Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
Return codes from the RACROUTE REQUEST=AUTH preprocessing exit z/OS Security Server RACF System Programmer's Guide SA23-2287-00 |
||||||||||||||||
When the RACROUTE REQUEST=AUTH preprocessing exit routine returns control, register 15 should contain one of the following return codes. Do not confuse these return codes with the return codes from the RACROUTE REQUEST=AUTH macro, the meanings of which are documented in z/OS Security Server RACROUTE Macro Reference. When the RACROUTE REQUEST=AUTH preprocessing exit returns a return code of 4 or 8 and the RACROUTE REQUEST=AUTH macro specified ENTITY=(entity address, CSA) or a private-area profile (see flag byte 3), the exit routine must create a profile and return the address of the profile in Register 1. The first word in the profile must contain the subpool number and the length of the profile.
Note:
RACF® uses resident profiles
in two ways:
The ICHRRPF macro maps the resident profile. z/OS Security Server RACF Data Areas contains a mapping of RRPF. If a profile is created that does not conform to the standard format, it is the responsibility of the RACROUTE REQUEST=AUTH preprocessing exit routine to ensure that RACF does not refer to that profile (that is, do not specify an exit return code of 0 if a subsequent RACROUTE REQUEST=AUTH is issued specifying the profile you built as input via the PROFILE keyword). Note, however, that RACF's caller can also examine the profile, so you should build one that has appropriate data in it or the results will be unpredictable. |
Copyright IBM Corporation 1990, 2014
|