ACFRPTRV can automatically trace each access that a specific user makes to a resource. If you specify the TRACE attribute in a user’s logonid record, CA ACF2 Option for DB2 generates an SMF record for each access the user makes to a resource. CA ACF2 Option for DB2 can generate multiple SMF records if the access is also a violation or is logged. (Remember, however, that CA ACF2 Option for DB2 records the access when the logonid is validated. This means that CA ACF2 Option for DB2 creates the SMF record when the plan is bound, not when the resource is accessed. See the note above.) In addition, you can use TRACE to determine why a user cannot access a resource. By setting TRACE in a logonid, ACFRPTRV generates trace records for all accesses required to use a resource. With these records, you can determine which rules you must write to grant access.
|
Copyright © 2011 CA Technologies.
All rights reserved.
|
|