I am getting a CA-ACF2 ACF99913 violation and I cannot determine why the rule is not allowing access. What documentation is needed to determine the problem?

Document ID : KB000026810
Last Modified Date : 14/02/2018
Show Technical Document Details

Question:  

I am getting a CA-ACF2 ACF99913 violation and I cannot determine why the rule is not allowing access. What documentation is needed to determine the problem?

Answer:

The CA-ACF2 reports, decompile of rules and a list of the logonid provide a useful basis in debugging CA-ACF2 violations.

The following documentation is an important tool in debugging both dataset ACF99913 and resource ACF04056 violations.

    1. The ACFRPTDS report for dataset violations and the ACFRPTRV report for resource violations.
      Same report JCL follows:

      //REPORT  EXEC PGM=ACFRPTDS
      //SYSPRINT DD SYSOUT=*
      //* The following DDs should point to current SMF
      //RECMAN1  DD DISP=SHR,DSN=SYS1.MAN1  
      /RECMAN2  DD DISP=SHR,DSN=SYS1.MAN2    
      //RECMAN3  DD DISP=SHR,DSN=SYS1.MAN3  
      //SYSIN    DD *
      TITLE(ACFRPTDS)
      ALL
      /*
    //REPORT  EXEC PGM=ACFRPTRV

     

      //SYSPRINT DD SYSOUT=*

       

        //* The following DDs should point to current SMF

         

          //RECMAN1  DD DISP=SHR,DSN=SYS1.MAN1  

           

            //RECMAN2  DD DISP=SHR,DSN=SYS1.MAN2  

             

              //RECMAN3  DD DISP=SHR,DSN=SYS1.MAN3

               

                //SYSIN    DD *

                 

                  TITLE(ACFRPTRV)

                   

                    ALL  

                     

                      /*      

                                      

                      1. A DECOMPILE of the rules involved in the validations including any NEXTKEY rules that may be involved. This would include the rules that are expected to be used as well as the rule identified in the ACFRPTRV report "LOOKUP KEY" and the ACFRPTDS report "RKEY".

                      2. A LIST of the logonid that the violation is occurring - from a TSO ACF command.

                      Note: This documentation is the typical documentation that is needed for most violation problem related to rules. Depending on the specific situation and violation, additional documentation may be needed.

                      Additional Information: 

                      Details on the ACFRPTDS and ACFRPTRV reports can be found in the CA ACF2 for z/OS Reports and Utilities Guide.