How to use the ACF2 RECKEY Subcommand MOD option to update/modify an existing rule entry
search cancel

How to use the ACF2 RECKEY Subcommand MOD option to update/modify an existing rule entry

book

Article ID: 14942

calendar_today

Updated On:

Products

ACF2 ACF2 - DB2 Option ACF2 for zVM ACF2 - z/OS ACF2 - MISC

Issue/Introduction

How can the ACF2 RECKEY Subcommand MOD option be used to update/modify an existing rule entry?

Environment

Release:
Component: ACF2MS

Resolution

The RECKEY subcommand assists security administrators in maintaining rule sets and compiled infostorage rule records. This subcommand allows the user to decompile, add, delete or modify a rule entry, recompile, and store the updated rule set with one command. 

The MOD parameter will will replace a rule line or control statement with another rule line or control statement.

The syntax of the RECKEY subcommand is as follows:

RECKEY ruleid {ADD(rule-entry)|DELETE(rule-entry) |MOD(rule-entry, rule-entry)}

Sample Rule:

$KEY(TEST) TYPE(CKC)   
 UID(****USER01) ALLOW       

Sample RECKEY command to change Access to LOG:

RECKEY TEST MOD(UID(****USER01) ALLOW,UID(****USER01) LOG)     

ACF75052 RESOURCE RULE TEST STORED BY USER002 ON 07/03/17-09:16
 ACF60202 THE FOLLOWING RULE LINE(S) WILL BE REPLACED             
 UID(****USER01) ALLOW                                          
 ACF70010 ACF COMPILER ENTERED                            

******** RESOURCE RULE TEST STORED BY USER002 ON 07/03/17-09:16
 $KEY(TEST) TYPE(CKC)                                           
 UID(****USER01) LOG                                            
 ACF70051 TOTAL RECORD LENGTH= 166 BYTES, 4 PERCENT UTILIZED     



 



 

Powered by Wolken Software