Hello,
We have 3 system in plex and out of three systems, two are
running with z/OS 1.11 and one with z/OS 1.13. commands ( whoami ,id )
running on z/OS 1.11 running fine but on z/OS 1.13 system OMVS, these
command giving bad output.
I tried checking RLIST UNIXMAP U12345 ALL on z/OS 1.13 and found below
thing.
CLASS NAME
----- ----
UNIXMAP U12345
LEVEL OWNER UNIVERSAL ACCESS YOUR ACCESS WARNING
----- -------- ---------------- ----------- -------
00 VENKAT9 NONE NONE NO
INSTALLATION DATA
-----------------
NONE
APPLICATION DATA
----------------
NONE
SECLEVEL
--------
NO SECLEVEL
CATEGORIES
----------
NO CATEGORIES
SECLABEL
--------
NO SECLABEL
AUDITING
--------
FAILURES(READ)
NOTIFY
------
NO USER TO BE NOTIFIED
CREATION DATE LAST REFERENCE DATE LAST CHANGE DATE
(DAY) (YEAR) (DAY) (YEAR) (DAY) (YEAR)
------------- ------------------- ----------------
347 13 347 13 347 13
ALTER COUNT CONTROL COUNT UPDATE COUNT READ COUNT
----------- ------------- ------------ ----------
000000 000000 000000 000000
USER ACCESS ACCESS COUNT
---- ------ ------ -----
VENKAT NONE 000000
ID ACCESS ACCESS COUNT CLASS ENTITY NAME
-------- ------- ------------ --------
---------------------------------------
NO ENTRIES IN CONDITIONAL ACCESS LIST
On Sun, Dec 15, 2013 at 3:29 PM, Robert S. Hansel (RSH) <
[email protected]> wrote:
> Venkat,
>
> Does this system have its own RACF database or does it share its database
> with other systems? If it shares its database, do commands like id display
> properly on those other systems?
>
> What is the AIM level of this database? Run the following job to find out.
> //jobname JOB (account),'username',CLASS=x,MSGCLASS=x
> //STEP EXEC PGM=IRRIRA00
> //SYSPRINT DD SYSOUT=*
>
> If AIM is at level 0 or 1, is the UNIXMAP class active? Check SETROPTS
> LIST. If it is active, are there any UNIXMAP profiles? Execute SEARCH
> CLASS(UNIXMAP) to find out. Specifically, is there a profile U12345 in
> which your USERID is in the access list? Execute RLIST UNIXMAP U12345 ALL
> to check.
>
> Regards, Bob
>
> Robert S. Hansel
> Lead RACF Specialist
> RSH Consulting, Inc.
> 617-969-8211
> www.linkedin.com/in/roberthansel
> http://twitter.com/RSH_RACF
> www.rshconsulting.com
> ---------------------------------------------------------------------
> 2013-2014 RACF Training
> - Audit & Compliance Roadmap - Boston - APR 22-25, 2014
> - Intro & Basic Admin - WebEx - FEB 3-7, 2014
> - Intro & Basic Admin - WebEx - JUN 9-13, 2014
> - Securing z/OS UNIX - WebEx - MAR 4-7, 2014
> ---------------------------------------------------------------------
>
> -----Original Message-----
> Date: Sun, 15 Dec 2013 09:35:30 +0530
> From: venkat kulkarni <[email protected]>
> Subject: Re: OMVS UID display
>
> Issue is only with this LPAR. I tried checking on other LPAR, all are fine.
>
>
>
>
> On Sun, Dec 15, 2013 at 9:04 AM, venkat kulkarni <
> [email protected]
> > wrote:
>
> > This issue is not with single user. I am facing this with all RACF users.
> >
> >
> >
> > On Sun, Dec 15, 2013 at 9:02 AM, Jon Perryman <[email protected]
> >wrote:
> >
> >> I think that the first user assigned to OMVS UID 12345 was deleted, or
> >> it's OMVS segment was deleted or it was assigned to a new UID. My
> >> suggestion is that you modify the user to which you want displayed.
> >>
> >> Jon Perryman.
> >>
> >> >________________________________
> >> > From: venkat kulkarni <[email protected]>
> >> >
> >> >
> >> >Hello,
> >> > I have RACF id associated with all UID and this problem is
> with
> >> >all users anf getting *"Error for uid".*
> >> >I tried with many of the RACF user having diff access level and getting
> >> >same issue even with UID 0 . I really don't think that my RACF is
> >> corrupted.
> >> >
> >> >
> >> >Is there any other possibility. Who am i command gives me
> >> >RACFID@SYSNAME. I tried looking at many of the manual for this error
> >> >but somehow failed.
> >> >Still looking into maual.
>
> ----------------------------------------------------------------------
> For IBM-MAIN subscribe / signoff / archive access instructions,
> send email to [email protected] with the message: INFO IBM-MAIN
>
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
