IBM Support

OA54908: INCOMPLETE ACCESS MONITOR REPORTS MIGHT BE GENERATED IN CASES WHERE A WILDCARD CLASS SELECTION FILTER IS USED.

A fix is available

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • Incomplete zSecure RACF Access Monitor reports might be
    generated in cases where a wildcard class selection filter is
    used for resource accesses controlled by the profiles in
    grouping classes.
    

Local fix

  • Use fully qualified RACF class name.
    

Problem summary

  • ****************************************************************
    * USERS AFFECTED: Users of zSecure Access Monitor function     *
    *                 exploiting interactive option AM.8.1 (Remove *
    *                 unused profiles).                            *
    ****************************************************************
    * PROBLEM DESCRIPTION: zSecure Access Monitor might generate   *
    *                      erroneous commands to remove unused     *
    *                      profiles in cases where a wildcard      *
    *                      class selection filter is specified     *
    *                      on the AM.8.1 (CKRP3AMA) panel.         *
    ****************************************************************
    * RECOMMENDATION: Apply the PTF provided.                      *
    ****************************************************************
    When a wildcard class selection filter is specified on the
    AM.8.1 (CKRP3AMA) panel, the zSecure Access monitor might
    generate commands to remove profiles that are actually used.
    This affects profiles that belong to grouping classes.
    

Problem conclusion

  • zSecure Access monitor has been modified so that the "Remove
    unused profiles" (interactive option AM.8.1) behaves properly
    in cases where a wildcard class selection filter is specified.
    

Temporary fix

Comments

APAR Information

  • APAR number

    OA54908

  • Reported component name

    ZSEC BASE,ADMIN

  • Reported component ID

    5655T0100

  • Reported release

    230

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2018-02-09

  • Closed date

    2018-02-19

  • Last modified date

    2018-03-01

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

    UA95346

Modules/Macros

  • CKRGEVL  GKRGEVL
    

Fix information

  • Fixed component name

    ZSEC BASE,ADMIN

  • Fixed component ID

    5655T0100

Applicable component levels

  • R230 PSY UA95346

       UP18/02/21 P F802

Fix is available

  • Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

[{"Business Unit":{"code":"BU048","label":"IBM Software"}, "Product":{"code":"SSCE68R","label":"zSecure Admin"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"230","Edition":""}]

Document Information

Modified date:
01 March 2018