Authorization failures and error messages

If a terminal user tries to initiate an unauthorized transaction, CICS® issues a security violation message (DFHAC2033) to the terminal.

CICS then sends a corresponding message (DFHAC2003) to the CSMT transient data destination, and a DFHXS1111 message to CSCS. RACF® normally issues an ICH408I message to the CICS region's job log and to the security console (the console defined for routing code 9 messages). However, if the transaction has been defined to RACF with LOG(NONE), no ICH408I message is issued. For a description of the ICH408I message, see z/OS Security Server RACF Messages and Codes.

For more information on resolving authorization problems, see Problem determination in a CICS-RACF security environment.

If auditing (such as that requested by the AUDIT operand) is requested for this access, RACF writes an SMF type 80 log record. Your RACF auditor can use the RACF report writer to generate reports based on these records. For more information, see the z/OS Security Server RACF Auditor's Guide .