CA Log Analyzer generates UNDO SQL for a table where the user does not have DB2 authority granted for the table.

Document ID : KB000044079
Last Modified Date : 14/02/2018
Show Technical Document Details

Question:

CA Log Analyzer for DB2 for z/OS (PLA) generates UNDO SQL for a table where a user does not have SELECT authorization.  Is this by design?

 

Answer:

PLA provides PARMLIB option SECURITY within the PLA member of hlq.CDBAPARM to control whether to use DB2 authorization to determine if the user has authority to review or use the data in the log for specific tables:

SECURITY:

Y - Use DB2 authorization.                  
N - (Default) Do not use DB2 authorization. 

To enforce DB2 security specify SECURITY (Y).