>You could review your SYSLOG to see what things are started before your ESM >started.
IMHO, the ESM (Enterprise Security Manager?) is started before any address space is built. The ESM is initialized as part of NIP processing. At least for RACF, don't misinterpret the non-existence of the RACF STC to mean RACF is not active. It is! >Some of these STCs are started with something like S <STC>,SUB=MSTR , so you >will not see the Owner. As I wrote, this is *not* dependent on being started with SUB=MSTR alone. If the STC registers with JESx later on, SDSF will display the owner. At least here, the RACF address space is started with "S RACF,SUB=MSTR", but SDSF happily shows the owner of the STC (and its JESx jobid). >>Again, to my limited understanding, these address spaces do not have an owner >>because they don't have a ACEE (Access Control Environment Element) pointer >>in the ASXBSENV field of the "Address Space Extension Block"; which is >>pointed to by the ASCB which describes the address space (the ASXB resides >>within the address space, not in common storage like the ASCB does). The ACEE >>is basically the information about the user from the RACF data base >>(SYS1.MACLIB(IHAACEE) describes it). This control block definitely contains >>information such as the OWNER and default connect group Ahhh, this just gave be additonal confirmation that SDSF is getting the owner information from JESx and not from instorage control blocks. The ASXB is swappable, so SDSF woud not be able to display any information from the ASXB or from pointers in the ASXB. SDSF means "Spool Display and Search Facility", so it knows very well how to read information from JES. The JCT is a JESx control block (mapped But still I'm open to be corrected if someone knows better than my guessing. >Very true. Thanks for the detailed explanation. Those address spaces are also >running with AC(1) programs, usually sitting in a LINKLIST and/or APF list, >depending on how+when they're started in the first place. STC job step programs do not need to, but can run APF authorized. They can also run in key 0-7 via SCHEDxx PPT. Those are authorized as well. -- Peter Hunkeler ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
