Does the ACF2 SECURITY privilege prevent NON-CNCL loggings in the ACFRPTRV and ACFRPTDS reports?

book

Article ID: 210004

calendar_today

Updated On:

Products

CA ACF2 CA ACF2 - MISC CA ACF2 - z/OS

Issue/Introduction

An ACF2 logonid with ACCOUNT and SECURITY privileges is not creating NON-CNCL logging entries in the ACFRPTRV and ACFRPTDS reports. Does the SECURITY privilege prevent NON-CNCL entries?

Resolution

SECURITY and NON-CNCL privileges create entries for different fields in the ACFRPTRV and ACFRPTDS reports.

In the RV report,  the DSPMOD field is NON-CNCL for logonids with NON-CNCL. For SECURITY privileges, the DSPMOD field will display SEC-OFF. Both fields imply that that access was permitted.

In the DS report, the INST field is NON-CANC for logonids with NON-CNCL. For SECURITY privileges, the INST field will display SEC-OFF. Both fields imply that that access was permitted.

 

Additional Information

For more information on the ACFRPTRV report please see the ACF2 documentation: ACFRPTRV - Resource Event Log

For more information on the ACFRPTDS report please see the ACF2 documentation: ACFRPTDS - Dataset/Program Event Log