Reports for RACF

RSMP

SYS1.SVCLIB

SYS1.**

RSMP

AZF.SAZFLOAD

AZF.**

RSMP

CBC.SCLBDLL

CBC.**

RSMP

CBC.SCLBDLL2

CBC.**

SYSTEM

System ID from which the record was written

DATASET NAME

Name of the data set

PROTECTING PROFILE

RACF profile that protects the data set

RSMP

SYS1.LINKLIB.EXITS

SYS1.**

LINK

RSMP

USER.LINKLIB

USER.**

LINK

RSMP

SYS1.SIEALNKE

SYS1.**

LINK

RSMP

SYS1.SIEAMIGE

SYS1.**

LINK

SYSTEM

System ID from which the record was written

DATASET NAME

Name of the data set

PROTECTING PROFILE

Non-fully qualified generic RACF profile that is protecting the data set

DATASET TYPE

Type of sensitive data set being reported on, such as APF or Link

RSMP

CICSTS52.CICS.SDFHAUTH

CICSTS52.**

Read

APF

RSMP

CICSTS52.CICS.SDFHLIC

CICSTS52.**

Read

APF

RSMP

CICSTS52.CICS.SDFJAUTH

CICSTS52.**

Read

APF

RSMP

CICSTS52.CPSM.SEYUAUTH

CICSTS52.**

Read

APF

SYSTEM

System ID from which the record was written

DATASET NAME

Name of the data set

PROTECTING PROFILE

Non-fully qualified generic RACF profile that is protecting the data set

UACC

Universal ACCess of the sensitive data set

DATASET TYPE

Type of sensitive data set being reported on, such as APF or Link

RSMP

SYS1.LINKLIB

SYS1.LINKLIB

Read

APF

RSMP

AZF.SAZFLOAD

AZF.**

Read

APF

RSMP

CBC.SCLBDLL

CBC.**

Read

APF

RSMP

CBC.SCLBDLL2

CBC.**

Read

APF

SYSTEM

System ID from which the record was written

DATASET NAME

Name of the data set

PROTECTING PROFILE

Non-fully qualified generic RACF profile that is protecting the data set

ID(*)

Default access for defined users

DATASET TYPE

Type of sensitive data set being reported on, such as APF or Link

RSMP

ISVR.RSS.LOADLIB

ISVR.RSS.**

APF

RSMP

ISVR.RSS.SSPR.V2R1M0.RSMLOAD

ISVR.RSS.**

APF

RSMP

ISVR.RSS.VIA.V2R1M0.RSMLOAD

ISVR.RSS.**

APF

RSMP

ISVR.RSS.V2R1M0.RSMLOAD

ISVR.RSS.**

APF

SYSTEM

System ID from which the record was written

DATASET NAME

Name of the data set

PROTECTING PROFILE

RACF profile that is protecting the data set

DATASET TYPE

Type of sensitive data set being reported on, such as APF or Link

RSMP

ISVR.CA.SYSVIEW.V15R00.CNM4BLOD

ISVR.CA.SYSVIEW.**

APF

RSMP

ISVR.COMPWARE.CPWR.MPAA170.SPAAAUTH

ISVR.COMPWARE.**

APF

RSMP

ISVR.COMPWARE.CPWR.MKAZ170.SKAZAUTH

ISVR.COMPWARE.**

APF

RSMP

ISVR.COMPWARE.CPWR.MKFX171.SKFXAUTH

ISVR.COMPWARE.**

APF

SYSTEM

System ID from which the record was written

DATASET NAME

Name of the data set

PROTECTING PROFILE

RACF profile that is protecting the data set

DATASET TYPE

Type of sensitive data set being reported on, such as APF or Link

RSMP

SYS1.SVCLIB

SYS1.**

-/R

APF

RSMP

CBC.SCLBDLL

CBC.**

-/R

APF

RSMP

CBC.SCLBDLL2

CBC.**

-/R

APF

RSMP

CSF.SCSFMOD0

CSF.**

-/R

APF

SYSTEM

System ID from which the record was written

DATASET NAME

Name of the data set

PROTECTING PROFILE

RACF profile that is protecting the data set

AUDIT S/F?

Audit successes and failures

The audit levels can have the following values:

• - (not set)
• R (READ)
• U (UPDATE)
• C (CONTROL)
• A (ALTER)

For example, U/R is equal to Success(Update)/Failures(Read).

DATASET TYPE

Type of sensitive data set being reported on, such as APF or Link

RSMP

ISVR.RSS.SUE.QA.TEST

ISVR.RSS.SUE.**

TISV08

29/01/2019

1900-01-00

Y

Y

Y

Read

Read

N

Y

R/R

APF

RSMP

TSGNJC.TEST.XMIT

TSGNJC.TEST.**

TTSO01

16/01/2019

16/01/2019

Y

Y

Y

None

N

N

-/R

APF

SYSTEM

System ID from which the record was written

DATASET NAME

Name of the data set

PROTECTING PROFILE

RACF profile that is protecting the data set

VOLUME

Volume Serial number

CREATION DATE

Date of data set creation

REFERENCED DATE

Date last referenced

CATALOGED?

Whether the data set is cataloged

SMS?

Whether the data set SMS is controlled

APF?

APF Library Indicator

UACC

Universal ACCess for undefined user IDs

ID(*)

Default access for defined user IDs

FULLY QUALIFIED GENERIC?

FQG indicator

WARNING?

Whether the profile has the WARNING attribute

AUDIT S/F

Audit successes and failures

The audit levels can have the following values:

• - (not set)
• R (READ)
• U (UPDATE)
• C (CONTROL)
• A (ALTER)

For example, U/R is equal to Success(Update)/Failures(Read).

DATASET TYPE

Type of sensitive data set being reported on, such as APF or Link

RSMP

CATALOG.CICS.UCAT.Z210

CATALOG.**

CPWRK3

18/12/2014

06/02/2019

Y

None

Read

N

N

0

-/R

UCAT

RSMP

CATALOG.EXPRESS.SMPE.UCAT

CATALOG.**

SYS001

11/02/2019

12/02/2019

Y

None

Read

N

N

0

-/R

UCAT

RSMP

CATALOG.FDRPAS.SHARED

CATALOG.**

IODF01

17/11/2017

06/02/2019

Y

None

Read

N

N

0

-/R

UCAT

RSMP

CATALOG.IMS.USER

CATALOG.**

PTSG06

11/12/2015

06/02/2019

Y

None

Read

N

N

0

-/R

UCAT

SYSTEM

System ID from which the record was written

DATASET NAME

Name of the data set

PROTECTING PROFILE

RACF profile that is protecting the data set

VOLUME

Volume serial number

CREATION DATE

Date of data set creation

REFERENCED DATE

Date last referenced

CATALOGED?

Whether the data set is cataloged or not

SMS?

Whether the data set SMS is controlled

APF?

APF library indicator

UACC

Universal ACCess for undefined user IDs

ID(*)

Default access for defined user IDs

FULLY QUALIFIED GENERIC?

FQG indicator

WARNING?

Whether the profile has the WARNING attribute

LEVEL

Data set level

AUDIT S/F

Audit successes and failures

The audit levels can have the following values:

• - (not set)
• R (READ)
• U (UPDATE)
• C (CONTROL)
• A (ALTER)

For example, U/R is equal to Success(Update)/Failures(Read).

DATASET TYPE

Type of sensitive data set being reported on, such as APF or Link

RSMP

12/02/2019

13:37:46

REXXBAT

Unknown

CONSOLE

CONS

SETPROG APF,ADD,DSN=ISVR.RSS.QA.ZDT.RSMLOAD,VOL=NC3998

System Command

RSMP

12/02/2019

13:37:45

REXXBAT

Unknown

CONSOLE

CONS

SETPROG APF,ADD,DSN=ISVR.RSS.QA.ZDT.RSMLOAD,VOL=NC3997

System Command

RSMP

12/02/2019

13:37:44

REXXBAT

Unknown

CONSOLE

CONS

SETPROG APF,ADD,DSN=ISVR.RSS.QA.ZDT.RSMLOAD,VOL=NC3996

System Command

RSMP

12/02/2019

13:37:43

REXXBAT

Unknown

CONSOLE

CONS

SETPROG APF,ADD,DSN=ISVR.RSS.QA.ZDT.RSMLOAD,VOL=NC3995

System Command

SYSTEM

System ID from which the record was written

DATE

Date the command was executed

TIME

Time the command was executed

USERID

User ID that issued the command

NAME

Name of the user, if available

FROM

Where the command was entered

EVENT

Internal event type or SMF Event and Event Qualifier

Event refers to the SMF Event/Code Qualifier documented in the IBM SMF manuals, or CONS for a command entered at the system console.

COMMAND

Command that was entered

DETAILS

Internal event type

RSMP

14/02/2019

12:15:59

AUSER

Fred Smith

A05TCP45

1800

SETROPTS command

SETROPTS RACLIST(XFACILIT) REFRESH

RSMP

14/02/2019

12:14:15

BUSER

Dave Jones

A05TCP57

1800

SETROPTS command

SETROPTS GENERIC(DATASET) REFRESH

RSMP

14/02/2019

12:11:29

CUSER

Bert Williams

A05TCP34

1800

SETROPTS command

SETROPTS RACLIST(STARTED) REFRESH

RSMP

14/02/2019

12:09:23

DUSER

Tina Brown

A05TCP19

1800

SETROPTS command

SETROPTS RACLIST(OPERCMDS) REFRESH

SYSTEM

System ID from which the record was written

DATE

Date the command was executed

TIME

Time the command was executed

USERID

User ID that issued the command

USER NAME

Name of the user, if available

PORT OF ENTRY

Where the command was entered

EVENT

Internal event type or SMF event and event qualifier

Event refers to the SMF event/code qualifier documented in the IBM SMF manuals, or CONS for a
command entered at the system console.

DESCRIPTION

Command that was entered

COMMAND IMAGE

Internal event types

RSMP

14/02/2019

12:15:59

AUSER

Fred Smith

A05TCP45

1800

SETROPTS command

SETROPTS RACLIST(XFACILIT) REFRESH

RSMP

14/02/2019

12:14:15

BUSER

Dave Jones

A05TCP57

1800

SETROPTS command

SETROPTS GENERIC(DATASET) REFRESH

RSMP

14/02/2019

12:11:29

CUSER

Bert Williams

A05TCP34

1800

SETROPTS command

SETROPTS RACLIST(STARTED) REFRESH

RSMP

14/02/2019

12:09:23

DUSER

Tina Brown

A05TCP19

1800

SETROPTS command

SETROPTS RACLIST(OPERCMDS) REFRESH

SYSTEM

System ID from which the record was written

DATE

Date the command was executed

TIME

Time the command was executed

USERID

User ID that issued the command

USER NAME

Name of the user, if available

PORT OF ENTRY

Where the command was entered

EVENT

Internal event type or SMF event and event qualifier

Event refers to the SMF event/code qualifier documented in the IBM SMF manuals, or CONS for a
command entered at the system console.

DESCRIPTION

Command that was entered

COMMAND IMAGE

Internal event types

OPERCMDS

MVS.SET.PROG.**

Modify APF Libraries

CLASS

RACF class

PROFILE

OPERCMDS profile

PURPOSE

Purpose of the RACF profile

RECOMMENDED

BMC recommendations

FACILITY

STGADMIN.ADR.CONVERTV

Convert VTOC to SMS

Require READ access to use. Restrict access to this

FACILITY

STGADMIN.ADR.COPY.BYPASSACS

Copy data sets bypassing ACS routines

Require READ access to use. Restrict access to this

FACILITY

STGADMIN.ADR.COPY.INCAT

INCAT processing

Require READ access to use. Restrict access to this

FACILITY

STGADMIN.ADR.COPY.PROCESS.SYS

Copy SYS1 data sets

Require READ access to use. Restrict access to this

CLASS

RACF class

PROFILE

STGADMIN profile

PURPOSE

Purpose of the RACF profile

RECOMMENDED

BMC recommendations

UNIXPRIV

SUPERUSER.IPC.RMID

Release IPC resources (ipcrm)

Require READ access to use. Limit to UNIX processes/debuggers

UNIXPRIV

SUPERUSER.PROCESS.KILL

Issue kill to processes

Require READ access to use. Limit to UNIX processes/debuggers

UNIXPRIV

SUPERUSER.PROCESS.PTRACE

Use ptrace through dbx debugger

Require READ access to use. Limit to UNIX processes/debuggers

UNIXPRIV

SUPERUSER.SETPRIORITY

Increase own priority

Require READ access to use. Limit to Storage Admin Group

CLASS

RACF class

PROFILE

UNIXPRIV profile

PURPOSE

Purpose of the RACF profile

RECOMMENDED

BMC recommendations

FACILITY

STGADMIN.IDC.DIAGNOSE.CATALOG

Run DIAGNOSE command against catalogs

Require READ access to use. Restrict access to this

FACILITY

STGADMIN.IDC.DIAGNOSE.VVDS

DIAGNOSE command against a VVDS

Require READ access to use. Restrict access to this

FACILITY

STGADMIN.IDC.EXAMINE.DATASET

Allows use of the IDCAMS EXAMINE command

Require READ access to use. Restrict access to this

FACILITY

STGADMIN.IGG.ALTER.SMS

Allows Storage Class or Management Class to be altered

Require READ access to use. Restrict access to this

CLASS

RACF class name

PROFILE

RACF profile

PURPOSE

Profile purpose

RECOMMENDED

BMC recommendations

XFACILIT

C4R.EXEMPT

Allows certain users to be exempt from policy enforcement

If you are installing Command Verifier for the first time, ensure that 1 or 2 users are permitted

XFACILIT

C4R.USER.ATTR.AUDITOR.**

Prevents system AUDITOR from being granted to users

Very few users should have this access

Set default universal access authority (UACC) to NONE.

XFACILIT

C4R.USER.ATTR.OPERATIONS.**

Prevents system OPERATIONS from being granted to users

Very few users should have this access

Set UACC to NONE.

XFACILIT

C4R.USER.ATTR.SPECIAL.**

Prevents system SPECIAL from being granted to users

Very few users should have this access

Set UACC to NONE.

CLASS

Class name to which the profile belongs

CV Profile

Command verifier profile

Purpose

Profile owner

Recommended

BMC recommendations for this setting

FACILITY

IRR.DIGTCERT.**

Set UACC/ID(*) to NONE. READ allows users to issue the RACDCERT commands for themselves, UPDATE for others and CONTROL for SITE and CERTAUTH certificates

FACILITY

IRR.DIGTCERT.CHECKCERT

Set UACC/ID(*) to NONE. READ allows users to issue the RACDCERT commands for themselves, UPDATE for others and CONTROL for SITE and CERTAUTH certificates

CLASS

RACF class

MISSING PROFILE

Missing RACF profile

RECOMMENDED SETTING

BMC recommended profile

FACILITY

IRR.DIGTCERT.*

TSGDL

None

N

/R

0

FACILITY

IRR.DIGTCERT.ADD

TSGCG

None

N

/R

R

0

7

FACILITY

IRR.DIGTCERT.ADDRING

TSGCG

None

N

/R

R

0

7

FACILITY

IRR.DIGTCERT.ALTER

TSGCG

None

N

/R

R

0

7

CLASS

RACF class

PROTECTING PROFILE

RACF profile

OWNER

Profile owner

UACC

RACF universal ACCess setting

WARNING?

Whether the WARNING attribute is on

AUDIT S/F

Audit successes and failures

The audit levels can have the following values:

• - (not set)
• R (READ)
• U (UPDATE)
• C (CONTROL)
• A (ALTER)

For example, U/R is equal to Success(Update)/Failures(Read).

ID(*)

Default access for the profile

LEVEL

Resource level

ACL COUNT

Number of users on the access list

DIGTCERT

00.CN=RSMP?TEST.T=RSS.OU=RSM?PARTNERS?LTD.O=RSM.L=STOKE?POUND.SP=BROMSGROVE.C=GB

106

01/06/2019

DIGTCERT

01.CN=RSMP?TEST.T=RSS.OU=RSM?PARTNERS?LTD.O=RSM.L=STOKE?POUND.SP=BROMSGROVE.C=GB

106

01/06/2019

DIGTCERT

4AA7268B.CN=CA?Receive?Order.OU=CA?Receive?Order

207

10/09/2019

DIGTCERT

00.CN=CKNCA.OU=ZSECURE.O=IBM.C=US

349

30/01/2020

CLASS

RACF class

PROFILE

Profile name

REMAINING

Number of days until the certificate expires

EXPIRY DATE

Certificate expiry date

DIGTCERT

01.CN=Root?CA?Test.OU=Technology.O=Test.L=Glasgow.SP=Scotland.C=GB

-99

07/11/2018

DIGTCERT

35DEF4CF.OU=Equifax?Secure?Certificate?Authority.O=Equifax.C=US

-176

22/08/2018

DIGTCERT

01A3.CN=GTE?CyberTrust?Root.O=GTE?Corporation.C=US

-4739

23/02/2006

DIGTCERT

03.CN=GTE?CyberTrust?Root.O=GTE?Corporation.C=US

-4792

01/01/2006

CLASS

RACF class

PROFILE

Profile name

DAYS

Number of days after the certificate expired

EXPIRED DATE

Date the certificate expired

CICSTS55

CONFDATA

Show

HIDETC

Determines whether user data to appear in traces or dumps. This data could be used to penetrate the system.

Default is SHOW. This may have SOX implications

CICSTS55

CONFTXT

No

Yes

Determines whether user data to appear in traces or dumps. This data could be used to penetrate the system.

Default is NO VTAM can trace user data.

CICSTS55

GMTRAN

CESN

CSGM

Specifies the initial transaction that will be executed.

Default is CSGM. Specify an ATI transaction that will be run.

CICSTS55

SECPRFX

No

Yes

This parameter allows for segregation of access to separate regions. CICS will prefix all resource names with the CICS userid ID when talking to the ESM

YES is generally recommended if multiple CICS systems are running.

Region

CICS region name

Setting

System name

Current

Current value

Recommended

BMC recommended value

Purpose

Description of the purpose of the setting

Notes

Supplementary notes regarding the BMC recommendation

Region

IMS region name

Setting

System name

Current

Current value

Recommended

BMC recommended value

Purpose

Description of the purpose of the setting

Notes

Supplementary notes regarding the recommendation

System

System name where the DB2 region is running

Region

Db2 region name

Setting

System name

Current

Current value

Recommended

BMC recommended value

Purpose

Description of the purpose of the setting

Notes

Supplementary notes regarding the recommendation

System

System name where the MQ region is running

Region

MQ region name

Setting

System name

Current

Current value

Recommended

BMC recommended value

Purpose

Description of the purpose of the setting

Notes

Supplementary notes regarding the recommendation

RSMP

CICSTS51

AIEXIT

DFHZATDX

RSMP

CICSTS51

APPLIDG

A05CICS1

RSMP

CICSTS55

APPLIDG

A

SYSTEM

System name where the CICS region is running

REGION

CICS region name

PARAMETER

SIT initialization parameter

CURRENT SETTING

Current setting

SYSTEM

System name where the IMS region is running

REGION

IMS region name

PARAMETER

SIT initialization parameter

CURRENT SETTING

Current setting

SYSTEM

System name where the IMS region is running

REGION

IMS region name

PARAMETER

SIT initialization parameter

CURRENT SETTING

Current setting

RSMN

QCBAMSTR

ACTIVE

Yes

RSMN

QCBAMSTR

ACTIVE

No

RSMN

QCBAMSTR

ACTIVE

No

RSMN

QCBAMSTR

ACTIVE

No

SYSTEM

System name where the MQ region is running

REGION

MQ region name

PARAMETER

Parameter name

CURRENT SETTING

Current setting

DIGTCERT

023456.CN=GeoTrust?Global?CA.O=GeoTrust?Inc..C=US

TSGAT

T

N

/

0

21/05/2002

21/05/2022

FACILITY

AOPADMIN

IBMUSER

N

N

/R

0

1

FACILITY

AP

#OPSMVS

N

N

/R

0

1

FACILITY

BPX.CONSOLE

TSGSJ

N

N

/R

0

8

CLASS

RACF class

PROFILE

RACF profile

OWNER

Profile owner

UACC

Universal ACCess for undefined user IDs

WARN

Whether the WARNING attribute is on

AUDIT S/F

Audit successes and failures

The audit levels can have the following values:

• - (not set)
• R (READ)
• U (UPDATE)
• C (CONTROL)
• A (ALTER)

For example, U/R is equal to Success(Update)/Failures(Read).

ID(*)

Default access for defined user IDs

LEVEL

The level from the RACF profile definition

# ON ACL

Number of users on the access list (ACL)

CERT START

Start date if a certificate

CERT END

End date if a certificate

DIGTCERT

00.CN=CKNCA.OU=ZSECURE.O=IBM.C=US

TSGTS

T

N

/

0

24/05/2018

30/01/2020

FACILITY

AOPADMIN

IBMUSER

N

N

/R

0

1

FACILITY

AP

#OPSMVS

N

N

/R

0

1

FACILITY

BPX.CONSOLE

TSGSJ

N

N

/R

0

8

CLASS

RACF class

PROFILE

RACF profile

OWNER

Profile owner

UACC

Universal ACCess for undefined user IDs

WARN

Whether the WARNING attribute is on

AUDIT S/F

Audit successes and failures

The audit levels can have the following values:

• - (not set)
• R (READ)
• U (UPDATE)
• C (CONTROL)
• A (ALTER)

For example, U/R is equal to Success(Update)/Failures(Read).

ID(*)

Default access for defined user IDs

LEVEL

Level from the RACF profile definition

1. ON ACL

Number of users on the access list (ACL)

CERT START

Start date if a certificate

CERT END

End date if a certificate

GLOBAL

DATASET

&RACUID.**

A

GLOBAL

DATASET

SYS1.**

R

GLOBAL

DATASET

SYS1.HELP

R

GLOBAL

DATASET

SYS1.MARK

R

CLASS

RACF class – GLOBAL

PROFILE

RACF profile type

ENTRY

Global table entry member

ACCESS

Global access:

• A (ALTER)
• R (READ)

RSMP

EPWINIT

SYSTEM

System name

PROGRAM

Program that has NOPASS in the PPT

RSMP

AZFSTCMN

2

RSMP

BNJLINTX

8

RSMP

BPEINI00

7

RSMP

BPXBATA2

2

SYSTEM

System name

PROGRAM

Program name in the PPT

KEY

MVS storage protect key that the program runs under and has been defined in the MVS PPT

RSMP

PASSWORD

INTERVAL

30

90

Number of days before user must change password (1-254).

Specify as PASSWORD( INTERVAL(nn)). nn should be <=90

RSMP

PASSWORD

MINCHANGE

0

1

Number of days before user can change password again (0-254).

Specify as PASSWORD(MINCHANGE(nn)). nn should be >=1

RSMP

SETROPTS

APPLAUDIT

NOAPPLAUDIT

APPLAUDIT

Enables auditing of APPC transactions

Set as APPLAUDIT

RSMP

SETROPTS

GENERICOWNER

NOGENERICOWNER

GENERICOWNER

Restricts creation of more specific undercutting profiles

Specify GENERICOWNER

SYSTEM

System LPAR name

TYPE

Setting type

Type is either 'SETROPTS', 'PASSWORD', 'SMF' or 'SYSTEM' and
denotes the category of the setting that has been misconfigured.

SETTING

Setting name

CURRENT VALUE

Current value of the setting from storage

RECOMMENDED

Recommended setting

DESCRIPTION

Description of the setting

NOTES

Notes and recommendations

RSMN

PASSWORD

HISTORY

6

RSMN

PASSWORD

INTERVAL

30

RSMN

PASSWORD

MINCHANGE

0

RSMN

PASSWORD

MIXEDCASE

MIXEDCASE

SYSTEM

System name

TYPE

Setting type

SETTING

Setting name

CURRENT VALUE

Current value of the setting from storage

LPAR1

BPXAS.*

OMVSKERN

OMVSGRP

LPAR1

FTPD.*

FTPD

LPAR2

TCPIP.*

TCPIP

OMVSGRP

Yes

LPAR3

TN3270.*

TN3270

OMVSGRP

Yes

System name

PROFILE

Started task profile name

STUSER

Started task user IDs associated with the profile

STGROUP

Started task group associated with the profile

PRIVILEGED

Whether the task is privileged

TRUSTED

Whether the task is trusted

TRACED

Whether the task is traced

RSMP

RSSTAM

RSMP

CICSTS42

SYSTEM

System name

JOB NOT RUNNING

Name of the monitored job that appears not to be running

AUSER

Tina Smith

GRPAUSR

Y

1

4

BUSER

Fred Brown

GRPAUSR

1

2

CUSER

Ann Williams

GRPAUSR

3

6

DUSER

Dave Jones

GRPAUSR

Y

2

2

USERID

User ID

NAME

Associated name, if available

DEFAULT GROUP

User ID default group

SPECIAL

Whether the user has the SPECIAL attribute set

OPERATIONS

Whether the user has the OPERATIONS attribute set

PASSWORD SECURITY LEVEL

Type of weak password detected

Contact BMC Support for details.

GENERATIONS

Number of passwords in the password history

You can also show if the account has ever been used.

AUSER

Austin Smith

#RSM

Y

Y

BUSER

George Brown

#RSM

Y

Y

Y

CUSER

Janet Williams

#RSM

Y

Y

Y

DUSER

Mary White

#RSM

Y

Y

Y

USERID

User ID

NAME

Associated name, if available

DEFAULT GROUP

User ID's default group

SPECIAL

Whether the user has the SPECIAL attribute set

OPERATIONS

Whether the user has the OPERATIONS attribute set

AUDITOR

Whether the user has the AUDITOR attribute set

BATCH01

BATCH PROCESSING

SYS1

Y

RSS

RSS STARTED TASK

#RSM

Y

Y

AUSER

Bert Wilson

#RSM

Y

Y

Y

BUSER

Fredda Mayflower

#RSM

Y

Y

Y

USERID

User ID

NAME

Associated name, if available

DEFAULT GROUP

User ID's default group

SPECIAL

Whether the user has the SPECIAL attribute set

OPERATIONS

Whether the user has the OPERATIONS attribute set

AUDITOR

Whether the user has the AUDITOR attribute set

AUSER

Ernie Brown

#RSM

BUSER

Phill Smith

#RSM

Y

CUSER

Joe Smith

#RSM

Y

DUSER

Sue Wilson

#RSM

Y

Y

Y

USERID

User ID

NAME

Associated name, if available

DEFAULT GROUP

User ID's default group

SPECIAL

Whether the user has the SPECIAL attribute set

OPERATIONS

Whether the user has the OPERATIONS attribute set

AUDITOR

Whether the user has the AUDITOR attribute set

ADCDMST

ADCD MASTER

SYS1

BATCH01

BATCH PROCESSING

SYS1

Y

BPXOINIT

BPXOINIT

SYS1

AUSER

Brian Small

#RSM

Y

USERID

User ID

NAME

Associated name, if available

DEFAULT GROUP

User ID's default group

SPECIAL

Whether the user has the SPECIAL attribute set

OPERATIONS

Whether the user has the OPERATIONS attribute set

AUDITOR

Whether the user has the AUDITOR attribute set

ADCDMST

ADCD MASTER

SYS1

17-Oct-12

2311

ADCDN

ADCDN

TEST

06-Nov-08

3752

ADCDO

ADCDO

TEST

06-Nov-08

3752

ADCDP

ADCDP

TEST

06-Nov-08

3752

USERID

User ID

NAME

Associated name, if available

DEFAULT GROUP

User ID's default group

SPECIAL

Whether the user has the SPECIAL attribute set

OPERATIONS

Whether the user has the OPERATIONS attribute set

AUDITOR

Whether the user has the AUDITOR attribute set

LAST CONNECT DATE

Date the user last connected

NOT USED X DAYS

Number of days since last use

USERID

User ID, IBMUSER

NAME

Associated name, if available

DEFAULT GROUP

IBMUSER's default group

SPECIAL

Whether the user has the SPECIAL attribute set

OPERATIONS

Whether the user has the OPERATIONS attribute set

AUDITOR

Whether the user has the AUDITOR attribute set

LAST CONNECT DATE

Date the IBMUSER last connected

NOT USED X DAYS

Number of days since last use

AUSER

June Smith

PMIUSER

Y

13-Mar-13

2164

BUSER

Peter Brown

PMIUSER

Y

20-Oct-10

3039

CUSER

Charlie White

#RSM

Y

26-Jun-18

233

DUSER

John Wilson

#RSM

Y

26-Jun-18

233

USERID

User ID

NAME

Associated name, if available

DEFAULT GROUP

User ID's default group

SPECIAL

Whether the user has the SPECIAL attribute set

OPERATIONS

Whether the user has the OPERATIONS attribute set

AUDITOR

Whether the user has the AUDITOR attribute set

LAST CONNECT DATE

Date the user last connected

NOT USED X DAYS

Number of days since last use

AUTALERT

AUTOOPERATOR

INGAUTO

TSGTS

30

11-Oct-16

0

0

AUTOMATION AUTOTASK: USED FOR ALERT BASED NO

BLZ400

DSN PROFILE ID

#RSM

#RSM

30

27-Mar-18

0

0

GENERAL DATASET PROFILE ID

BPXROOT

RUI FEIO NO 2

#RSM

#RSM

30

29-Jun-18

0

0

123456

C2PSUSE2

ZSECURE ALERT STC

SYSAUDIT

SYSAUDIT

30

13-Oct-15

0

0

USERID

User ID

DUPLICATED NAME

Name that is duplicated

DEFAULT GROUP

Default RACF group (DFLTGRP)

OWNER

Owner

PASSWORD INTERVAL

User ID's password interval

LAST USE

Date of last use

PASSWORDS IN HISTORY

Number of passwords in the password history for this user

REVOKE COUNT

Number of unsuccessful password attempts

INSTALLATION DATA

Displays any INSTDATA

DATE

Date the file transfer was run

TIME

Time the file transfer was run

SYSTEM

System the file transfer was run from

USER

User ID performing the file transfer

ACTION

Send or receive

PROGRAM

Name of the program used to transfer the file

DATASET

Name of the data set that was transferred

JOBNAME

Name of the job that ran the file transfer

APPL

FEKAPPL

TSGSJ

Read

N

/R

0

APPL

GPMSERVE

TSGSJ

Read

N

/R

0

APPL

GPM4CIM

TSGSJ

Read

N

/R

0

CSFSERV

CSF%%C

TSGMK

Read

N

/R

0

CLASS

RACF class

PROFILE

RACF Profile

OWNER

Profile owner

UACC

Universal ACCess setting for the profile

ID(*)

ID(*) setting for the profile.

WARNING

Whether the WARNING attribute is on

S/F AUDIT

Audit successes and failures

The audit levels can have the following values:

• - (not set)
• R (READ)
• U (UPDATE)
• C (CONTROL)
• A (ALTER)

For example, U/R is equal to Success(Update)/Failures(Read).

LEVEL

Profile level

ACCTNUM

ACCT#

IBMUSER

None

Read

N

/R

0

CCICSCMD

**

TSGMW

None

Read

N

/R

0

DATASET

ADCD.**

#RSM

None

Read

N

/R

0

DATASET

AFF260.**

#RSM

None