Does the use of RULEVLD on a logonid with SECURITY impact the ability to compile a CA ACF2 dataset access rule?
search cancel

Does the use of RULEVLD on a logonid with SECURITY impact the ability to compile a CA ACF2 dataset access rule?

book

Article ID: 52385

calendar_today

Updated On:

Products

ACF2 ACF2 - DB2 Option ACF2 for zVM ACF2 - z/OS ACF2 - MISC PanApt PanAudit

Issue/Introduction

Description:

RULEVLD only applies for data set access, and is not involved with administrative rule maintenance.

RULEVLD means that a data set access rule must allow access to the data set even if the user (logonid) has the SECURITY privilege. RSRCVLD is the equivalent for resource rules when the user (logonid) has SECURITY.

Solution:

RULEVLD does not impact the ability to write and store data set access rule. RSRCVLD does not impact the ability to write and store resource rules.

Use SCOPE records to control (limit) the ability of administrators to maintain data set access rules and/or resource rules.

Environment

Release:
Component: ACF2MS
Powered by Wolken Software