CA JCLCheck CAY6321E error message for DISP=OLD

book

Article ID: 133772

calendar_today

Updated On:

Products

JCLCheck Workload Automation

Issue/Introduction

A dataset name with DISP=OLD gets CA JCLCheck security violation error: 


       CAY6321E SECURITY VIOLATION DETECTED "DATASET ACCESS LEVEL=UPDATE".


The dataset is used only for READ access, and the batch acid has READ access.

CA JCLCheck does not issue an error if the JCL is changed to DISP=SHR for the same dataset.



Cause

DISP=OLD dataset requires exclusive access so JCLCheck needs to validate the update access.

Environment

Release : 12.0

Component : CA JCLCheck workload Automation

Resolution

Use DISP=SHR since the dataset is used only for READ access, and the batch acid has READ access.

Additional Information

CA JCLCheck runtime options:

- SECurity(SHRupd): Performs a security check for ACCESS=UPDATE on DISP=SHR data set

- SECurity(NOSHRupd): Performs a security check for ACCESS=READ on DISP=SHR data set.  Use this option if the program only reads the file.


Reference:

https://docops.ca.com/ca-jclcheck-workload-automation/12-0/en/reference/jclcheck-runtime-options/description-of-runtime-options/security