I wonder if the idea of UADS is a false sense of security anymore.... Don’t get me wrong, we still maintain one here with a few id's in it. But with no active security database, IPLing would be tough. How would any UNIX task be assigned a UID/GID, etc. No unix, no TCPIP. The only conceivable scenario might be if the database was wiped out while the system was running?
_________________________________________________________________ Dave Jousma Manager Mainframe Engineering, Assistant Vice President [email protected] 1830 East Paris, Grand Rapids, MI 49546 MD RSCB2H p 616.653.8429 f 616.653.2717 -----Original Message----- From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf Of John Eells Sent: Wednesday, January 24, 2018 10:08 AM To: [email protected] Subject: Re: ServerPac z/OS 2.3 **CAUTION EXTERNAL EMAIL** **DO NOT open attachments or click on links from unknown senders or unexpected emails** John Eells wrote: > Barbara Nitz wrote: <snip> >> And I just discovered that SYS1.UADS is in SMPE, but was NOT restored >> by serverpac, same as sys1.Auads. In my thinking it would have been >> fine to not have a sys1.uads *at all*, but to have it in the SMPE >> environment but not on the restored volumes is bad. How do I know if >> there will be maintenance to it when it will not find anything? >> > > > The only part of this I'll comment on is whether or not one should > have a UADS data set at all. > > I will assert one should, purely for recovery purposes in case the > security database and its backup must be restored. In a very > restrictive networking environment, one can log on with UADS to > recover the security DB from backups, and re-IPL with normal security > immediately afterward. > > Just my two cents. > OK, I lied. I will comment on something else. (I had a few minutes to check on things.) IBMUSER0 is packaged as a MAC part shipped in AUADS and UADS in HTE77B0, so both of them should be there and contain that member. If one or both data sets are missing from your z/OS ServerPac, please open a PMR. -- John Eells IBM Poughkeepsie [email protected] ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN **CAUTION EXTERNAL EMAIL** **DO NOT open attachments or click on links from unknown senders or unexpected emails** This e-mail transmission contains information that is confidential and may be privileged. It is intended only for the addressee(s) named above. If you receive this e-mail in error, please do not read, copy or disseminate it in any manner. If you are not the intended recipient, any disclosure, copying, distribution or use of the contents of this information is prohibited. Please reply to the message immediately by informing the sender that the message was misdirected. After replying, please erase it from your computer system. Your assistance in correcting this error is appreciated. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
