Removing ACIDs with LCF Rules.

Document ID : KB000022686
Last Modified Date : 14/02/2018
Show Technical Document Details

Introduction:
1.) Is there a way to determine who has LCF Rules in place?
2.) If "yes", how can these be taken off ACIDs?

Instructions:
If the ACID with the LCF Rules is known, a 'TSS LIST(acid) DATA(LCF)' command can be issued to any LCFs on the ACID. The output will look something like this:
=========================
LCF FAC = fac   
AUTH CMDS = xxxx yyyy  
LCF FAC = fac   
EXMP CMDS = xxxx yyyy
=========================
AUTH commands are an Inclusive List. If added via the 'TSS ADD(acid) TRANS(fac,xxxx)' command, remove these with the 'TSS REM(acid) TRANS(fac,xxxx)' command. If added via the 'TSS ADD(acid) COMMAND(fac,xxxx)' command, remove these via the 'TSS REM(acid) COMMAND(fac,xxxx)' command. EXMP commands are an Exclusive List. If added via the 'TSS ADD(acid) XTRANS(fac,xxxx)' command, remove these with the 'TSS REM(acid) XTRANS(fac,xxxx)' command. If added via the 'TSS ADD(acid) XCOMMAND(fac,xxxx)' command, remove these via the 'TSS REM(acid) XCOMMAND(fac,xxxx)' command. If the ACID(s) are not known, run TSSCFILE with a 'TSS LIST(ACIDS) DATA(LCF)' command, or a Batch job with the 'TSS LIST(ACIDS) DATA(LCF)' command, to LIST  all ACIDs, and display only the ACID Name and any LCFs associated with that ACID. Regardless of which method was chosen, this should be done during off peak hours, because the 'TSS LIST(ACIDS)...' commands can cause extensive I/O to the CA Top Secret Security File. A 'TSS LIST(ALL) DATA(LCF)' command should also be done to see if the ALL Record contains any LCF Rules.