Technote (troubleshooting)
Problem(Abstract)
I have done all the security setup pertaining to EZBDOMAIN and EZB.IOCTL.*.*.PARTNERINFO and despite that the SIOCGPARTNERINFO with PI_REQTYPE_PARTNER_USERID returns EPERM NOT
OWNER.
Resolving the problem
| PI_REQTYPE_PARTNER_USERID (X'01') is specified as input to SIOCGPARTNERINFO to request connection routing information and the partner user ID. |
For "EPERM NOT OWNER", it could be one of 2 problems:
(1) Incorrect definition of RACF for EZBDOMAIN:
Issue the following RACF command to display defined ezbdomain:
rl servauth ezbdomain
For EZBDOMAIN, both partner connections have to be defined before bringing up TCPIP stacks. Assume both partner connections are in different stacks. If the partner connections are in the same stack,TCPIP will not check the security for it.
Define security product authority for the profile EZBDOMAIN in the SERVAUTH class within the sysplex that is to use trusted TCP connections. Specify the same security domain name in the APPLDATA field.
RDEFINE SERVAUTH EZBDOMAIN APPLDATA('security_domain_name')
(2) RACF was not correctly defined for EZB.IOCTL.*.*.PARTNERINFO:
Use the following RACF command to ensure that RACF is defined correctly:
rl servauth EZB.IOCTL.*.*.PARTNERINFO
Rate this page:
Average rating
Copyright and trademark information
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.