z/OS Security Server RACF Messages and Codes
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


IRR52151I

z/OS Security Server RACF Messages and Codes
SA23-2291-00

IRR52151I
Unexpected RACROUTE REQUEST=EXTRACT error while retrieving profile profile. SAF RC = safrc, RACF RC = racfrc, RACF RSN = rsncode.

Explanation

This message gives the resulting SAF return code, a RACF® return code (SAFPRRET), and a RACF reason code (SAFPRREA). If the value of a return code or reason code is greater than X'0000FFFF', it is displayed as a hexadecimal number. If the value is less than or equal to X'0000FFFF', it is displayed as a decimal number.

This message can be issued in the following situations:

  • If the message indicates a USER, GROUP, CONNECT, or STARTED profile, the message is issued when an RDEFINE or RALTER command specifies the STDATA segment. An unexpected error occurred from a RACROUTE REQUEST=EXTRACT macro that was used to retrieve information for the STDATA segment.
  • If you modified DCE, OMVS, or OVM information in a user profile, the DCE, OMVS, or the OVM segment of the RACF profile changed but the corresponding update in the DCEUUIDS, UNIXMAP, or VMPOSIX class for the user or group profile did not occur. RACF attempted to retrieve the information from the profile specified in the message text but has encountered an error.
  • If you modified LNOTES, NDS, or KERB information in a USER profile, the LNOTES, NDS, or KERB segment of the profile changed but the corresponding NOTELINK, NDSLINK, or KERBLINK mapping class profile was not updated. RACF attempted to retrieve the LNOTES, NDS, or KERB information from the profile specified in the message text but has encountered an error.
  • If the message indicates a profile in the CDT class, the message is issued when an RDEFINE or RALTER command specifies the CDTINFO segment. An unexpected error occurred from a RACROUTE REQUEST=EXTRACT macro that was used to retrieve information for the CDTINFO segment; some validation checking on the fields in the CDTINFO segment, therefore, cannot be completed.

System action

Command processing continues in a specific way for each of the following situations:
  • If the message indicates a USER, GROUP, CONNECT, or STARTED profile, processing of the RDEFINE or RALTER command completed successfully. Data specified for the STDATA segment was processed, along with any other data on the command.
  • If you were modifying DCE, OMVS, or OVM information in a user profile, command processing continues. However, the mapping profiles in the DCEUUIDS, UNIXMAP, or VMPOSIX class are not updated.
  • If you were modifying LNOTES, NDS, or KERB information in a user profile, command processing continues. However, the mapping profiles in the NOTELINK, NDSLINK, or KERBLINK class are not updated.
  • If the message indicates a profile in the CDT class, processing of the RDEFINE or RALTER command completed successfully. Data specified for the CDTINFO segment was processed, along with any other data on the command. The data in the CDTINFO segment, however, may contain errors.

System programmer response

Use the return code information in z/OS Security Server RACROUTE Macro Reference to determine the error condition and fix the error. If necessary, contact the IBM® support center. Tell them the command issued and the resulting return and reason codes.
  • If you were updating DCE, OMVS, or OVM information and you have corrected the error, reissue the command. As an alternative, use the RACF RALTER or RDELETE command to manually administer the DCEUUIDS, UNIXMAP, or VMPOSIX class profile that corresponds to the user profile you were changing.
  • If you were updating OMVS or OVM information in user or group profiles, you can use the RACF RDEFINE or PERMIT command to manually update the access list of the appropriate UNIXMAP or VMPOSIX class profile.
  • If you were updating LNOTES, NDS, or KERB information and you have corrected the error, reissue the command. As an alternative, try to delete the information and add it again. If the SNAME, UNAME, or KERBNAME values are in uppercase characters, use the RACF RALTER or RDELETE command to manually administer the NOTELINK, NDSLINK, or KERBLINK class profile that corresponds to the user profile you were changing. For details on the mapping profiles, see z/OS Security Server RACF Security Administrator's Guide.
  • If you were adding or updating a profile in the CDT class and you have corrected the error, issue the RALTER command with the CDTINFO keyword and no suboperands: 
    RALTER CDT profile CDTINFO
    This initiates validation checking of fields within the CDTINFO segment. You may also issue the RLIST command to examine the contents of the CDTINFO segment in the profile to ensure the field contents are correct.

User response

Report this message to the system programmer and provide the exact text of the command you issued.

Parent topic: Dynamic parse (IRRDPI00) messages

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014