Security violations when putting maintenance to a CA product

Document ID : KB000052251
Last Modified Date : 14/02/2018
Show Technical Document Details

Description:

When putting maintenance to a CA product you can get the following security errors:

 BPXP024I BPXAS INITIATOR STARTED ON BEHALF OF JOB MSMMKDIR RUNNING IN ASID 0059
 ICH408I USER(xxxxxxx ) GROUP(yyyyyyy ) NAME( zzzzzzz zzzzzzz ) 835
    /extractorGimapiTrace
    CL(DIRACC ) FID(00000001000000010000000000000000)
    INSUFFICIENT AUTHORITY TO MKDIR
    ACCESS INTENT(-W-) ACCESS ALLOWED(OTHER R-X)
    EFFECTIVE UID(0000010033) EFFECTIVE GID(0000000112)
 ICH408I USER(xxxxxxx ) GROUP(yyyyyyy ) NAME( zzzzzzz zzzzzzz ) 845
    /extractorTrace CL(DIRACC ) FID(00000001000000010000000000000000)
    INSUFFICIENT AUTHORITY TO UNLINK
    ACCESS INTENT(-W-) ACCESS ALLOWED(OTHER R-X)
    EFFECTIVE UID(0000010033) EFFECTIVE GID(0000000112)

Solution:

This sample shows RACF security violations, but to solve it you will need to add the UID(0) to the user you are using.