Historically we have had an in-house written Partial Security Exit, which has contained many additional Password checks. These checks are no longer required and therefore I am reviewing our specifications for this.
However, I am struggling to understand, from the documentation exactly what is required for the options involved.

Initially I was thinking we would just revert to using the default supplied code in the SAMP entry for NMSAFPX, but then I wondered if I can use the SEC=NMSAF or SEC=PARTSAF options without needing to use the SAMP member at all.
The documentation implies that the 'Product includes a Partial Security Exit', but does this simply mean the SAMP entry, NMSAFPX. 

So in essence my question is, if I want to specify SEC=NMSAF, or SEC=PARTSAF, do I still need to assemble and link NMSAFPX ? If not, what module(s) is used for the Partial Security Exit.

Release : 5.0

Component : CA SOLVE:Access Session Management

Recommend that you use the NMSAF partial exit that is object code only and is fully supported. Use the SEC=NMSAF for Partial security exit.

NMSAF is a partial security exit that interfaces with your external security package for password checking. Passwords are not stored in UAMS. NMSAF is a preconfigured, assembled, and linked load module in the CA NetMaster Load Library.

The NMSAF preconfigured, assembled, and linked load module is called NM111.


See Using the NMSAF Security Solution:
http://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-mainframe-software/performance-and-storage/ca-netmaster-shared-content-library/12-2/security/using-the-nmsaf-security-solution.html