CA VIEW resource unauthorized access allowed

Document ID : KB000013310
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

Unauthorized access for a CA VIEW resource is allowed. Problems occurs for CA View resources secured under the DATASET resource class.

Answer:

There are two security checks for a DATASET security check. The VOLUME check occurs first. If the user has ACCESS(ALL) on the volume, no dataset checking occurs. This will grant the user access to all datasets on that volume.

ACCESS(CREATE) on the VOLUME should be given so dataset checking will occur.