>> For this specific case, wouldn't RACF logging of denied accesses have been >> a way to capture the data as to which job was denied access? > Good point. I'll have a look.
Unfortunately, the IEAABD.* profile had been defined with logging for successful and denied UPDATE access. Nothing was found in the RACF SMF records. From reading about the difference between READ and UPDATE permission, I was expecting this result for this case (no library with EXECUTE access involved). For those interested: I found an entry in LOGREC that matched in time and STC name (SMSVSAM). I've opened a PMR since I consider an error if a system component tries to document a problem via ABEND dump instead of an SVC dump. -- Peter Hunkeler ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
