During recovery, DFSMShsm makes a first authorization check against the original profile. If it cannot find either a generic profile or a discrete profile for a cataloged data set that was RACF-indicated at the time of backup or recovery, DFSMShsm determines whether a backup profile exists. If a backup profile exists, DFSMShsm makes a second authorization check with the backup profile name. If the second authorization check fails, the recovery fails.
When DFSMShsm is the data mover, a new RACF® access control environment element (ACEE) is created that describes the user’s RACF status. This ACEE exists for the duration of the cataloging operation and is effective only for the recovery task. After the cataloging operation has completed, DFSMShsm removes the ACEE.
For a non-VSAM data set, DFSMSdfp catalog management is invoked to catalog the data set. DFSMSdfp does its own security checking of the requester against the catalog using this ACEE. If security checking against the catalog fails for lack of correct authority, DFSMShsm sets a return code to reflect the failure of the catalog operation. RACF issues messages describing the reasons for denying access to the catalog.
For a VSAM data set, a new RACF ACEE is created when the target data set of the Access Method Services IMPORT has not been cataloged at the start of the recovery operation. This ACEE is effective for the duration of DFSMShsm’s invocation of Access Method Services to perform the IMPORT operation. DFSMSdfp catalog management will use this ACEE to verify the requester’s authority to catalog the data set. If the catalog operation fails, the IMPORT fails and generates an appropriate return code. RACF issues messages describing the reasons for denying access to the catalog.
When DFSMSdss is the data mover, the authorization process is the same, except that DFSMSdss does the cataloging.