During the stop/start of CICS there is a violation for the transaction CEX2.

The violation appears as follows in TSSUTIL report:

   DATE      TIME    SYSID ACCESSOR  JOBNAME   FACILITY  MODE  VC  PROGRAM   R-ACCESS A-ACCESS  SRC/DRC  SEC  JOBID   TERMINAL       
 --------  --------  ----- --------  --------  --------  ----  --  --------  -------- --------  -------  ---  ------- --------       
+                                                                                                                                    
+                                                                                                                                    
010/10/21  14:18:10  TEST  acid CICSTST  CICSTEST   FAIL  01  DFHD2CM2  EXECUTE  NONE      *08*-88       S062345            
                     RESOURCE  TYPE & NAME :   OTRAN     CEX2 

A display of the facility (TSS MODIFY FACILITY(CICSTEST=BYPLIST)) shows the transaction CEX2 in the Bypass list so the security check for the transaction should be bypassed.

TSS9550I FACILITY DISPLAY FOR CICSTEST                  
TSS9570I BYPASS TABLE DISPLAY FOR FACILITY  CICSTEST       

TSS9571I RESOURCE=TRANID   BYPASS  NAMES:   CAQP   CATA   CATD   CATP
TSS9572I        CATR   CAUT   CCIN   CCMF   CDBD   CDBN   CDBO   CDBT

..
TSS9572I        CSOL   CTSD   CWBG   CWXN   CDBF   CEX2   CFQR   CFQS

Why the security check for the transaction CEX2 is not bypassed and there is a violation recorded?

Release : 16.0

Component : Top Secret for z/OS

CICS TS 5.5

Transactions in the TRANID bypass list are for transactions that are started by a user by typing in the transaction from a blank CICS screen. 

There is a PCT bypass list which is for transactions that are started/called from within a program (Like CEX2).

Add the CEX2 transaction to the PCT bypass list using the following command:

TSS MODI FAC(facilityname=BYPADD(PCT=CEX2))

Information about Bypass options are available at the following links:

CICS BYPASS and CICS PROTECT Suboptions