search cancel

ACF2 CICS transactions not accessible, getting ACFAE900/ACFAE913

book

Article ID: 239697

calendar_today

Updated On:

Products

ACF2 - z/OS

Issue/Introduction

CTS 5.3, Users reported that transactions are not working after zos 2.4 upgrade.

Receiving error below: 

+ACFAE900 LID=DFTCICS TERM=RZ1 RESOURCE=TRANS NAME=ACTS
+ACFAE913 ACF2 security violation: Source=EXCG Access=U
+ACFAE900 LID=DFTCICSA TERM=NONE RESOURCE=TRANS NAME=ABCM   
+ACFAE913 ACF2 security violation: Source=*DEFAULT Access=V 
+ACFAE900 LID=DFTCICSA TERM=NONE RESOURCE=TRANS NAME=ABMC   
+ACFAE913 ACF2 security violation: Source=*DEFAULT Access=V 
+ACFAE900 LID=DFTCICSA TERM=NONE RESOURCE=TRANS NAME=ABRC   
+ACFAE913 ACF2 security violation: Source=*DEFAULT Access=V 
+ACFAE900 LID=DFTCICSA TERM=NONE RESOURCE=TRANS NAME=AGNT   
+ACFAE913 ACF2 security violation: Source=*DEFAULT Access=V 
+ACFAE900 LID=DFTCICSA TERM=NONE RESOURCE=TRANS NAME=WACC   
+ACFAE913 ACF2 security violation: Source=*DEFAULT Access=V

 

 

Cause

ACF2PARM:
      DEFAULT TERMINAL=DFTCICS     TERMINAL DEFAULT LOGONID
      DEFAULT NONTERMINAL=DFTCICSA NON-TERMINAL DEFAULT LOGONID

Environment

Release : 16.0

Component : ACF2 for z/OS

Resolution

The ACF2PARM specifies DEFAULT NONTERMINAL=DFTCICSA which the ACF2/CICS interface uses this logonid DFTCICSA to validate resources on behalf of transactions that execute in a nonterminal environment (that is, no facility address is present in the CICS TCA/Task Control Area) and, therefore, cannot be related to individual users signed on to the system.

+ACFAE900 LID=DFTCICSA TERM=NONE RESOURCE=TRANS NAME=ABCM   
+ACFAE913 ACF2 security violation: Source=*DEFAULT Access=V 
+ACFAE900 LID=DFTCICSA TERM=NONE RESOURCE=TRANS NAME=ABMC   
+ACFAE913 ACF2 security violation: Source=*DEFAULT Access=V 
+ACFAE900 LID=DFTCICSA TERM=NONE RESOURCE=TRANS NAME=ABRC   
+ACFAE913 ACF2 security violation: Source=*DEFAULT Access=V 
+ACFAE900 LID=DFTCICSA TERM=NONE RESOURCE=TRANS NAME=AGNT   
+ACFAE913 ACF2 security violation: Source=*DEFAULT Access=V 
+ACFAE900 LID=DFTCICSA TERM=NONE RESOURCE=TRANS NAME=WACC   
+ACFAE913 ACF2 security violation: Source=*DEFAULT Access=V

The ACFAE900/ACFAE913 messages indicate that the transactions ABCM, ABMC, ABRC, AGNT and WACC are getting violations and TERM=NONE which indicates that it is a nonterminal environment, so the Nonterminal default logonid DFTCICSA will be used for the validation. Since the TYPE(CKC) rules have rule entries coded for logonid DFTCICS which are defined for the default terminal logonid for terminals that are not signed on, rule entries need to be coded for DFTCICSA the Nonterminal default logonid.