The IMS message table is provided in CAX1MAC2(ACFDCMSG)

For the logon process the messages are prefixed with ACF and for this/these processes the IMS message table is used and DFSU prefixed messages are displayed. 

The messages displayed in the control region joblog (and syslog) for a transaction violation are:

ACFDC040 LOGONID logonid   SOURCE source ACCESS TO TRANSACT transact        IS DENIED  sysid
ACF04056 ACCESS TO RESOURCE transact TYPE RITT BY logonid NOT AUTHORIZED  sysid

However, the message the user receives is:

DFSU901 15:47:36 ACF2/IMS: SECURITY VIOLATION

Can these messages be displayed for any other sort of violation?

The resource post validation exit can be used to pass-back whatever message is desired.

ACF2 provides a sample in the CAX1MAC2 library. 

See documentation section Exit Procedures and Considerations for additional information