CA SYSVIEW Performance Management

Expand all | Collapse all

security command not auth for admin

Jump to Best Answer
  • 1.  security command not auth for admin

    Posted 10-14-2019 09:39 AM
    Hello,

    i have minor issue,

    When i want to delete something from JJOBQUE I am not authorized even that i am admin


    So i go to security panel  -> user group  -> admin -> command section   and there is Alter   NO  is it my case ? if yes how i put alter to YEs ?
    We are using RACF external security  =>  SAF Entity Class Name FACILITY



    or it can be in resource section ?

    I also tried   resource MVSCMD     - MVS and JES Commands


    but i cannot write in  "Action" line like for example  JESGROUP



    Thanks for reply

    -Br M


  • 2.  RE: security command not auth for admin

    Posted 10-14-2019 02:28 PM
    Martin,
    The SECU016E says 'Command not authorized for jobname', so it will be an action (Delete ?) in one of the definitions in the Jobnames section of security (or the equivalent external SAF call).

    ------------------------------
    Regards,
    Doug Miller
    Software Engineer
    Broadcom
    ------------------------------



  • 3.  RE: security command not auth for admin

    Posted 10-15-2019 02:57 AM
    jobname section should be ok


    Br M 



  • 4.  RE: security command not auth for admin
    Best Answer

    Posted 10-15-2019 10:23 AM
    There is also a Jobnames section in the GLOBAL security group.  If that looks ok then it must be a RACF rule that is denying it, as you said you are using external security.  Check syslog for any RACF violations (or elsewhere in RACF).

    Here is a link about enabling WARN mode for external security which will show (via WTO) all the SAF calls being made by SYSVIEW and their respective return codes.  I'd expect the failing entity to look something like SV.JOBN.xxxxxxx
    https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-mainframe-software/performance-and-storage/ca-sysview-performance-management/15-0/security/implementing-external-security-saf.html#concept.dita_d5998347b112c067d69f83a76fe2f3aca689779c_EnablingWARNMode

    If further assistance is required I'd suggest opening a support case.

    ------------------------------
    Regards,
    Doug Miller
    Software Engineer
    Broadcom
    ------------------------------