>Hi: > >We currently have our VTAMLST libraries protected with UACC(READ). IBM >suggests UACC(NONE) for them (RACF Security Administrator Guide, apendix D- >Security for system datasets) . I want to make the change, but of course i >know i must be extremely carefull with this change. I need to detect all users >needing read access to VTAMLST. Human users are not my problem, my worry is >about non-human ones (users of system tasks, started tasks, etc.). > >What users need read access of VTAMLST? >Does any userid associated with a VTAM application need to read VTAMLST? > >Thanks in advance for your help, > >Juan Mautalen >
Juan, I might put an audit on the file. Then you could see who accessed it. I can say that VTAM, TPX, and a few other things might need READ access. I know as a sysproc, I would need UPDATE authority to make changes. Lizette ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
