A fix is available
APAR status
Closed as program error.
Error description
Incorrect non-compliant findings for RACF-ES-000380. This occurs for SMF dump or backup tape files which span multiple tape volumes, because the RACF_PROFILE field is empty for all but the first tape volume.
Local fix
N/A
Problem summary
**************************************************************** * USERS AFFECTED: Users of zSecure Audit exploiting the * * RACF-ES-000380 compliance rule set, and * * newlist types DSN/SENSDSN. * **************************************************************** * PROBLEM DESCRIPTION: zSecure Audit compliance rule set * * RACF-ES-000380 (IBM RACF must limit * * access to data sets used to back up and * * dump SMF collection files to * * appropriate users and batch jobs that * * perform SMF dump) might report false * * non-compliant findings. * **************************************************************** * RECOMMENDATION: Apply the PTF provided. * **************************************************************** zSecure Audit compliance rule set RACF-ES-000380 (IBM RACF must limit access to data sets used to back up and dump SMF collection files to appropriate users and batch jobs that perform SMF dump) might report false non-compliant findings for tape files which span multiple tape volumes, because the RACF_PROFILE field is empty for all but the first tape volume.
Problem conclusion
zSecure Audit as been modified, so that it handles tape files which span multiple tape volumes correctly, the RACF_PROFILE field is filled in for all tape volumes, and the RACF-ES-000380 compliance rule set does not report false non-compliant findings.
Temporary fix
Comments
APAR Information
APAR number
OA65146
Reported component name
ZSEC BASE,ADMIN
Reported component ID
5655T0100
Reported release
250
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2023-07-05
Closed date
2023-07-21
Last modified date
2023-08-01
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
UJ93260
Modules/Macros
CKRVCONF GKRVCONF
Fix information
Fixed component name
ZSEC BASE,ADMIN
Fixed component ID
5655T0100
Applicable component levels
R250 PSY UJ93260
UP23/07/22 P F307
Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSPQTM","label":"IBM Security zSecure Admin"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"250","Line of Business":{"code":"LOB24","label":"Security Software"}}]
Document Information
Modified date:
01 August 2023