After performing an OS upgrade, a security failure may be experienced if RACF definitions are not carried forward. This can exhibit itself when attempting to issue commands for CA-7 user interface. The following symptoms can be witnessed:
CA-7 REQUEST FOR COMMAND ACCESS DENIED BY SECURITY.
Because the CA-7 request goes through the CA Common Services Standard Security Facility (SSF) the following CA Common Services error message is generated as a result of information received back from the RACF security system:
CAS9034E - FUNCTION(RESCHECK) CLASS SPECIFIED IS INACTIVE
As part of the operating system upgrade, 'ALL' RACF CLASS definitions (CDT) from module ICHRRCDE need to be propagated to the new version of module ICHRRCDE. Refer to the appropriate Security Server RACF System Programmer's Guide for your specific OS release.