This check is provided to warn users that basic security setup has not been performed to protect their assets on tape. This exposure is associated with the setting of the CA 1 System Option FUNC, which controls the security check to be done in the real-time nonresident (foreign) and label processing areas. The default interval for this check is run once at startup and the exception interval is every 24 hours.
CA recommends that tape resources be properly protected by setting the CA 1 System Option FUNC to YES or EXT and setting up rules in the external security system to control access. This check generates an exception when FUNC is set to NO which indicates that any user job reading a tape as a foreign tape (EXPDT=98000) and specifying a data set name that matches on the last 17 characters of the DSN, can access data on the tape.
This check does not accept any parameters.
Yes
Yes
For more information, see Function Call Processing (FUNC) and related information in the Programming Guide
TMSH0011E Your CA 1 security options allow unauthorized users to access privileged tape data that they would otherwise be unable to access. Any user specifying EXPDT=98000 can access any tape and read or update it. For more information, see the Message Reference Guide.
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|