ACF2 reports that expose all activity ACF2 by LogonID
search cancel

ACF2 reports that expose all activity ACF2 by LogonID

book

Article ID: 232444

calendar_today

Updated On:

Products

ACF2

Issue/Introduction

Information on all ACF2 activity by certain users is to be reported on.

 

Environment

Release : 16.0

Component : ACF2 for z/OS

Resolution

ACF2 has three databases, the LogonID, Rule, and Infostorage databases. You’ll also want to know about access to resource and datasets.

In general, there are 2 sections in doc for a given report for each type of reporting: JCL vs ISPF panel. The information below is based on JCL-related parameters, which can be different that ISPF panel parameters. If you prefer to use ISPF to generate output, see the relevant TechDoc Report Name sections following the Reporting Header page.

Many reports provide SUMMARY output by LogonID at end, which you may find to be more practical than the extensive data available in the DETAIL reports.

NOTE that there are exceptions where noted below because SMF records are not created for certain updates.

 

ACFRPTLL – changes to LogonID DB.

- Specify [CHANGER(changermask | ********)]  

- see CHANGER on the SUMMARY and DETAIL report

 

ACFRPTEL  - changes to the Infostorage DB

- includes entry records, resource rule sets, and ACF2 for Db2 rule sets and records.

- default is NOLIDNAME, requests only LogonID to be reported

- specify MASK(logonidmask) parameter for LogonID (default is ALL)

– see LID on report

 

ACFRPTRL – changes to RULE DB

- default SUMMARY parameter produces the report with one line of information for each INSERT, CHANGE, or DELETE subcommand entry. DETAIL parameter produces the before and (if not deleted) the afterimage of the decompiled rule set.

- Default NOLIDNAME requests only the LID field to be reported, not LIDNAME.

- no LogonID mask allowed

- see CHANGER on the SUMMARY and DETAIL report

 

ACFRPTDS – access to datasets

- NOTE: Many data set and program accesses are not logged, because the user owns the data or an access rule allows access.

– specify LIDMASK on SYSIN statements. 

- See: at the end of the ACFRPTDS-Data Set/Program Event Log report, an index cross-references the data set name with the LogonID of the person or batch job that accessed it. 

 

ACFRPTRV – access to resources (resource validations)

- NOTE: many resource events are not logged if the rule specifies that the request is permitted.

- ALL type entries is the default. This includes LOG, VIO and TRACE. Note that TRACE entries by LogonID are written only if the LogonID has the TRACE attribute.

- specify MASK(logonidmask) parameter for LogonID (default is ALL)

- see LID on report

 

 

Powered by Wolken Software