROL(0400),UPDATE(6000),READ(4000) ACCESS = WRITE(2000),ALL(FFFF) DEFACC = READ
How is MASKING enabled for this resource type. 

Environment

z/os

Resolution

The command for setting MASKING on RESOURCE CLASS SERVAUTH is

TSS REPL(RDT) RESCLASS(SERVAUTH) ATTR(MASK)
Before changing the RESOURCE to MASKABLE, first  REVOKE all PERMITS, and then REMOVE the ownership.
At this point the command can be issued.
After changing the ATTR put back the ownership and permits removed.