Previous Topic: Running the Report Manually and Using ACFRPTSNext Topic: Sample Report

Running the Logonid Access Report (RX)ACFRPTRX Messages

ACFRPTRX Messages

The following messages are written to the report file. They do not go through the normal CA ACF2 for z/VM message routines and are not listed in the Messages Guide.

**** USER HAS ACCESS TO ALL DATA SETS AS: SE, NC
Appears

After the NAME line in DSET mode.

Means

User is an unrestricted security officer, has the NON‑CNCL attribute, or both.

**** USER HAS READ ACCESS TO ALL DATA SETS AS: RA
Appears

After the NAME line in DSET mode.

Means

User has the READALL attribute.

**** USER HAS ACCESS TO NO DATA SETS
Appears

After the NAME line in DSET mode.

Means

The user did not match any rules or %CHANGE entries and does not have any special CA ACF2 for z/VM access authority. This user cannot access any data sets.

**** USER HAS ACCESS TO ALL DATA SETS FOR THIS KEY AS: O, SC
Appears

After display of $KEY for the rule set.

Means

User’s PREFIX matched the rule key or the user’s scope matched the rule key.

**** USER HAS ACCESS TO ALL RESOURCES AS: SE, NC
Appears

After the NAME line in RSRC mode.

Means

User is an unrestricted security officer or has the NON‑CNCL attribute.

**** USER HAS ACCESS TO NO RESOURCES
Appears

After the NAME line in RSRC mode.

Means

The user did not match any rules or %CHANGE entries and does not have any special CA ACF2 for z/VM access authority. This user cannot access any resources.

**** USER HAS ACCESS TO ALL RESOURCES FOR THIS KEY AS: SC
Appears

After display of $KEY for the rule set.

Means

User’s scope matched the rule key.

**** USER CAN CHANGE RULE
Appears

After display of a %CHANGE entry.

Means

User’s UID string matched one or more masks in the %CHANGE entry that gives the user authority to change the control statements and rule entries in the rule set.

**** USER HAS %CHANGE, BUT ALSO HAS NO‑STORE
Appears

After display of a %CHANGE statement.

Means

User’s UID string matched the change mask, but the user also has the NO‑STORE attribute, preventing him from storing any changes or deleting the access or resource rule set.

**** LID:<lid> UID:<uid> * CANCELED
Appears

After LID/UID line for the user being processed.

Means

This LID/UID was canceled.

**** LID:<lid> UID:<uid> * SUSPENDED
Appears

After LID/UID line for the user being processed.

Means

This LID/UID was suspended.

**** NO LID/UID FOUND TO MATCH SYSIDLST PARMS
Appears

After display of SYSIDLST parameters.

Means

LID/UID combination not found on the SYSUT1 file.

**** USER CAN CHANGE ANY OF THE RULE ENTRIES
Appears

After display of %RCHANGE control statement.

Means

User’s UID matched one or more masks in the %RCHANGE entry that gives the user authority to change all rule entries in the rule set. However, the user cannot change any of the control statements in the rule set.