Question:
After following the documented procedure to set up the CA CSM Userid for RACF without UID(0), the MSMTC task is failing with this error upon startup:
ICH408I USER(MSMUSR) GROUP(MSMGRP) NAME(MSM STC USERID)
CL(MSOBJ)
INSUFFICIENT AUTHORITY TO MOUNTSETUID
EFFECTIVE UID(000000027) GID(0000000277)
Did I miss something?
Answer:
To ensure that CA CSM can run without a UID(0), the following requirements need to be met:
Once the prerequisites are met, and the installation of CA CSM is complete, follow these steps for RACF:
chown -R CA_CSM_USER_ID MSMPATHchgrp -R CACSMGRP MSMPATHchown -R CA_CSM_USER_ID MountPathchgrp -R CACSMGRP MountPathchown -R CA_CSM_USER_ID RunTimeUSSPathchgrp -R CACSMGRP RunTimeUSSPath
where MSMPATH, MountPath, and RunTimeUSSPath are values that are referenced in the MSMSetupOptionsFile.properties file.
Note: When you issue the commands for RunTimeUSSPath, the following message can appear:
EDC5129I No such file or directory
This message is issued against the ioeagfmt file and does not affect command completion in any way. You can ignore this message.
Important! Also, issue these commands after you run the MSMDEPLY job.
BPX.CONSOLE UPDATEBPX.SERVER UPDATEBPX.FILEATTR.APF READBPX.FILEATTR.PROGCTL READBPX.FILEATTR.SHARELIB READ
SUPERUSER.FILESYS.CHANGEPERMS READSUPERUSER.FILESYS.MOUNT UPDATESUPERUSER.FILESYS.PFSCTL READ
EZB.FTP READEZB.STACKACCESS READ
chown -R CA_CSM_USER_ID MountPathchgrp -R CACSMGRP MountPath
where MountPath is a value that is referenced in the MSMSetupOptionsFile.properties file
Additional Information:
The steps detailed above are found in the following documentation: