Does ACF2 have an equivalent to the RACF LIMITED option?

book

Article ID: 144451

calendar_today

Updated On:

Products

CA ACF2 CA ACF2 - DB2 Option CA ACF2 for zVM CA ACF2 - z/OS CA ACF2 - MISC

Issue/Introduction

Getting the message : CWWKS2908W: SAF unauthenticated user WSGUEST does not have the RESTRICTED attribute set. which may be related to RACF LIMITED option/restriction.

 

Environment

Release : 16.0
Component : CA ACF2 for z/OS

Resolution

ACF2 PTF SO08598 is required for support of the LIMITED logonid restriction. The PTF is available for download from our Broadcom Support Portal. Details on the LIMITED logonid field follows.
 
LIMITED
Specifies that a user has limited access to datasets and resources. LIMITED is the ACF2 equivalent to the RACF RESTRICTED attribute. A LIMITED user cannot access the datasets or resources if the applicable rule entry is a UID(*) ALLOW rule. Assigning LIMITED to a user also restricts access to UNIX files and directories as documented under the RSTDACC field.

Details on the logonid LIMITED field as wekk as other logonid fields can be found in section: "Logonid Record Sections and Fields" in the ACF2 documentation.