KMOD1 DS8k box
Hello I was going through the storage usage in DS8K Gui login And I can see the utilization of CKD Pool is given as 1.99Kmod1 Is there a way to convert these value in Terabyte? Jake -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: REXX Question
I have (though not recently) written both Help dialogues in ISPF and TSO Help files, for some of the utilities I created for my employers over the years. Not sure anyone but me ever used them, though. --- Bob Bridges, robhbrid...@gmail.com, cell 336 382-7313 /* Most people who have been to school have heard the master declare that this is the worst fifth form in all his experience: most people who have been to the university have heard their tutor sigh and observe that in his youth undergraduates used to read hard, very hard, much harder than they do now. It seems to me that humanity has always been tottering on the edge of an abyss, perpetually looking back to happier generations, when people knew how to build, paint, and write, when children sat up at table, mute and never touching the back of their chairs. I view the present with distress, but not with despair. -Patrick O'Brian in an interview 1994 */ -Original Message- From: IBM Mainframe Discussion List On Behalf Of Tom Brennan Sent: Wednesday, January 18, 2023 10:59 This brings back old memories. I clicked on the "text" link on your page and it comes up with what looks like a file formatted for the tso HELP command. I barely remember the )F and other marks. )F Function to check access to RACF resource I don't think I've typed up a HELP member in 30 years. I wrote some TSO commands of course, but well, you know, HELP comes later or more likely not at all. --- On 1/18/2023 4:52 AM, Willy Jensen wrote: > For asking RACF from a REXX, check RXSAFCHK at http://harders-jensen.com. -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
LDAP with TS7700 and/or DS8K's
I saw several comments about HMC and LDAP, and I am curious is anybody using LDAP with their TS7700's or just using the management interface for authentication? I would also be curious if anybody has explored this option, or is using it on the disk side but not the tape? It seems overly complicated on the tape side, and adds another layer that we have to manage given the fact that we have to setup a separate support ID, but I could be wrong. Regards, John Benik This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or intended recipient’s authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: How to determine if Enhanced HOLDDATA received?
If you do a cross zone query against the SYSMOD name of the FMID (e.g. HRF77B0), then select the GLOBAL zone, then "L" for HOLDDATA, you will see all the SECINT class holds if they are there. If they've also received the SECINT assign statements, there will also be SYSMODs with a SOURCEID of SECINT. Regards -Original Message- From: IBM Mainframe Discussion List On Behalf Of Itschak Mugzach Sent: 18 January 2023 20:00 To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: How to determine if Enhanced HOLDDATA received? Kurt, As one the do not run apply check, how can I determine if such holddata was receive or not? I believe that second holddata is relatively rare so if one receives holddata, how can we determine the source for it? I respect the decision who can access the data, but I need to understand if the client received such holddata or not during security assessment ITschk בתאריך יום ד׳, 18 בינו׳ 2023 ב-21:34 מאת Kurt J. Quackenbush < ku...@us.ibm.com>: > HOLDDATA with CLASS(SECINT) is only available on the IBM Z Security Portal. > > Who can and cannot obtain access to the IBM Z Security Portal is > documented in this FAQ: https://ibm.biz/security-portal-faq. > > In short, from the FAQ, "the Security Portal is for IBM clients that > have a licensed IBM Z or LinuxONE mainframe. It is not intended for > users of emulators, such as zPDT, zRD&T, etc. using the z/OS ADCD or z/VM > ADCD." > So, a vendor that also has a license can obtain access. No license? > No access. And I am only a messenger on this topic. > > Kurt Quackenbush > IBM | z/OS SMP/E and z/OSMF Software Management | ku...@us.ibm.com > > Chuck Norris never uses CHECK when he applies PTFs. > > >> Do you have access to security portal? the information I am looking > >> for are only available there. I was told by IBM that as a vendor, I > >> can't get access to it. See below for details about the cvss info: > >> The HOLDDATA available from the IBM Z and LinuxONE Security Portal > >> adds a new HOLD CLASS, SECINT, and the HOLD SYMPTOMS contains the > >> CVSS Base and Temporal scores. > > > I am surprised to hear IBM would take a position like that. It seems > almost inconceivable that large vendors like BMC and Broadcom are > locked out of the Secure Portal. > > > My experience has been that an individual working for an IBM Z > > customer, > with a manager or CISO that will vouch for them, can get access. > > > > -- > For IBM-MAIN subscribe / signoff / archive access instructions, send > email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN > -- *| **Itschak Mugzach | Director | SecuriTeam Software **|** IronSphere Platform* *|* *Information Security Continuous Monitoring for Z/OS, zLinux and IBM I **| * *|* *Email**: i_mugz...@securiteam.co.il **|* *Mob**: +972 522 986404 **|* *Skype**: ItschakMugzach **|* *Web**: www.Securiteam.co.il **|* -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: How to determine if Enhanced HOLDDATA received?
I think that if there is a problem with a ptf then a holddata item be present. List some sort of error, like an abend or even just 'incorrect results in obscure cases'. On Wed, Jan 18, 2023 at 2:11 PM Gibney, Dave <03b5261cfd78-dmarc-requ...@listserv.ua.edu> wrote: > > Is it possible for a PTF to have no hold except the SECINT? That is to ask, > is it likely that a PTF introducing a security issue could be applied because > there is no HOLD(ERROR) or even a HOLD(ACTION) which could inform that there > is a SECINT for the PFT? > > > -Original Message- > > From: IBM Mainframe Discussion List On > > Behalf Of Kurt J. Quackenbush > > Sent: Wednesday, January 18, 2023 11:34 AM > > To: IBM-MAIN@LISTSERV.UA.EDU > > Subject: Re: How to determine if Enhanced HOLDDATA received? > > > > [EXTERNAL EMAIL] > > > > HOLDDATA with CLASS(SECINT) is only available on the IBM Z Security Portal. > > > > Who can and cannot obtain access to the IBM Z Security Portal is > > documented in this FAQ: > > https://urldefense.com/v3/__https://ibm.biz/security-portal- > > faq__;!!JmPEgBY0HMszNaDT!udnBZoAidHBU- > > nmJaQ0x_rAqjr3sKY3itcxgjYC4xq2ba2WcWInaZ1FXSydmPoc_MhkB6e- > > IHCxU$ . > > > > In short, from the FAQ, "the Security Portal is for IBM clients that have a > > licensed IBM Z or LinuxONE mainframe. It is not intended for users of > > emulators, such as zPDT, zRD&T, etc. using the z/OS ADCD or z/VM ADCD." > > So, a vendor that also has a license can obtain access. No license? No > > access. > > And I am only a messenger on this topic. > > > > Kurt Quackenbush > > IBM | z/OS SMP/E and z/OSMF Software Management > > | ku...@us.ibm.com > > > > Chuck Norris never uses CHECK when he applies PTFs. > > > > >> Do you have access to security portal? the information I am looking > > >> for are only available there. I was told by IBM that as a vendor, I > > >> can't get access to it. See below for details about the cvss info: > > >> The HOLDDATA available from the IBM Z and LinuxONE Security Portal > > >> adds a new HOLD CLASS, SECINT, and the HOLD SYMPTOMS contains the > > CVSS > > >> Base and Temporal scores. > > > > > I am surprised to hear IBM would take a position like that. It seems > > > almost > > inconceivable that large vendors like BMC and Broadcom are locked out of > > the Secure Portal. > > > > > My experience has been that an individual working for an IBM Z customer, > > with a manager or CISO that will vouch for them, can get access. > > > > > > > > -- > > For IBM-MAIN subscribe / signoff / archive access instructions, > > send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN > > -- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- Mike A Schwab, Springfield IL USA Where do Forest Rangers go to get away from it all? -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: How to determine if Enhanced HOLDDATA received?
Is it possible for a PTF to have no hold except the SECINT? That is to ask, is it likely that a PTF introducing a security issue could be applied because there is no HOLD(ERROR) or even a HOLD(ACTION) which could inform that there is a SECINT for the PFT? > -Original Message- > From: IBM Mainframe Discussion List On > Behalf Of Kurt J. Quackenbush > Sent: Wednesday, January 18, 2023 11:34 AM > To: IBM-MAIN@LISTSERV.UA.EDU > Subject: Re: How to determine if Enhanced HOLDDATA received? > > [EXTERNAL EMAIL] > > HOLDDATA with CLASS(SECINT) is only available on the IBM Z Security Portal. > > Who can and cannot obtain access to the IBM Z Security Portal is > documented in this FAQ: > https://urldefense.com/v3/__https://ibm.biz/security-portal- > faq__;!!JmPEgBY0HMszNaDT!udnBZoAidHBU- > nmJaQ0x_rAqjr3sKY3itcxgjYC4xq2ba2WcWInaZ1FXSydmPoc_MhkB6e- > IHCxU$ . > > In short, from the FAQ, "the Security Portal is for IBM clients that have a > licensed IBM Z or LinuxONE mainframe. It is not intended for users of > emulators, such as zPDT, zRD&T, etc. using the z/OS ADCD or z/VM ADCD." > So, a vendor that also has a license can obtain access. No license? No > access. > And I am only a messenger on this topic. > > Kurt Quackenbush > IBM | z/OS SMP/E and z/OSMF Software Management > | ku...@us.ibm.com > > Chuck Norris never uses CHECK when he applies PTFs. > > >> Do you have access to security portal? the information I am looking > >> for are only available there. I was told by IBM that as a vendor, I > >> can't get access to it. See below for details about the cvss info: > >> The HOLDDATA available from the IBM Z and LinuxONE Security Portal > >> adds a new HOLD CLASS, SECINT, and the HOLD SYMPTOMS contains the > CVSS > >> Base and Temporal scores. > > > I am surprised to hear IBM would take a position like that. It seems almost > inconceivable that large vendors like BMC and Broadcom are locked out of > the Secure Portal. > > > My experience has been that an individual working for an IBM Z customer, > with a manager or CISO that will vouch for them, can get access. > > > > -- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: How to determine if Enhanced HOLDDATA received?
Kurt, As one the do not run apply check, how can I determine if such holddata was receive or not? I believe that second holddata is relatively rare so if one receives holddata, how can we determine the source for it? I respect the decision who can access the data, but I need to understand if the client received such holddata or not during security assessment ITschk בתאריך יום ד׳, 18 בינו׳ 2023 ב-21:34 מאת Kurt J. Quackenbush < ku...@us.ibm.com>: > HOLDDATA with CLASS(SECINT) is only available on the IBM Z Security Portal. > > Who can and cannot obtain access to the IBM Z Security Portal is > documented in this FAQ: https://ibm.biz/security-portal-faq. > > In short, from the FAQ, "the Security Portal is for IBM clients that have > a licensed IBM Z or LinuxONE mainframe. It is not intended for users of > emulators, such as zPDT, zRD&T, etc. using the z/OS ADCD or z/VM ADCD." > So, a vendor that also has a license can obtain access. No license? No > access. And I am only a messenger on this topic. > > Kurt Quackenbush > IBM | z/OS SMP/E and z/OSMF Software Management | ku...@us.ibm.com > > Chuck Norris never uses CHECK when he applies PTFs. > > >> Do you have access to security portal? the information I am looking > >> for are only available there. I was told by IBM that as a vendor, I > >> can't get access to it. See below for details about the cvss info: > >> The HOLDDATA available from the IBM Z and LinuxONE Security Portal > >> adds a new HOLD CLASS, SECINT, and the HOLD SYMPTOMS contains the CVSS > >> Base and Temporal scores. > > > I am surprised to hear IBM would take a position like that. It seems > almost inconceivable that large vendors like BMC and Broadcom are locked > out of the Secure Portal. > > > My experience has been that an individual working for an IBM Z customer, > with a manager or CISO that will vouch for them, can get access. > > > > -- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN > -- *| **Itschak Mugzach | Director | SecuriTeam Software **|** IronSphere Platform* *|* *Information Security Continuous Monitoring for Z/OS, zLinux and IBM I **| * *|* *Email**: i_mugz...@securiteam.co.il **|* *Mob**: +972 522 986404 **|* *Skype**: ItschakMugzach **|* *Web**: www.Securiteam.co.il **|* -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: How to determine if Enhanced HOLDDATA received?
HOLDDATA with CLASS(SECINT) is only available on the IBM Z Security Portal. Who can and cannot obtain access to the IBM Z Security Portal is documented in this FAQ: https://ibm.biz/security-portal-faq. In short, from the FAQ, "the Security Portal is for IBM clients that have a licensed IBM Z or LinuxONE mainframe. It is not intended for users of emulators, such as zPDT, zRD&T, etc. using the z/OS ADCD or z/VM ADCD." So, a vendor that also has a license can obtain access. No license? No access. And I am only a messenger on this topic. Kurt Quackenbush IBM | z/OS SMP/E and z/OSMF Software Management | ku...@us.ibm.com Chuck Norris never uses CHECK when he applies PTFs. >> Do you have access to security portal? the information I am looking >> for are only available there. I was told by IBM that as a vendor, I >> can't get access to it. See below for details about the cvss info: >> The HOLDDATA available from the IBM Z and LinuxONE Security Portal >> adds a new HOLD CLASS, SECINT, and the HOLD SYMPTOMS contains the CVSS >> Base and Temporal scores. > I am surprised to hear IBM would take a position like that. It seems almost > inconceivable that large vendors like BMC and Broadcom are locked out of the > Secure Portal. > My experience has been that an individual working for an IBM Z customer, with > a manager or CISO that will vouch for them, can get access. -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: REXX Question
Oh no, please don't! It's our history. On 1/18/2023 10:10 AM, Willy Jensen wrote: Yeah I know, I really should strip that from the web text. -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: REXX Question
Yeah I know, I really should strip that from the web text. -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
zSecure PDS's
This is crossed posted to IBM-Main and RACF In my last order, zSecure Libraries came in as CKRx. What are all of you doing? Are you copying over the Files named CKR.V25. or are using then natively? Thanks -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: REXX Question
indeed, ever since Quick-ref provided TSO help also, I rarely use TSO HELP - I have created some user based help for site commands. Carmen On 1/18/2023 9:58 AM, Tom Brennan wrote: This brings back old memories. I clicked on the "text" link on your page and it comes up with what looks like a file formatted for the tso HELP command. I barely remember the )F and other marks. )F Function to check access to RACF resource I don't think I've typed up a HELP member in 30 years. I wrote some TSO commands of course, but well, you know, HELP comes later or more likely not at all. On 1/18/2023 4:52 AM, Willy Jensen wrote: For asking RACF from a REXX, check RXSAFCHK at http://harders-jensen.com. -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- Carmen -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: REXX Question
This brings back old memories. I clicked on the "text" link on your page and it comes up with what looks like a file formatted for the tso HELP command. I barely remember the )F and other marks. )F Function to check access to RACF resource I don't think I've typed up a HELP member in 30 years. I wrote some TSO commands of course, but well, you know, HELP comes later or more likely not at all. On 1/18/2023 4:52 AM, Willy Jensen wrote: For asking RACF from a REXX, check RXSAFCHK at http://harders-jensen.com. -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: REXX Question
Classification: Confidential Dee the RACROUTE macro. IIRC, the parameter is TEST(AUTH)? -Original Message- From: IBM Mainframe Discussion List On Behalf Of Farley, Peter Sent: Tuesday, January 17, 2023 3:44 PM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: REXX Question [CAUTION: This Email is from outside the Organization. Unless you trust the sender, Don’t click links or open attachments as it may be a Phishing email, which can steal your Information and compromise your Computer.] I don't know about Cameron, but I would be interested in a way to ask RACF (or TSS if possible) from Rexx whether I have read access to a DSN. Is that possible for a non-authorized "ordinary" user, or is that road the kind that is normally blocked to prevent "insider snooping"? If you posted here about it previously, can you pinpoint the date (or at least the year and month) so one could effectively search the IBM-MAIN archives? Peter -Original Message- From: IBM Mainframe Discussion List On Behalf Of Bob Bridges Sent: Tuesday, January 17, 2023 4:35 PM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: REXX Question EXTERNAL EMAIL If it works, great. But since I was all primed to offer another kind of solution, I'm remembering an explanation I sent once about how to ask RACF (and I take it from your symptoms that you are running RACF) whether you have READ access to a particular dataset. It seems to me it can be adapted to check whether you have UPDATE access. It's more complicated than the below, but if you're interested --- Bob Bridges, robhbrid...@gmail.com, cell 336 382-7313 /* When I was ten, I read fairy tales in secret and would have been ashamed if I had been found doing so. Now that I am fifty I read them openly. When I became a man I put away childish things, including the fear of childishness and the desire to be very grown up. -C.S. Lewis */ -Original Message- From: IBM Mainframe Discussion List On Behalf Of Cameron Conacher Sent: Tuesday, January 17, 2023 15:41 Thank you. This looks like just what I needed. Appreciate the assistance. --- From: IBM Mainframe Discussion List On Behalf Of Seymour J Metz Sent: Tuesday, January 17, 2023 3:03 PM Did you try CONTROL ERRORS RETURN? From: Cameron Conacher Sent: Tuesday, January 17, 2023 2:48 PM I have some REXX statements that use LMCOPY to copy members from one library to another. This is pretty straight forward stuff. Recently, I ran into a situation where I was not authorized to access the output library. And when the REXX ran, it ABENDed with a 913 error message. My REXX checks the return code value from the LMCOPY, but apparently, the LMCOPY does not return. I can't seem to trap the not authorized error, and generate a polite message for the JOB. After issuing the LMCOPY command, I check, and if the return code is not one of 0, 8, or 12 I generate an error message. On the other hand if it is zero I generate a success message if it is 8 I generate a success message if it is 12 I generate a message indicating I did not replace the member in the target library because the member already existed and the REPLACE flag was not set. The other return codes documented for LMCOPY are 16 = TRUNCATION Error 20 = Sever Error; unable to continue. I was kind of expecting to see the LMCOPY return set as 20. Is there something I can set to trap the 913 (Not Authorized error) ? I can live with what I have. I was just looking to polish things up a little bit. I wanted to send out a message that literally says "You do not have the authority to access Library . Please reach out to the Security team at... and have them authorize your RACF ID. Then restart this JOB at step If you have additional questions, please see ." -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN This message and any attachments are intended only for the use of the addressee and may contain information that is privileged and confidential. If the reader of the message is not the intended recipient or an authorized representative of the intended recipient, you are hereby notified that any dissemination of this communication is strictly prohibited. If you have received this communication in error, please notify us immediately by e-mail and delete the message and any attachments from your system. -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN ::DISCLAIMER:: The contents of this e-mail and any attachment(s) are confidential and intended for the named recipient(s) only. E-mail transmission is not guaranteed to be secure or error-free as information
Re: HMC Help
+1 - glad you were able to resolve, good info for others on how to resolve the issue Carmen On 1/17/2023 5:37 PM, Jousma, David wrote: Glad you got the answer, as I was about to post the same info. We have it enabled now, probably the last 6 months, and right after it was done I got a call from the ibm service representative because "he couldn't logon". Seems like poor design point, but I'm sure there is a reason for it. Dave Jousma Vice President | Director, Technology Engineering Fifth Third Bank | 1830 East Paris Ave, SE | MD RSCB2H | Grand Rapids, MI 49546 616.653.8429 From: IBM Mainframe Discussion List on behalf of Mark Jacobs <0224d287a4b1-dmarc-requ...@listserv.ua.edu> Sent: Tuesday, January 17, 2023 4:38:45 PM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: HMC Help **CAUTION EXTERNAL EMAIL** **DO NOT open attachments or click on links from unknown senders or unexpected emails** Finally got it resolved. It turns out that once the HMC MFA requirement is assigned to a userid, the HMC asks for a OTC for every userid, regardless of whether it requires the OTC or not. If not, don't enter anything in the field, and select logon/login. Once I removed the requirement for MFA on my test id, it stopped asking. Mark Jacobs Sent from ProtonMail, Swiss-based encrypted email. GPG Public Key - https://urldefense.com/v3/__https://api.protonmail.ch/pks/lookup?op=get&search=markjacobs@protonmail.com__;!!MwwqYLOC6b6whF7V!l4-yja29ogjExd2YAcOXsrPIIiBHVOQ5--mDm2R1TjymI8JrUUM-DgLqFqav84FYush8_wQQKdEvcNaLKsXlbC-XAqMULtX1wCg$ --- Original Message --- On Tuesday, January 17th, 2023 at 1:59 PM, Mark Jacobs <0224d287a4b1-dmarc-requ...@listserv.ua.edu> wrote: I opened a service request on the HMC. Lets hope they can fix it soon. Sent from ProtonMail, Swiss-based encrypted email. GPG Public Key - https://urldefense.com/v3/__https://api.protonmail.ch/pks/lookup?op=get&search=markjacobs@protonmail.com__;!!MwwqYLOC6b6whF7V!l4-yja29ogjExd2YAcOXsrPIIiBHVOQ5--mDm2R1TjymI8JrUUM-DgLqFqav84FYush8_wQQKdEvcNaLKsXlbC-XAqMULtX1wCg$ --- Original Message --- On Tuesday, January 17th, 2023 at 1:54 PM, Carmen Vitullo petevi...@gmail.com wrote: I looked around - at the older HMC version, tree style I was able to view my other HMC, maybe it was not defined when we installed our Z15 and the new HMC version was installed but I cannot get to my other HMCcurrently - I hope someone has an answer for you for me, I call HELP to my IBM SE and they can do some magic Carmen On 1/17/2023 12:45 PM, Mark Jacobs wrote: IDK, I'm remote and don't know anything about the physical layout of that data center. Sent from ProtonMail, Swiss-based encrypted email. GPG Public Key - https://urldefense.com/v3/__https://api.protonmail.ch/pks/lookup?op=get&search=markjacobs@protonmail.com__;!!MwwqYLOC6b6whF7V!l4-yja29ogjExd2YAcOXsrPIIiBHVOQ5--mDm2R1TjymI8JrUUM-DgLqFqav84FYush8_wQQKdEvcNaLKsXlbC-XAqMULtX1wCg$ --- Original Message --- On Tuesday, January 17th, 2023 at 1:38 PM, Carmen Vitullo petevi...@gmail.com wrote: do you have another HMC? can you access the HMC and remove the MFA definitions from this alternate HMC? just thinking out-loud Carmen On 1/17/2023 12:31 PM, Mark Jacobs wrote: I really mucked up our HMC. I enabled MFA on the HMC using the HMC as the MFA server. Associated one userid with MFA, successfully set that up and logged on to the HMC with it. Now, all the other userids, including ACSADMIN are requiring an MFA OTP to logon on. HELP Sent from ProtonMail, Swiss-based encrypted email. GPG Public Key - https://urldefense.com/v3/__https://api.protonmail.ch/pks/lookup?op=get&search=markjacobs@protonmail.com__;!!MwwqYLOC6b6whF7V!l4-yja29ogjExd2YAcOXsrPIIiBHVOQ5--mDm2R1TjymI8JrUUM-DgLqFqav84FYush8_wQQKdEvcNaLKsXlbC-XAqMULtX1wCg$ -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- Carmen -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- Carmen -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN --
Re: REXX Question
For asking RACF from a REXX, check RXSAFCHK at http://harders-jensen.com. -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
