search cancel

ACF2 equivalent of the RACF RESTRICTED attribute

book

Article ID: 144451

calendar_today

Updated On:

Products

ACF2 ACF2 - DB2 Option ACF2 for zVM ACF2 - z/OS ACF2 - MISC

Issue/Introduction

Getting the message : CWWKS2908W: SAF unauthenticated user WSGUEST does not have the RESTRICTED attribute set.
what is the ACF2 equivalent

Environment

Release : 16.0
Component : CA ACF2 for z/OS

Resolution

ACF2 PTF SO08598 is required for support of the LIMITED logonid restriction.
The PTF is available for download from our Broadcom Support Portal.

Details on the LIMITED logonid field follows.
 
LIMITED
Specifies that a user has limited access to datasets and resources.
LIMITED is the ACF2 equivalent to the RACF RESTRICTED attribute.
A LIMITED user cannot access the datasets or resources if the applicable rule entry is a UID(*) ALLOW rule.
Assigning LIMITED to a user also restricts access to UNIX files and directories as documented under the RSTDACC field.

Details on the logonid LIMITED field as well as other logonid fields can be found in section: "Logonid Record Sections and Fields" in the ACF2 documentation.