Previous Topic: Familiarizing Yourself With A Selective SynchronizationNext Topic: The Best Method for Including Users

Using the Catalog Synchronization UtilityImplementation ConsiderationsFamiliarizing Yourself With A Selective SynchronizationBasic Process

Basic Process

A good way to understand a selective synchronization is to run just the CADB2SY2 program. This program processes all of the selection options and control statements, correlates the authorizations between CA ACF2 Option for DB2 and the DB2 catalog, and generates the REVOKE and GRANT statements. It provides a clearer understanding of what this process is about.

Note: We recommend that you refrain from using the CADB2SY3 program that processes the generated REVOKE and GRANT statements until you have a better understanding of the synchronization process.

The following steps outline information you need to be aware of before performing a selective synchronization.

  1. Always run with OPTIONS(TRACE) when testing. This option produces the optional trace reports that are necessary to gain an understanding of the utility.
  2. INCLUDE/EXCLUDE specific users, use the UID keyword, or use the USER keyword with masking. For the initial testing, keep the user specifications simple and to the point.
  3. INCLUDE/EXCLUDE specific resources or use masking to limit the number of resources that get synchronized.
  4. Review the reports to become familiar with the synchronization process. In particular, review the following reports:
    CADB2SCP

    Indicates which users and resources are being synchronized.

    CADB2SED

    Indicates the current authorizations the included users have for the included resources in the DB2 catalog. If you specify OPTIONS(REVOKEALL), it indicates the current authorizations for all users of all the included resources.

    CADB2SUA

    Indicates what authorizations the included users have for the included resources in CA ACF2 Option for DB2.

    CADB2SGS

    Indicates the REVOKE and GRANT statements that were generated.