NOTICE: developerWorks Community will be offline May 29-30, 2015 while we upgrade to the latest version of IBM Connections. For more information, read our upgrade FAQ.
This topic has been locked.
2 replies Latest Post - 2013-03-06T13:07:45Z by SystemAdmin
Pinned topic Optim Security exit FOP2OS01
Answered question This question has been answered.
Unanswered question This question has not been answered yet.
Need help changing security exit FOP2OS01 to log RACF security calls. RACF calls from the default exit don't produce any log output. We need this for audit requirements.
Updated on 2013-03-06T13:07:45Z at 2013-03-06T13:07:45Z by SystemAdmin
Re: Optim Security exit FOP2OS012013-03-05T18:06:32Z in response to SystemAdminVernon,
Sorry for the delay in replying, hope things are well.
The FOPZOS01 exit uses a RACROUTE parameter as follows:
The ACCESS keyword behaves as follows:
The request is simply to return the user's highest current access to the resource specified. Upon successful completion, the user's access is returned in the RACF reason code. No auditing is done for this request.
The key is that no RACF auditing is done for this request. The exit does build a trace record, perhaps it can be re-routed to a file ....
Re: Optim Security exit FOP2OS012013-03-06T13:07:45Z in response to SystemAdminYes, we understand the exit can produce a trace record. But we would also like to have the exit produce a RACF log message by used a different RACROUTE. Our thinking was to add another RACROUTE for this purpose. What is your recommendation?