Migration Information › External Security SAF Exits

External Security SAF Exits

The following changes have been made to SAF exits and entities.

• The sample SAF exits SAFSECX and JSPLSECX are no longer supported.
  • If you made no modifications other than coding the entity class name, do the following task:

    Specify the SAF Entity Class Name in the External Security Section of the GLOBAL group in internal security.

  • If you modified the sample exits do the following task:

    Call the new sample exit shell provided in the member SAFSAMPX of the CNM4BSAM SMP/E target library exit before SAF.

• Access to entity SV.SAF no longer determines whether SAF is active.

  To determine whether SAF is active, a RACROUTE REQUEST=STAT call is done internally. If SAF is not available, access is granted to only users in the ADMIN group.

• The SV.AET and SV.AETLIMIT entities are no longer reviewed to determine the use of access tables.

  The Access Entity Table Size now verifies the use of access tables. The Access Entity Table Size entity is in the External Security section of the user internal security group.

• The SV.SCC entity is no longer verified to determine whether SAF statistics performed a WTO when the user terminates their session.

  SAF statistics now display in the user SESSION_LOGOFF audit record.