Incorrect validation after converting CICS transaction validation to XTRAN and XPCT validations.
search cancel

Incorrect validation after converting CICS transaction validation to XTRAN and XPCT validations.

book

Article ID: 367804

calendar_today

Updated On:

Products

ACF2 - z/OS

Issue/Introduction

Resource validation for transactions are programatically requested via

EXEC CICS QUERY SECURITY RESTYPE(TRANSACTION)
After changing the ACF2/CICS CICSKEY parameter from RESOURCE=TRANS to RESOURCE=XTRAN and RESOURCE=XPCT
The users were getting incorrect validation results.  

Resolution

After converting ACF2/CICS validations from RESOURCE=TRANS to RESOURCE=XTRAN and XPCT.
users were unexpectedly permitted access to resources using   

EXEC CICS QUERY SECURITY RESTYPE(TRANSACTION)

The validation that occurs with this request is for XPCT resources and not XTRN resources.
The permissions occurred because the XPCT rules were more open that the XTRAN resources.

The query command needed to be changed to RESTYPE(TRANSATTACH) - 
which is the RESTYPE resource for XTRAN resources.

Powered by Wolken Software