Authorization checking during profile recovery

When a DFSMShsm-authorized user issues a RECOVER or HRECOVER command, no security checking is performed. If the recover request originates with a non-DFSMShsm-authorized user, the recover is done with the user’s ACEE, which is a control block for RACF®. DFSMShsm informs RACF that security checking is to be done, and the recover request fails if RACF determines that the user is not authorized to create a discrete profile for the data set.

Parent topic: Recovering or restoring RACF-indicated data sets