TSSUTIL Utility › TSSUTIL Report Description › Security/Activity Report Legend

Security/Activity Report Legend

The Security/Activity Report Legend provides information on the data areas found on the TSSUTIL report.

The following information appears on the Security/Violation Report Legend:

DATE

The date on which the incident occurred (not sorted)

TIME

The time at which the event occurred

SYSI

System Identification (SMF ID)

ACCESSOR

The accessor security identification (ACID)

JOBNAME

The batch jobname, STC procname, or online userid

FF

Type of Facility

• B=BATCH
• C=CICSPROD
• I=IMSPROD
• K=CICSTEST
• R=ROSCOE
• S=STARTED TASK
• T=TSO
• V=VM
• M= Mode
• D=DORMANT
• F=FAIL
• I=IMPL
• W=WARN

VC

The number of violations accumulated by JOB/SESSION.

PROGRAM

The name of the program in control during the security call.

R‑ACCESS

The requested access level. An access mask is shown preceded by an '*' if the access mask represents more than one access level name.

A‑ACCESS

The allowed access level. An access mask is shown preceded by an '*' if the access mask represents more than one access level name.

SRC/DRC

Security reason code, detailed reason code:

• 00=OK
• +A=AUDIT
• B=BYPASS
• +P=PW

For resource access:

• 04 OR 08 = ACCESS DENIED

For job initiation:

• 08=PASSWORD IS INCORRECT
• 0C=PASSWORD EXPIRED
• 10=NEW PASSWORD INVALID
• 18=FAILED INST/EXIT
• 1C=ACCESS NOT AUTHORIZED
• 20=SECURITY DORMANT
• 28=OPER‑ID CARD REQUIRED
• 2C=BAD OPER‑ID CARD
• 30=TERMINAL UNAUTHORIZED
• 34=UNAUTH APPLICATN

Detailed Error Reason Codes are described on the next page of the report.

SEC

System driver issuing security check:

• ADA=DATABASE
• BLP=BLP
• CAT=CVOL/CATLG‑MNGT
• CRE=CREATE‑DSNAME
• DES=DATA ENCRYPT
• EOV=END‑VOL/OPN
• FAP=FETCH ACCESS PROTECTION
• FEV=FEOV
• HSM=HSM
• INC=RACINITC
• INI=JOB/STC/SESSION START
• INY=RACINITY
• LCF=CMD/PGM
• LKD=“AC=1”
• LST=IMS/CICS INITIATION
• OPJ=OPEN‑J
• OPN=OPEN
• REN=RENAME‑DSNAME
• SCR=DELETE‑DSNAME
• SUB=SUBMIT
• TMS=TAPE MANAGEMENT
• TRM=TERMINATION
• USS=UNIX System Services
• VFX=RACROUTE REQ=VERIFYX
• VSM=VSAM‑CATLG‑MNGT
• XX=SVC NUMBER IN HEX

RESOURCE

The type and name of the accessed resource.

         a = CA_IDMS SUBSCHEMA       U = Abstract

         b = CA‑IDMS AREA            V = Tape volume
         c = Adabas database         W = DASD volume
         d = IMS DBD                 X = Transaction
         e = JESINPUT                Y = USERn
         f = IBM Facility            Z = CICS TST
         g = TSO account number      1 = Change propagation
         h = TSO authority           2 = CA jobname
         i = TSO procedure name      3 = CA panel
         j = TSO performance group   4 = DUFXTR
         k = VAX file                5 = DUFUPD
         l = VAX device              6 = User logging
         m = VM IUCV                 7 = VM MDISK
         n = VM VMCF                 8 = VM CP CMD
         o = TSAF                    9 = VM diagnose
         p = JESPOOL                 0 = VM network
         q = JESJOBS                 * = Reserved
         r = OPERCMDS                # = VM RDR
         s = CICS CEMT SPI           % = Logging DB2 resources
         t = DEVICES (for VTAM 3.2)  $ = VM DCSS
         u = CA REPORT               @ = VM dial
         v = CA TAPE                 + = Logging installation exit call
         w = SMESSAGE (TSO/E)        = = CACMD
         x = VTAMAPPL (VTAM 3.2)     ‑ = Ca Scheduler
         y = CAADMIN                 ? = Extract
         z = CAVAPPL                 < = Operation commands
         ' = SYSCONS                 > = Owned transactions
         A = Application             . = Data set
         B = Audited job submission  / = Dasdvold
         C = Mode by user            “ = Tapevolt
         D = Data set                ! = CA Station
         E = CICS DCT                & = Recipid
         F = CICS FCT                : = Reserved
         G = Authentication call     ¢ = VMANAPPL
         H = TOTAL File              ¦ = UNVEDIT
         I = ACID xe03type           7 = UNVRPRT
         J = CICS JCT                ~ = UNVPGM
         K = Terminal unlock         , = CPU
         L = Terminal lock           | = SDSF userclass
         M = UR1                     } = VM Machine
         N = UR2                     { = IMBGROUP
         O = TSS control options     ` = PROPCNTL
         P = Program                 _ = Librarian resource CALIBMEM
         Q = CICS PPT                ; = Librarian resource CACCFMEM
         R = Database field          ¬ = Librarian resource CACCFDSN
         S = DL/1 PST                ( = SMS management class
         T = Terminal                ) = SMS storage class

JOBID

The JES2 job number:

• S=STC
• J=JOB
• T=TSO

TERMINAL

The online terminal name or JES2 Reader or remote.