Hi Bob,
"... But if you want to know all the kinds of access you have, you'd
need to ask the question three or four times, for read, update, execute
and create. ..."
This statement is not true.
I published an Assembler program and a Rexx Exec here on June 14.
My program has been placed on CBT File 836 (for now, it's in the Update
section of the website).
Regards,
David
On 2020-07-07 17:45, Bob Bridges wrote:
Nothing useful to say about your first question, but about the second: I can
think of two ways to pull your access information for a list of datasets.
1) Query the system about which security app is running (RACF, ACF2 or TSS), then issue the
commands and parse the output. Display only the brief results, eg "RW" for
"read/write". I have a REXX that can tell you which security app is running, if you're
interested.
That involves a lot of coding. It might be simpler (if you can find a way to
do it) to 2) do a RACROUTE query, since that sends the question to existing
security system and returns simply 0 (access allowed), 8 (not allowed) or very
rarely 4 (can't tell). But if you want to know all the kinds of access you
have, you'd need to ask the question three or four times, for read, update,
execute and create.
And for both methods you'd have to do the query for every dataset in the list.
If you do long lists and/or do this often, it puts a burden on the system that
might get you talked about (and to) by the operations folks. Probably not a
good idea.
---
Bob Bridges, robhbrid...@gmail.com, cell 336 382-7313
/* People don't really want to go back to a time when the world was simpler.
They want to go back to a time when they didn't understand how complicated the
world has always been. */
-----Original Message-----
From: IBM Mainframe Discussion List <IBM-MAIN@LISTSERV.UA.EDU> On Behalf Of Tim
Hare
Sent: Tuesday, July 7, 2020 1:08 PM
I have some questions about the ISPF 3.4 utility.
1. Why does 'Referred' show on the "total" display for datasets, but if you
print the dataset list, you don't get it?
2. Are there ways to extend what is displayed? For one example: I would like to have
column for 'Your Access' that would show me what RACF says my access is, rather than
having to do LD DA(/) ALL GEN on a line, and "suffer" through the TSO command
output (as I've rarely worked with ACF2 and never with Top Secret I don't know if such a
request can be done for 'generic security system')
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
.
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
