ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

How to resolve CA JCLCheck Workload Automation error message "CAY6321W POTENTIAL SECURITY VIOLATION DETECTED 'USER SIGNON'"?

book

Article ID: 53395

calendar_today

Updated On:

Products

JCLCheck Workload Automation

Issue/Introduction

When running CA JCLCheck WA in ISPF with the SECURITY and USER(secid) option activated, an error message "CAY6321W POTENTIAL SECURITY VIOLATION DETECTED 'USER SIGNON'" is produced. This error is not produced when running CA JCLCheck WA in batch mode. The security environment is CA Top Secret.


Environment

CA JCLCheck Workload Automation release 12.0 

Resolution

The security id submitted to CA JCLCheck WA for security prevalidation must have proper TSO access authority defined to CA Top Secret. Without the proper TSO access authority, CA JCLCheck WA is unable to perform a virtual signon and will issue the above error message.

If a virtual signon is completed successfully, CA JCLCheck WA issues the following informational message: "CAY6320I USER 'secid' VIRTUAL SIGNON TO CAISSF COMPLETE".


Recommended Reading:
https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-mainframe-software/automation/ca-jclcheck-workload-automation/12-0/building/special-usage-considerations/security-prevalidation.html