Database tables and columns for RACF

BMC AMI Security Policy Manager utilizes the SQLite database engine. During startup, and after significant events, the tables are built or updated. Most of the tables are created in storage for efficiency. The tables created can be accessed by creating SQL queries. This topic describes the tables and fields that are available to SQL queries.

Most tables can be JOINed by connecting on a common field.

Table—access (expands characters for the “access” field)

Field	Format	Description	Value
access	Text	Access	N, R, U, C, A, E, T
value	Text	Full word	None, Read, Update etc.
numeric	Text	Number representing access	1=None 2=Exec 3=Read 4=Control 5=Update 6=Alter 7=Trust

Table—cdt (class descriptor table)

Field	Format	Description	Value
cdtclass	Text	Class name
cdtclsid	Text	Class id
cdtactiv	Text	Active?	Y or blank
cdtposit	Text	Posit value
cdtdfrc	Text	Default RC
cdtxref	Text	Group/Member class name
cdtmaxl	Text	Maximum length
cdtfrst	Text	1st character syntax
cdtremn	Text	Remaining characters syntax
cdtuacc	Text	Default UACC	N, R, blank
cdtmflg	Text	Misc flags
cdtflg0	Text	Flag 0
cdtflg1	Text	Flag 1
cdtlogo	Text	(SPE2104) LOGOPTIONS for that class	Value is either blank, or A-Always N-Never S-Success F-Failures
cdtgencm	Text	(SPE2104) GENCMD for that class	Value is either blank or Y to indicate that GENCMD is active for that class
cdtgenls	Text	(SPE2104) GENLIST for that class	Value is either blank or Y to indicate that GENLIST is active for that class

Table—cfield (custom field values)

(SPE2301)

Where more than one Security Policy Manager instance is running in a sysplex that shares the same RACF database, the product sychronizes the Security Policy Manager databases. For example, if an ALTUSER command is entered on one LPAR, a change message is sent via XCF to Security Policy Manager instances on different LPARs that share the RACF database. The change message notifies the other Security Policy Manager instances to refresh the database for that user, group, or profile.

Field	Format	Description	Value
system	Text	System from which the custom field was retrieved
user	Text	User ID to which a user custom field belongs (for backward compatibility)
name	Text	Same as user, the profile name to which the custom field belongs
class	Text	Class name	DATASET, GROUP, RESOURCE, USER
type	Text	Custom field type	CHAR, NUM, FLAG, HEX
key	Text	Custom field name
value	Text	Custom field value

Click here to see the columns before SPE2301.

(Before SPE2301) Table—cfield (custom field values)

Field	Format	Description
user	Text	User ID
type	Text	Custom field type
key	Text	Custom field key
value	Text	Value of custom field

Table—cics

Field	Format	Description	Value
system	Text	System name
jobname	Text	CICS region name
type	Text	Entry type	CICS (SPE2204) DSN
parm	Text	Parameter	CICS - cicsParameter DSN - ddName (STEPLIB or DFH*)
value	Text	Parameter value	CICS - cicsParameterValue DSN - dataSetName

Table—clauth

Field	Format	Description	Value
clauuser	Text	Class Auth user ID
clauname	Text	Class Auth Name

Table—command (commands from SMF type 80)

Field	Format	Description	Value
system	Text	System name
date	Text	Command date	yyyy-mm-dd
time	Text	Command time	hh:mm:ss
user	Text	Command user ID
name	Text	User ID Name
portofentry	Text	Port of entry	Console/Terminal name
event	Text	SMF event code or CONS	CONS or xxyy
desc	Text	Description
command	Text	Command entered

Table—config

Field	Format	Description	Value
system	Text	LPAR name
type	Text	Entry type	SYSTEM, SETROPTS, PASSWORD (SPE2104) SMF, DISA (SPE2110) USS (SPE2201) CONSOLE, TSO, CNGRP
parm	Text	Parameter	DISA - CLASSIFIED PASSWORD - ALGORIGHM, HISTORY, INTERVAL, MINCHANGE, MIXEDCASE, REVOKE, RULE1, SPECIALCHARS, WARNING SETROPTS - ACTIVE, ADDCREATOR, ADSP, APPLAUDIT, CATDSNS, CMDVIOL, DASDVOLAUDIT, DATASETAUDIT, EGN, ERASE, GENERICOWNER, GROUPAUDI, GRPLIST, INACTIVE, INITSTATS, JES(BATCHALLRACF), JES(EARLYVERIFY), JES(XBMALLRACF), MODEL, NJEUSERID, OPERAUDIT, PREFIX, PROTECTALL, RCVTINPW, RCVTSWPW, REALDSN, RETPD, SAUDIT, SESSIONINTERVAL, STATISTICS, TAPEDSN, TAPEVOLAUDIT, TERMINAL, TERMINALAUDIT, UNDEFINEDUSER, USERAUDIT, WHEN(PROGRAM) SMF - ACTIVE, INTVAL, JWT, MAXDORM, MEMBER, MEMLIMIT, SID, STATUS, STC, STCDETAIL, STCINTVAL, STCTYPES, SWT, SYNCVAL, SYS, SYSDETAIL, SYSINTVAL, SYSTYPES, TSO, TSODETAIL, TSOINTVAL, TSOTYPES, TWT SYSTEM - ALLOWUSERKEYCSA, AUTHTSF, ESM, (SPE2110) IPLDATE, (SPE2110) IPLTIME USS - STARTUPPROC, STEPLIBLIST, SUPERUSER, TTYGROUP, USERIDALIAS CONSOLE - MCS TSO - UADS CNGRP - GROUPNAME
value	Text	Parameter value	DISA - CLASSIFIED - YES \| NO SYSTEM - ESM - RACF \| TSS \| ACF2 SETROPTS - REALDSN - ACTIVE \| INACTIVE SETROPTS - RCVTINPW, RCVTSWPW - encryptedPasswordValue CONSOLE - MCS - attributesOfMasterConsole TSO - UADS - useridFromSYS1.UADS CNGRP - GROUPNAME - member

Examples:

Type=DISA, parm=CLASSIFIED, value=YES | NO
The value indicates whether this instance should be treated as a classified system. This field can be queried by a compliance query. Manually set these values in the configuration member, in the SPMParms block.
Type=SYSTEM, parm=ESM, value=RACF | TSS | ACF2
The value indicates the external security manager. This field can be queried by a compliance query.
Type=SYSTEM, parm=IPLDATE, value=yyyy-mm-dd
The value indicates the date of last IPL.
Type=SYSTEM, parm=IPLTIME, value=hh:mm:ss
The value indicates the time of last IPL.
Type=SETROPTS, parm=RCVTSWPW, value=encryptedPasswordValue
The value indicates the encrypted value of the RVARY switch password. The default is all zeroes.
Type=SETROPTS, parm=RCVTINPW, value=encryptedPasswordValue
The value indicates the encrypted value of the RVARY inactivate password. The default is all zeroes.
Type=SETROPTS, parm=REALDSN, value=ACTIVE | INACTIVE
Type=CONSOLE, parm=MCS, value=attributesOfMasterConsole
Value examples: NAME(BMC23700) STATUS(ACT-BMC2) AUTH(MASTER) DEV(3700) LOGON(OPTIONAL) USERID(N/A) ROUT(ALL)

Table—conn (group connects)

Field	Format	Description	Value
cguser	Text	Connect Group user
cggrpnm	Text	Connect Group name
cgauthda	Text	Date user connected	yyyy-mm-dd
cgauthor	Text	Connect Group owner
cgljtime	Text	Time of request=verify	hh:mm:ss
cgljdate	Text	Date of request=verify	yyyy-mm-dd
cguacc	Text	Connect Group default UACC
cgflag1	Text	X'80' = group ADSP
cgflag2	Text	X'80' = group SPECIAL
cgflag3	Text	X'80' = group OPERATIONS
cgflag4	Text	X'80' = group REVOKE
cgflag5	Text	X'80' = group GRPACC
cgnotuac	Text	Termina UACC
cggrpaud	Text	X'80' = group AUDIT
cgrevkdt	Text	Revoke date or null
cgresmdt	Text	Resume date or null

Table—console

(SPE2201)

Field	Format	Description	Value
name	Text	Console name
stflg	Single hexadecimal digit	Status flag
status	Text	Representation of stflg with Y or N corresponding to 0 or 1 For example, X'F0' is YYYYNNNN.	Status bit settings: 80: active 40: pending 01: inactive
key	Text	User-assigned key
sysnm	Text	System name
rtflg	Single hexadecimal digit	Routing flag
routing	Text	Representation of rtflg with Y or N corresponding to 0 or 1 For example, X'F0' is YYYYNNNN.	Routing bit settings: 40: hc 20: auto 10: monitor job names 08: monitor status 04: monitor sessions 02: MSCOPE=ALL 01: n mscope data available
domflg	Single hexadecimal digit	DOM settings
dom	Text	Representation of domflg with Y or N corresponding to 0 or 1 For example, X'F0' is YYYYNNNN.	DOM bit settings: 80: DOM=ALL 40: DOM=NORMAL 20: DOM=NONE
mlvlflg	Single hexadecimal digit	MLVL flags, a single hexadecimal digit
mlvl	Text	Representation of mlvlflg with Y or N corresponding to 0 or 1 For example, X'F0' is YYYYNNNN.	MLVL bit settings: 80: display WTORs 40: display immediate action messages 20: display critical eventual action messages 10: display eventual action messages 08: display informational messages 04: display broadcast messages
authflg	Single hexadecimal digit	Console AUTH settings, a single hexadecimal digit
auth	Text	Representation of authlflg with Y or N corresponding to 0 or 1 For example, X'F0' is YYYYNNNN.	AUTH bit settings: 80: SYS authority 40: IO authority 20: CONS authority 10: MASTER authority
terminal	Text	Eight-character terminal name
jobnm	Text	Eight-character job name
rout	Text	Route codes for this console	All, None, or specific codes as a 16-character hexadecimal value

Table—db2

Field	Format	Description	Value
system	Text	System name
jobname	Text	DB2/MQ region name
type	Text	Entry type	DB2 or MQ
parm	Text	DB2/MQ Parameter
value	Text	Parameter value

Table—digtnmap

(SPE2204)

The DIGTNMAP table stores values from the DIGTNMAP class.

Field	Format	Description	Value
profile	Text	Profile name
owner	Text	Profile owner
user	Text	User ID or criteria-filter name
status	Text	Status	T=Trust
label	Text	lcertificates label
idn	Text	Issuer's distinguished name
sdn	Text	Subject's distinguished name

Table—groups

Field	Format	Description
groupname	Text	Name of the RACF group
owner	Text	Group owner
supgroup	Text	Superior group
numsubgroups	Text	Number of sub groups
numusers	Text	Number of connected users
crdate	Text	Group creation date
instdata	Text	Group installation data
gid	Text	OMVS group id
univflg	Text	Universal group?
uacc	Text	Group Uacc
notermuacc	Text	Group has Notermuacc?
aclcnt	Text	Number of users on the ACL

Table—group_access

Field	Format	Description	Value
groupname	Text	Group Name
id	Text	U
access	Text	Access	N, R, U, C, A, E, T

Table—ims

Field	Format	Description	Value
system	Text	System name
jobname	Text	IMS region name
type	Text	Entry type	IMS
parm	Text	IMS Parameter
value	Text	Parameter value

Table—login (password failures from SMF type 80)

Field	Format	Description	Value
system	Text	System name
date	Text	Command date	yyyy-mm-dd
time	Text	Command time	hh:mm:ss
user	Text	Command user ID
name	Text	User ID name
portofentry	Text	Port of entry	Terminal name
event	Text	SMF event	xxyy
desc	Text	Description

Table—modules

(SPE2201)

The modules table stores all load module details from all APF libraries as long as the Security Policy Manager started task user ID has ESM access to open the APF data set and read the directory. An authorization check is performed before an attempt is made to read the directory.

Field	Format	Description	Value
System	text	LPAR name where the APF library resides
Dataset	text	APF data set name
Name	text	APF module name
Aliasof	text	Root member if directory entry is an alias
Size	text	Size of the load module
Amode	text	AMODE of the load module	24, 31, 64, or ANY
Rmode	text	RMODE of the load module	24 or ANY
TTR	text	Hex TTR address of the load module
Rent	text	RE-ENTRANT attribute	Y or N
Reus	text	RE-USABLE attribute	Y or N
Refr	text	REFRESHABLE attribute	Y or N
Ovly	text	OVERLAY attribute	Y or N
Sctr	text	SCATTER attribute	Y or N
AC	text	Auth code	00 or 01

Table—mqqmgr

The mqqmgr table stores all parameters related to all active queue managers running on the system.

Field	Format	Description
system	Text	LPAR name on where the MQ queue manager is active
QMNAME	Text	Four-character MQ queue manager name
parm	Text	Parameter
value	Text	Parameter value

Table—mqqueue

(SPE2204)

The mqqueue table stores all parameters related to a specific queue manager. All the parameters are those displayed by the DISPLAY QUEUE(*) ALL command.

Field	Format	Description
system	Text	LPAR name on where the MQ queue manager is active
QMNAME	Text	Four-character MQ queue manager name
QUEUE	Text	Full name of the MQ queue
parm	Text	Parameter
value	Text	Parameter value

Table—ppt (program properties table)

Field	Format	Description	Value
system	Text	System
program	Text	PPT Program name
key	Text	Execution Key	1-15
nocancel	Text	Nocancel attribute?	Y or blank
noswap	Text	Noswap attribute?	Y or blank
priv	Text	Privileged?	Y or blank
syst	Text	SYST	Y or blank
nodsi	Text	PPT NODSI	Y or blank
nopass	Text	PPT NOPASS	Y or blank
nreglimit	Text	NoRegLimit	Y or blank
spref	Text	PPT Spref	Y or blank
lpref	Text	PPT Lpref	Y or blank
nopref	Text	PPT Nopref	Y or blank
origin	Text	Origin	Default PARMLIB
date	Text	Unused
time	Text	Unused

Table—profile

Field	Format	Description	Value
class	Text	Class name	For example, DATA SET
profile	Text	RACF profile	For example, SYS1.**
owner	Text	Profile owner	For example, SYS1
uacc	Text	Universal Access	N, R, U, C, A, E, T
warn	Text	WARN bit on	Y or blank
audit	Text	Profile is audited	Y or blank
idstar	Text	ID(*) access	N, R, U, C, A, E, T
level	Text	Profile level	1-99
aclcnt	Text	Number of users on the ACL
startdate	Text	Profile Start Date (certificates)	yyyy-mm-dd
enddate	Text	Profile End Date (certificates)	yyyy-mm-dd
appldata	Text	Profile APPLDATA

Table—profile_access

Field	Format	Description	Value
class	Text	Profile Class
profile	Text	Profile Name
id	Text	ACL user ID
access	Text	Access	N, R, U, C, A, E, T

Table—profile_members

Field	Format	Description	Value
class	Text	Profile Class
profile	Text	Profile Name
member	Text	Profile member
access	Text	Access	N, R, U, C, A, E, T

Table—sens (sensitive data sets)

Field	Format	Description	Value
apf	Text	Is APF authorized?	Y or blank
audit	Text	Profile audit settings	Success/Failures
cat	Text	Is data set cataloged?	Y or blank
cdate	Text	Creation Date	yyyy-mm-dd
dsn	Text	Sensitive Data set Name
fqg	Text	Fully Qualified Generic data set?	Y or blank
idstar	Text	ID(*) access	N, R, U, C, A, E, T
level	Text	Profile level	1-99
profile	Text	Protecting profile
rdate	Text	Last reference date	yyyy-mm-dd
sms	Text	Is SMS managed?	Y or blank
system	Text	LPAR Name of Reporting system
type	Text	Data set type	ACS, APF, CSF, DUMP, ESMC, HFS, IODF, IPL, JES2, LINK, LPA, MCAT, PAGE, PARM, RACF, SMF, SMS, TFS, UADS, UCAT, USER, VIO, ZDT, ZFS (SPE2110) PSWD, REXX, VTAM For a description of each type of data set, see the Data set type descriptionstable.
uacc	Text	Data set UACC	N, R, U, C, A, E, T
volser	Text	Data set volume
warn	Text	WARN attribute?	Y or blank

Data set type descriptions

Data set type	Description
ACS	DFSMS Automatic Class Selection (ACS) routines source library
APF	Authorized program facility (APF) – authorized libraries
CSF	Cryptographic Key Data Set (CKDS)
DUMP	Dump data sets
ESMC	Potential external security manager (ESM) database copies
HFS	Hierarchical file system (HFS)
IODF	System input/output definition file (IODF) data set
IPL	IPLPARM, NUCLEUS and IMAGELIB data sets
JES2	JES2 related data sets
LINK	LINKLIST data sets
LPA	Link pack area (LPA) data sets
MCAT	Master catalog
PAGE	PAGE data set
PARM	System PARMLIB data sets
PSWD	OS PASSWORD data set Do not use this data set if an ESM is present and active on the system.
RACF	RACF Database
REXX	System REXX data sets
SMF	System management facilities (SMF) data sets
SMS	DFSMS ACS and COMMDS data sets
TFS	USS temporary file system (TFS)
UADS	User attribute data set
UCAT	User catalog
USER	USER data set specified in Security Policy Manager configuration
VIO	Virtual Input/Output (VIO) STGINDEX data set
VTAM	Virtual Telecommunications Access Method (VTAM) – related data sets
ZDT	Data sets used for Security Policy Manager configuration
ZFS	z/OS file system

Table—sens_access

Field	Format	Description	Value
profile	Text	Profile Name
id	Text	ACL user ID
access	Text	Access	N, R, U, C, A, E, T

Table—racf (commands from RACF command exit)

Field	Format	Description	Value
system	Text	System name
date	Text	Command date	yyyy-mm-dd
time	Text	Command time	hh:mm:ss
user	Text	Command user ID
portofentry	Text	Port of entry	Where command entered
rc	Text	Return code
ac	Text	Command type
type	Text	Description	01 - 16
flag1	Text	ACEE flag1	80-Special 40-ADSP 20-Operations 10-Auditor 08-Log RACF functions 04-Rsv 02-Priv STC 01-RACF defined user
flag2	Text	ACEE flag2	80-Alter auth 40-Control 20-Update 10-Read 01-None
flag3	Text	ACEE flag3	80-Acc List of Grps (0-Userid,1-Grp/Userid) 40-Racf a/s 20-Unauthenticated 10-authenticated 08-Task Level 04-INITUSP Done 02-Default UID 01-Password not required
precommand	Text	Command pre-image	Original command entered
postcommand	Text	Command post-image	Command after exit

Table—smf14 (sensitive DSN opened for read/ftp/ind$file)

Field	Format	Description	Value
system	Text	System name
date	Text	Event date	yyyy-mm-dd
time	Text	Event time	hh:mm:ss
data set	Text	Data set name
member	Text	Member Name
jobname	Text	Jobname	Terminal name
jobid	Text	JES Job id	xxyy
jobstep	Text	Job step
lpar	Text	LPAR
program	Text	Program name
user	Text	User
ddname	Text	DDNAME
recfm	Text	RECFM
lrecl	Text	LRECL
blksize	Text	BLKSIZE
volser	Text	Volser
flag1	Text	Flag byte 1
flag2	Text	Flag byte 2
SMF14RSD	Integer	Reader Date
SMV14RST	Integer	Reader Time

Table—smf15 (sensitive DSN opened for write/ftp/ind$file)

Field	Format	Description	Value
system	Text	System name
date	Text	Event date	yyyy-mm-dd
time	Text	Event time	hh:mm:ss
data set	Text	Data set name
member	Text	Member Name
jobname	Text	Jobname	Terminal name
jobid	Text	JES Job id	xxyy
jobstep	Text	Job step
lpar	Text	LPAR
program	Text	Program name
user	Text	User
ddname	Text	DDNAME
recfm	Text	RECFM
lrecl	Text	LRECL
blksize	Text	BLKSIZE
volser	Text	Volser
flag1	Text	Flag byte 1
flag2	Text	Flag byte 2
SMF15RSD	Integer	Reader Date
SMV15RST	Integer	Reader Time

Table—smf42 (pds update)

Field	Format	Description	Value
system	Text	System name
date	Text	Event date	yyyy-mm-dd
time	Text	Event time	hh:mm:ss
data set	Text	Data set name
member	Text	Member Name
memberold	Text	Previous member name	Terminal name
action	Text	Member action	ADD or DEL
user	Text	User name
jobname	Text	Jobname
stepname	Text	Step name
procname	Text	Proc Name
portofentry	Text	Port of Entry	Terminal or INTRDR
volser	Text	Volume serial
severity	Integer	Internal Security Policy Manager severity

Table—stc

Field	Format	Description	Value
profile	Text	Profile name
stuser	Text	STC user ID	yyyy-mm-dd
stgroup	Text	STC Group	hh:mm:ss
priv	Text	Priv attribute?	Yes or blank
trusted	Text	Trusted attribute?	Yes or blank
useridprotected	Text	User ID is protected?	Yes or blank
traced	Text	Traced?	Yes or blank

Table—summary

(SPE2104)

Field	Format	Description	Value
System	Text	System the compliance check was run on
Reference	Text	Reference as defined in the RULES(INDEX) data set
Rule	Text	The rule name from the RULES(INDEX) data set
ESM	Text	External security manager on the system	RACF, TSS, or ACF2
Category	Text	Defined in the RULES(INDEX) data set
Priority	Text	Defined in the RULES(INDEX) data set
Failures	Text	Number of failures discovered by the query
Lastrun	Text	The date and time the query was last run	dd mm HH:MM:SS
Lastrun	Text	The date and time the query will next run	dd mm HH:MM:SS
Description	Text	the description from the RULES(INDEX) data set

Table—tcpip

Field	Format	Description	Value
stackname	Text	TCPIP stack name
keyword	Text	TCPIP keyword	yyyy-mm-dd
value	Text	Keyword value	hh:mm:ss

Table—tcpipport

Field	Format	Description	Value
stackname	Text	TCPIP stack name
protocol	Text	Protocol	TCP or UDP
port	Text	Port number
bindaddr	Text	Bind address	Address or ANY
ipver	Text	TCPIP ipver
usage	Text	TCPIP usage
bind	Text	TCPIP bind	Y or N
saf	Text	TCPIP saf	Y or N
unrsvdeny	Text	TCPIP unrsvdeny	Y or N
unrsvsaf	Text	TCPIP unrsvsaf	Y or N
unrsvdlsn	Text	TCPIP unrsvdlsn	Y or N
unrsvdbind	Text	TCPIP unrsvdbind	Y or N
jobname	Text	Jobname using port
saf	Text	SAF name

Table—ussprocess

Field	Format	Description	Value
pid	Text	Process id	Up to here
euid	Text	Protocol	TCP or UDP
asid	Text	Port number
userid	Text	Bind address	Address or ANY
ruid	Text	TCPIP ipver
jobname	Text	TCPIP usage
jobjbni	Text	TCPIP bind	Y or N
jobjbns	Text	TCPIP saf	Y or N
egid	Text	TCPIP unrsvdeny	Y or N
rgid	Text	TCPIP unrsvsaf	Y or N
parms	Text	TCPIP unrsvdlsn	Y or N
starttime	Text	(SPE2110) Start time of the USS process	yyyy-mm-dd hh:mm:ss

Table—user

Field	Format	Description	Value
userid	Text	RACF user ID
name	Text	User's name
dfltgrp	Text	User's default group
owner	Text	User ID owner
revoked	Text	Is user ID revoked?	Y or blank
pwint	Text	Password Interval
uid	Text	USS uid
auditor	Text	Does user have AUDITOR?	Y or blank
special	Text	Does user have SPECIAL?	Y or blank
operations	Text	Does user have OPERATIONS?	Y or blank
roaudit	Text	Does user have ROAUDIT?	Y or blank
ibmuser	Text	Is this the IBMUSER account?	Y or blank
not90	Text	Is user ID unused in the last 90 days?	Y or blank
ljdate	Text	Last connect date	ddMMMyyyy
numdays	Text	Number of days since last connect
weakpswd	Text	Does the user have a weak password?	Number 1–7
protected	Text	Is the user ID protected?	Y or blank
pwdcnt	Text	Number of old passwords
uaudit	Text	Does the user have UAUDIT on?	Y or blank
restricted	Text	Is this a restricted user ID?	Y or blank
revokect	Text	Number of unsuccessful password attempts
home	Text	USS Home directory
program	Text	User ID's USS program
instdata	Text	Installation data
proc	Text	User's logon procedure
segments	Text	Segments present	T=TSO O=OMVS C=CICS S=CSDATA
creadate	Text	(SPE2104) Date the user ID was created	ddmmmyyyy
passdate	Text	(SPE2104) Date the password was last changed	ddmmmyyyy
operparm	Text	(SPE2110) Operator's command authority	MASTER, ALL, SYS, IO, CONS, INFO
cicstime	Text	(SPE2201) User's CICS timeout parameter	HH:MM HH=hours, MM=minutes

Table—ussmount

(SPE2110)

Field	Format	Description	Value
fsname	Text	USS file system DSN
fstype	Text	File system type	HFS, ZFS, TFS
rootino	Text	Root inode
fsmode	Text	File system mode	READWRITE, READONLY
security	Text	SECURITY active	Y, N
setguid	Text	SETGUID active	Y, N
muid	Text	Mounting UID
mountpoint	Text	Path name of the mount point