Security error when trying to add logstream to CALOGGER
Article ID: 145975
Updated On: 08-06-2024
Products
COMMON SERVICES FOR Z/OS
ACF2 - z/OS
Issue/Introduction
Issuing the command to add a logstream to the CALOGGER address space, getting a security violation:
ACF04056 ACCESS TO RESOURCE CALOGGER.ADD.LOGGER TYPE ROPR BY USERxxx NOT AUTHORIZED
Understandable since there are no rules to allow access to this resource. Cannot find documentation identifying this is something that should be secured.
Environment
CA Common Services 14.1 & 15.0 - z/OS supported releases -
Cause
There are no security rules to access to the resource CALOGGER.ADD.LOGGER
Resolution
It looks like the resource name is CALOGGER.ADD.LOGGER and the TYPE code is OPR so the RECKEY would be:
SET RESOURCE(OPR)
RECKEY CALOGGER ADD(ADD.LOGGER UID(UID string for user) ALLOW)
Using the same format as ADD, here are the commands to protect the REMOVE and DISPLAY commands:
RECKEY CALOGGER ADD(REMOVE.LOGGER UID(UID string for user) ALLOW)
RECKEY CALOGGER ADD(DISPLAY.LOGGER UID(UID string for user) ALLOW)
SET RESOURCE(OPR)
RECKEY CALOGGER ADD(ADD.LOGGER UID(UID string for user) ALLOW)
Using the same format as ADD, here are the commands to protect the REMOVE and DISPLAY commands:
RECKEY CALOGGER ADD(REMOVE.LOGGER UID(UID string for user) ALLOW)
RECKEY CALOGGER ADD(DISPLAY.LOGGER UID(UID string for user) ALLOW)
Feedback
Was this article helpful?
Yes
No
Powered by
