Hi Top-Secret Admins,
I'm busy to cleanup obsolet permissions and I find CLEANUP tool for eTrust Top Secret very useful for this task.
Nevertheless if a permission is not used for some time, it's not sure that the permission is not needed any more.
My consideration is, that if behind a particular (perhaps even 'masked') permission no ressource exists (any more), also the permission is very likely obsolet (except the ressource will exist (again) in the future).
For example: To check a "longer-not-used" permission to datasets, ISPF-LMDxxxx services can be used. If LMDINIT does not return datasetsname for a given pattern, this permission can be revoked with little-risk.....
Anyone able to help out Josef?