Trying to prevent users from accidentally issuing CAT* transactions since they are only supposed to be used by the region and not by users, so we attempted to add the following:
Only allow the primary ID of the CICS region to the CAT* transactions.
This setup works on preventing users from starting CATR transaction but it doesn't work for CATA or CATD.
Release : 16.0
Component : CA ACF2 for z/OS