How can the ACFRPTRV report showing a violation be used to write a rule in ACF2?

search cancel

How can the ACFRPTRV report showing a violation be used to write a rule in ACF2?

book

Article ID: 185789

calendar_today

Updated On:

Products

ACF2 ACF2 - DB2 Option ACF2 for zVM ACF2 - z/OS ACF2 - MISC LDAP SERVER FOR Z/OS PAM CLIENT FOR LINUX ON MAINFRAME WEB ADMINISTRATOR FOR TOP SECRET

Issue/Introduction

The ACFRPTRV report picks up this violation:

 RLOG-XXXXXXX.CA7                                *VIO  RLOG-XXXXXXX                               
 STC          CALOGGER    STCINRDR SYSX ACF9CAUT NO-REC     -     DIRECTRY UPDT
 20.064 03/04 10.01    CALOGGER CALOGGER     CALOGGER           0   0  20   0  16
 SAF RESOURCE CLASS LOGSTRM
  
 RESOURCE NAME: XXXXXXX.CA7 

How should a rule be written?

Environment

Release : 16.0

Component : CA ACF2 for z/OS

Resolution

The rule would look like this:

$KEY(XXXXXXX) TYPE(LOG)
CA7 UID(**********CALOGGER) SERVICE(READ UPDATE) ALLOW

Then you would restart the STC (or address space) for the new rule to take effect.

Feedback

thumb_up Yes

thumb_down No