Controlling the invocation of data reduction exit routines

RMF™ controls the names of the data reduction exit routines that are provided by callers of RMF Monitor II Sysplex Data Gathering service ERB2XDGS or Monitor III Sysplex Data Retrieval service ERB3XDRS. Invocation of these exit routines is controlled in the following ways:

• If an authorized caller is running in supervisor state, in system state, or APF authorized, then it can use trusted exit names.
• If an unauthorized caller specifies untrusted but approved exit names, then you can specify the following access controls:
  1. Define the RACF® resource profile ERBSDS.MON2EXIT.<exit_name> to the class FACILITY. The use of the data reduction exit routine with the name specified with <exit_name> will be restricted to those ERB2XDGS callers who have been authorized to this RACF resource profile.
  2. Define the RACF resource profile ERBSDS.MON3EXIT.<exit_name> to the class FACILITY. The use of the data reduction exit routine with the name specified with <exit_name> will be restricted to those ERB3XDRS callers who have been authorized to this RACF resource profile.
• If an unauthorized caller specifies untrusted exit names that are not approved, then the ERB2XDGS service as well as the ERB3XDRS service provide return code 16 and reason codes 86 or 87, and RACF issues message ICH408I indicating the exit name that caused the security violation.

For more information about the involved RMF sysplex data services and the description of their return an reason codes, refer to z/OS RMF Programmer's Guide.