z/OS Security Server RACF Messages and Codes
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


ICH70007I

z/OS Security Server RACF Messages and Codes
SA23-2291-00

ICH70007I
USER AUTHORITY CANNOT BE USED FOR THIRD-PARTY AUTHORIZATION CHECK FOR USER (userid) GROUP (groupid) BECAUSE THE EXECUTION NODE (nodeid) IS NOT LOCAL. UACC WILL BE USED.

Explanation

A third-party RACROUTE REQUEST=AUTH call was made specifying an execution node (nodeid). However, this execution node was not identified as a local node in the &RACLNDE profile in the RACFVARS class. The user's identity (userid) cannot be assumed to be valid at the current node, so the UACC authority for the protected resource is used. If that authority is not sufficient to allow access to the resource, message ICH408I is issued along with this message.

System action

RACF® uses the UACC authority for the protected resource.

RACF Security Administrator Response

Check to see if the execution node is supposed to be local. If it is, make sure that the node is defined to the &RACLNDE profile in the RACFVARS class. Otherwise only the UACC authority for the protected resource can be obtained.

Parent topic: RACF miscellaneous messages

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014