USERID gets XCOMM0257E after applying XCOM maintenance

book

Article ID: 209914

calendar_today

Updated On:

Products

CA XCOM Data Transport - z/OS

Issue/Introduction

After applying maintenance to R12, user gets these messages (only for one userid):

** The TYPE=EXECUTE job fails with message:

XCOMM0127E FMH7 SENSE 08890000 - GDS MSG FOLLOWS
XCOMM0257E ACCESS DENIED BY SECURITY INTERFACE  

** The XCOM STC has the following messages:

TSS7100E nnn J=XCOM A=userid T=*TCP/IP* F=XCOM - Invalid source

TSS7171E Unauthorized Source of System Entry

When maintenance was backed off, the XCOMJOB ran OK.  Job also ran with a different USERID in job card.

Cause

It was confirmed that security with XCOM has indeed tightened for this scenario where a userid/acid has Source Restrictions defined in their security profile.

The userid being used for the transfers did have source restrictions, which explains why this userid encountered the Top Secret messages. Other userids in the environment weren't configured with source restrictions in Top Secret and didn't encounter the messages.

Environment

Release : 12.0

Component : CA XCOM Data Transport for z/OS

Resolution

To resolve the XCOM and TSS messages, the proper and all necessary sources need to be added to the userid/acid profile. To determine the source please refer to the actual security messages received. In this case, message "TSS7100E nnn J=XCOM A=userid T=*TCP/IP* F=XCOM - Invalid source" provided the source in question.

Check with your Security Administrator on how to accomplish that.

 

Additional Information

1. After the XCOM maintenance was applied an LLA refresh was performed. The system had not been IPL'd.