IBM Support

OA49850: NAME AND DFLTGRP FIELDS ARE NOT DISPLAYED FOR USER IDS EXPANDED BY THE 'ACL EXPLODE' COMMAND.

A fix is available

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • ACL lists generated by the 'ACL EXPLODE' primary command
    displays empty Name and DfltGrp fields for user IDs in the
    expanded ACL entries.
    

Local fix

Problem summary

  • ****************************************************************
    * USERS AFFECTED: Users of zSecure Admin/Audit for RACF        *
    *                 version 2.1.1 exploiting CONNECTS:CGREVKDT   *
    *                 and CONNECTS:CGRESMDT ID lookups and users   *
    *                 of zSecure Admin/Audit for RACF version      *
    *                 2.2.0 exploiting exploded ACLs.              *
    ****************************************************************
    * PROBLEM DESCRIPTION: zSecure Admin/Audit for RACF has the    *
    *                      following issues:                       *
    *                                                              *
    *                       - ID lookups CONNECTS:CGREVKDT and     *
    *                         CONNECTS:CGRESMDT deliver empty      *
    *                         values in version 2.1.1;             *
    *                                                              *
    *                       - exploded ACLs have empty Name and    *
    *                         DfltGrp fields in version 2.2.0;     *
    ****************************************************************
    * RECOMMENDATION: Apply the PTF provided.                      *
    ****************************************************************
    ID lookups CONNECTS:CGREVKDT and CONNECTS:CGRESMDT generate
    empty values in zSecure Admin/Audit for RACF version 2.1.1.
    Exploded ACLs have empty Name and DfltGrp fields in zSecure
    version 2.2.0.
    

Problem conclusion

  • zSecure Admin Audit has been modified so that:
    
     - ID lookups CONNECTS:CGREVKDT and CONNECTS:CGRESMDT display
       proper values in version 2.1.1;
    
     - exploded ACLs show proper Name and DfltGrp field values in
       version 2.2.0;
    211Y
    220Y
    CKRGEVL
    

Temporary fix

Comments

APAR Information

  • APAR number

    OA49850

  • Reported component name

    ZSEC BASE,ADMIN

  • Reported component ID

    5655T0100

  • Reported release

    220

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2016-02-03

  • Closed date

    2016-02-16

  • Last modified date

    2016-03-03

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

    UA80706 UA80707

Modules/Macros

  •    CKRGEVL
    

Fix information

  • Fixed component name

    ZSEC BASE,ADMIN

  • Fixed component ID

    5655T0100

Applicable component levels

  • R211 PSY UA80706

       UP16/02/18 P F602

  • R220 PSY UA80707

       UP16/02/18 P F602

Fix is available

  • Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

[{"Business Unit":{"code":"BU048","label":"IBM Software"}, "Product":{"code":"SSCE68R","label":"zSecure Admin"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"220","Edition":""}]

Document Information

Modified date:
03 March 2016