Re: D U, , ALLOC GIVES MSGIEE106I *UNKNOWN (UNKNOWN) MVS DISPLAY ALLOCATED UNITS COMMAND

[Stone, Marshall]

There is a VARY command that uses UNCOND - vary online unconditional sometimes 
can override a BOXED device

MS
-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Rob Schramm
Sent: Tuesday, January 29, 2019 1:44 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: [EXT] Re: D U, , ALLOC GIVES MSGIEE106I *UNKNOWN (UNKNOWN) MVS DISPLAY 
ALLOCATED UNITS COMMAND

What happens if you box a device offline?

Can you bring it back online?

Rob Schramm

On Tue, Jan 29, 2019, 2:19 AM Mehrshad Manshadi <
0056e0e17177-dmarc-requ...@listserv.ua.edu wrote:

> In response to a  D U,,ALLOC command, msgIEE106I is issued
> indicating a jobname of *UNKNOWN for certain DASD units.  It is
> also not possible to Vary the unit(s) offline (unable to vary).
>This problem was traced to an OEM product changing the UCB
> in a job's TIOT without incrementing the new UCB's UCBUSER
> (Number of Current Users use-count) field.  When the new UCB
> was subsequently de-allocated, MVS Allocation code decremented
> UCBUSER, causing it to become negative.  Since UCBUSER was then
> not zero, the device appeared to be allocated even though there
> was no address space known to be allocated to it.  As a result,
> UCBALOC was never turned off and the device could not be
> varied OFFLINE.
>
>  See Scratch Pad for OEM information.
> Please help me to solve the problem. from where i can find scratch pad for
> OEM? in OS configuration or hardware?!How can I turned off UCBALOC ?
> For your information we changed the number of aliases in IODF and just
> activate it without IPL or power on reset the machine.
> Thanks
>
> --
> For IBM-MAIN subscribe / signoff / archive access instructions,
> send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
>

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
The information contained in this message may be CONFIDENTIAL and is for the 
intended addressee only. Any unauthorized use, dissemination of the 
information, or copying of this message is prohibited. If you are not the 
intended addressee, please notify the sender immediately and delete this 
message.

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN

Re: USS10MSG source

[Stone, Marshall]

Sample USS table in  - SYS1.SAMPLIB(ISTINCNO)

MS

-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Edward Finnell
Sent: Monday, January 07, 2019 5:40 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: [EXT] Re: USS10MSG source

DDDEFS to start with.

In a message dated 1/7/2019 4:28:21 AM Central Standard Time, 
r.skoru...@bremultibank.com.pl writes:
About what?

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
The information contained in this message may be CONFIDENTIAL and is for the 
intended addressee only. Any unauthorized use, dissemination of the 
information, or copying of this message is prohibited. If you are not the 
intended addressee, please notify the sender immediately and delete this 
message.

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN

Re: NetView session manager - Session Clone

[Stone, Marshall]

Yes - Under USER ADMIN - copy profile function

Marshall
-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Peter
Sent: Monday, November 26, 2018 2:59 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: [EXT] NetView session manager - Session Clone

Hi

I have never used NetView session manager and my experience is just with
TPX and Supersession.

Under NetView do we have an option to clone an existing user sessions to a
new NetView user ?

Peter

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
The information contained in this message may be CONFIDENTIAL and is for the 
intended addressee only. Any unauthorized use, dissemination of the 
information, or copying of this message is prohibited. If you are not the 
intended addressee, please notify the sender immediately and delete this 
message.

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN

{MetLife Secure Message} RE: policy agent config file - use of system symbols

[Stone, Marshall]

Best I can offer is to make your own 'symbolics' inside PAGENT - for example 
you can create a large list of IP addresses then save that and you can refer 
back to it to avoid some coding on a large configuration.

MS
-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Alexei T
Sent: Saturday, October 27, 2018 2:24 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: [EXT] policy agent config file - use of system symbols

Dear all,

Is it possible to use system symbols within the configuration files of policy 
agent?
The documentation is not very clear on the subject (for instance its possible 
to use system symbols in tcpip profile dataset and resolver configuarion but I 
have not found any mention of the use of system symbols within the policy agent 
config files).
My personal experimentation was rather unsuccessful.
Does anyone have experience with this?

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
The information contained in this message may be CONFIDENTIAL and is for the 
intended addressee only. Any unauthorized use, dissemination of the 
information, or copying of this message is prohibited. If you are not the 
intended addressee, please notify the sender immediately and delete this 
message.

This email is being sent in an encrypted format using transport layer security.


--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN

Re: Health Check JES_NJE_SECURITY

[Stone, Marshall]

These sessions both intended and scary can be controlled by Policy Agent 
(PAGENT under z/OSMF)

Marshall Stone | Lead Engineer| Mainframe & Engineering Solutions | Enterprise 
Infrastructure and Architecture – TRICARE
101 MetLife Way, MET1 03.273, Cary NC 27513 | T. 919-907-5346 | M. 
919-324-4312| marshall.st...@metlife.com

The information contained in this message may be CONFIDENTIAL and is for the 
intended addressee only. Any unauthorized use, dissemination of the 
information, or copying of this message is prohibited. If you are not the 
intended addressee, please notify the sender immediately and delete this 
message.

-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Styles, Andy (ITS zPlatform Services)
Sent: Friday, March 23, 2018 2:50 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: [EXT] Re: Health Check JES_NJE_SECURITY

This is a real possibility - I've seen it in action; a connection via NJE was 
established and an unauthenticated user was able to submit a batch job under 
the id of someone in the Security area with RACF SPECIAL access. At that time, 
our NJE network was using unsecured IP connections over port 175.
 
 
Andy Styles
z/Series System Programmer

-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Jesse 1 Robinson
Sent: 22 March 2018 23:14
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Health Check JES_NJE_SECURITY

-- This email has reached the Bank via an external source --
 

I chatted up Tom Wasik at SHARE in Sacramento. We have a robust internal NJE 
network but no longer any outside connections. Tom raised the possibility of 
someone using a mechanism (like Python) to spoof an NJE node from within the 
closed network. I know nothing about Python, but just the prospect is 
unnerving. I think we'll pursue this (remote?) exposure to minimize the risk. 

.
.
J.O.Skip Robinson
Southern California Edison Company
Electric Dragon Team Paddler 
SHARE MVS Program Co-Manager
323-715-0595 Mobile
626-543-6132 Office ⇐=== NEW
robin...@sce.com


-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Robert S. Hansel (RSH)
Sent: Friday, March 02, 2018 6:25 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: (External):Re: Health Check JES_NJE_SECURITY

Hi Skip,

If you define  and add the name of a node to it, JES will 'trust' and 
accept any job coming from that node and propagate the submitter's ID and group 
as is. Adding a node to  is the equivalent of creating NODES profiles 
of node.USERJ.* UACC(UPDATE), node.GROUPJ.* UACC(READ), and node.SECLJ.* 
UACC(READ). Note that NODES profiles are ignored for nodes listed in , 
so you can't do any submitting user or group translations using NODES profiles. 
 is very powerful, and nodes should only be defined to it that are 
under your control.

If a job is received from an  trusted node, and on the receiving system 
(a) the submitting user isn't defined, (b) the submitter's group isn't defined, 
or (c) the submitting user isn't connected to the group, the submitter is 
treated as an undefined user and the job may fail. This is why, as Walt 
indicated, you should only define nodes to  whose RACF databases are 
aligned for users, groups, and connects. For systems that aren't so aligned, 
don't include their nodes in  and use NODES profiles instead.

I recommend you define  in each of your RACF databases and in each such 
profile include only the nodes for the systems sharing that particular 
database. Do so even on standalone systems or Multi-Access Spool 
configurations. This will facilitate spool reloads.

Regards, Bob

Robert S. Hansel
Lead RACF Specialist
RSH Consulting, Inc. *** Celebrating our 25th Year ***
617-969-8211
www.linkedin.com/in/roberthansel
https://twitter.com/RSH_RACF
www.rshconsulting.com

Upcoming RSH RACF Training - WebEx
- RACF Audit & Compliance Roadmap - SEPT 10-14, 2018
- RACF Level I Administration - APR 10-13, 2018 ** Date Change **
- RACF Level II Administration - JUN 4-8, 2018
- RACF Level III Admin, Audit, & Compliance - OCT 1-5, 2018
- RACF - Securing z/OS UNIX  - APR 23-27, 2018


-Original Message-
Date:Wed, 28 Feb 2018 19:38:33 +
From:Jesse 1 Robinson 
Subject: Health Check JES_NJE_SECURITY

APAR  OA49171 introduces a new health check called 

Date:Thu, 1 Mar 2018 03:14:36 +
From:Jesse 1 Robinson 
Subject: Re: Health Check JES_NJE_SECURITY

Ouch. I never saw Walt's proviso mentioned in the doc. Yes, these nodes are all 
totally under our control. However each node (sysplex) constitutes a different 
business environment supported by a different RACF data base. A person may have 
the same userid on sandbox 

Re: IBM does what IBM does best: Raises the chopper again

[Stone, Marshall]

HEX 42 in Binary - 0100 0010  - now using fingers up/down to represent digits...

-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Mike Schwab
Sent: Friday, December 01, 2017 11:27 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: [EXT] Re: IBM does what IBM does best: Raises the chopper again

And check out the first two religious meanings for 42:  In Japanese, 
pronouncing the two digits is the same as the word for death.  In Egypt, 42 
questions are asked of a dead person.
https://en.wikipedia.org/wiki/42_(number)#Religion

On Thu, Nov 30, 2017 at 8:59 AM, Jack J. Woehr  wrote:
> On 11/30/2017 2:47 AM, Edward Gould wrote:
>>
>> I know I shouldn’t ask but what is “42”.
>
>
> The Answer to Life, the Universe, and Everything, as revealed by Deep
> Thought in Douglas Adams's _Hitchhiker's Guide to the Galaxy_.
>
> Another computer was then built to discover what indeed is the
> Question to Life, the Universe, and Everything.
>
> "Computers are useless, they can only give you answers." - Pablo
> Picasso
>
> --
> Jack J. Woehr # Science is more than a body of knowledge. It's a way of
> www.well.com/~jax # thinking, a way of skeptically interrogating the
> universe www.softwoehr.com # with a fine understanding of human
> fallibility. - Carl Sagan
>
> --
> For IBM-MAIN subscribe / signoff / archive access instructions, send
> email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN



--
Mike A Schwab, Springfield IL USA
Where do Forest Rangers go to get away from it all?

--
For IBM-MAIN subscribe / signoff / archive access instructions, send email to 
lists...@listserv.ua.edu with the message: INFO IBM-MAIN
The information contained in this message may be CONFIDENTIAL and is for the 
intended addressee only. Any unauthorized use, dissemination of the 
information, or copying of this message is prohibited. If you are not the 
intended addressee, please notify the sender immediately and delete this 
message.

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN

Re: IBM Session Manager replacement

[Stone, Marshall]

FYI - We are currently running NVAS and will migrate to CL/SS in 2018 - We 
contracted IBM to assist, they have REXX code/Processes to copy/clone NVAS 
customization to CL/SS to ease migrations for shops with heavily customized 
screens and scripts.

MS
-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Roberto Halais
Sent: Friday, August 18, 2017 10:56 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: [EXT] Re: IBM Session Manager replacement

Thank you all for your responses these will help inmensely.
Again. Thank you
Roberto


On Aug 18, 2017 8:36 AM, "Wolfgang Fritz" < 
016acdc52809-dmarc-requ...@listserv.ua.edu> wrote:

> Hi
> I forgot to give you a URL
>
> www.virtelweb.com
>
>
> You could download and test it for
> 5 users
>
> If you need support
> You can send me a mail wolfgang.fr...@wfs-gmbh.eu
>
>
>
> Bin unterwegs hab nur iPhone zur Verfügung.
>
> > Am 18.08.2017 um 14:08 schrieb william janulin
> > <008d52e04f2e-dmarc-
> requ...@listserv.ua.edu>:
> >
> > There is also TUBES from Macro 4.
> >
> >
> >On Friday, August 18, 2017 7:53 AM, Wolfgang Fritz <
> 016acdc52809-dmarc-requ...@listserv.ua.edu> wrote:
> >
> >
> > Hi
> > There is another possibility try
> > Syspertec Virtel there is a Session manager Included and you could
> > earn your 3270 emulation you work only browser
> based with a http/SNA gateway
> > RegArds
> > Wolfgang
> > 
> > -- For IBM-MAIN subscribe / signoff / archive access instructions,
> > send email to lists...@listserv.ua.edu with the message: INFO
> > IBM-MAIN
> >
> >
> > 
> > -- For IBM-MAIN subscribe / signoff / archive access instructions,
> > send email to lists...@listserv.ua.edu with the message: INFO
> > IBM-MAIN
> >
>
> --
> For IBM-MAIN subscribe / signoff / archive access instructions, send
> email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
>

--
For IBM-MAIN subscribe / signoff / archive access instructions, send email to 
lists...@listserv.ua.edu with the message: INFO IBM-MAIN
The information contained in this message may be CONFIDENTIAL and is for the 
intended addressee only. Any unauthorized use, dissemination of the 
information, or copying of this message is prohibited. If you are not the 
intended addressee, please notify the sender immediately and delete this 
message.

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN

Re: IBM Netview Session Manager replacement

[Stone, Marshall]

Please note that the withdrawal is only V1.x.x - Most shops are currently on 
V2.1.1 of NVAS

-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Salah Balboul
Sent: Tuesday, February 07, 2017 8:07 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: IBM Netview Session Manager replacement

Hello list,

IBM announced Tivoli Netview Access Services for MVS being withdrawn come 
09/10/2018.

Anyone knows of a similar replacement on the market with same features?

I know IBM also has the old Candle CL/SuperSession. I'm wondering if others are 
using non-IBM products for session management on zOS.

Thanks

--
For IBM-MAIN subscribe / signoff / archive access instructions, send email to 
lists...@listserv.ua.edu with the message: INFO IBM-MAIN
The information contained in this message may be CONFIDENTIAL and is for the 
intended addressee only.  Any unauthorized use, dissemination of the 
information, or copying of this message is prohibited.  If you are not the 
intended addressee, please notify the sender immediately and delete this 
message.

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN

Re: IBM Netview Session Manager replacement

[Stone, Marshall]

We use NVAS and CA/Solve (2 different workloads)

Does anyone have the link/URL for the NVAS announcement?

-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Carmen Vitullo
Sent: Tuesday, February 07, 2017 8:28 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: IBM Netview Session Manager replacement

I've used TPX, Teleview, not sure of Teleview is now TPX, both from CA, Tubes 
from MACRO4 just to name just a few Carmen

- Original Message -

From: "Salah Balboul" 
To: IBM-MAIN@LISTSERV.UA.EDU
Sent: Tuesday, February 7, 2017 7:06:43 AM
Subject: IBM Netview Session Manager replacement

Hello list,

IBM announced Tivoli Netview Access Services for MVS being withdrawn come 
09/10/2018.

Anyone knows of a similar replacement on the market with same features?

I know IBM also has the old Candle CL/SuperSession. I'm wondering if others are 
using non-IBM products for session management on zOS.

Thanks

--
For IBM-MAIN subscribe / signoff / archive access instructions, send email to 
lists...@listserv.ua.edu with the message: INFO IBM-MAIN


--
For IBM-MAIN subscribe / signoff / archive access instructions, send email to 
lists...@listserv.ua.edu with the message: INFO IBM-MAIN
The information contained in this message may be CONFIDENTIAL and is for the 
intended addressee only.  Any unauthorized use, dissemination of the 
information, or copying of this message is prohibited.  If you are not the 
intended addressee, please notify the sender immediately and delete this 
message.

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN

Re: Delta Outage

[STONE, MARSHALL]

This is not verified - one rumor is  --- 2 critical core routers shared a 
single power supply that failed - thus the 'power failure' that was first 
reported.

As an MF network dinosaur - MF was always blamed first but 99% of the time - 
the answer was... we rebooted the router now your EE link is working...

Marshall
-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Ecklund, Roger J
Sent: Thursday, August 18, 2016 10:58 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Delta Outage

GDPS if implemented in a MGM or a MzGM environment provides Hyperswap and a 
near instantaneous Hyperswap to the secondary disk would occur.  From What I 
have heard about the Delta outage it was external systems outside of the 
environment that caused the outage, I cannot confirm nor deny that.

We have encountered issues that have triggered a hyperswap and our customers 
have never felt an impact.



-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Steve Beaver
Sent: Wednesday, August 17, 2016 8:06 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Delta Outage

GDPS is a DS8 technology.  Like HDS G1000 and HUR

Steve   



-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf 
Of Ed Jaffe
Sent: Wednesday, August 17, 2016 6:36 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Delta Outage

On 8/17/2016 4:25 PM, Clark Morris wrote:
>  From one of the papers I skimmed, the outage may have been caused by 
> a failure in the backup power system or the changeover control system.
> Does Transaction Processing Facility (Nee Airline Control Program?) 
> support GDPS?

Delta's mainframe stayed up.
https://twitter.com/SoulEddieJ/status/764081680483098624

--
Edward E Jaffe
Phoenix Software International, Inc
831 Parkview Drive North
El Segundo, CA 90245
http://www.phoenixsoftware.com/

--
For IBM-MAIN subscribe / signoff / archive access instructions, send email to 
lists...@listserv.ua.edu with the message: INFO IBM-MAIN

--
For IBM-MAIN subscribe / signoff / archive access instructions, send email to 
lists...@listserv.ua.edu with the message: INFO IBM-MAIN


This e-mail, including attachments, may include confidential and/or
proprietary information, and may be used only by the person or entity
to which it is addressed. If the reader of this e-mail is not the intended
recipient or his or her authorized agent, the reader is hereby notified
that any dissemination, distribution or copying of this e-mail is
prohibited. If you have received this e-mail in error, please notify the
sender by replying to this message and delete this e-mail immediately.


--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN