IBM® suggests that the system logger address space (IXGLOGR) be assigned privileged and/or trusted RACF® status. After assigning the system logger address space with the privileged and/or trusted status, you must restart the system logger address space for the newly assigned authorization to take effect. You can stop and restart the system logger address space with:

FORCE IXGLOGR,ARM
S IXGLOGRS

If the system logger address space for your installation is neither privileged nor trusted, make sure to give IXGLOGR the following SAF authorizations:

• Define IXGLOGR in either RACF started procedures table (SPT) or in RACF CLASS(STARTED).
• For coupling facility log streams, define alter access to RESOURCE(IXLSTR.structure_name) CLASS(FACILITY) for access to the log stream coupling facility structures.
• Define alter access to RESOURCE(hlq.data_set_name) CLASS (DATASET) for each DASD log stream and staging data set.

  Note that the RESOURCE data set could also be identified by an extended high-level qualifier, such as RESOURCE(ehlq.data_set_name).

• Define read access to RESOURCE(sys1.parmlib_data_set_name) CLASS (DATASET) for access to SYS1.PARMLIB.
• Define read access to RESOURCE(MVS.DISPLAY.LOGGER) CLASS (OPERCMDS) when an IXGCNFxx parmlib member is used during IPL or by a SET IXGCNF command, or when parmlib updates are specified on a SETLOGR command.
• Define update access to RESOURCE(MVS.TRACE.CT) CLASS (OPERCMDS) when an IXGCNFxx parmlib member with a CTRACE(parmlib_member_name) specification is used during IPL or by a SET IXGCNF command, or when the SETLOGR CTRACE command is used.

For example, in RACF issue the following command, where xxxx is a unique user ID:

ADDUSER IXGLOGR OMVS(UID(xxxx) HOME('/'))