Portal | Manuals | References | Downloads | Info | Programs | JCLs | Mainframe wiki | Quick Ref
IBM Mainframe Computers Forums Index
 
Register
 
IBM Mainframe Computers Forums Index Mainframe: Search IBM Mainframe Forum: FAQ Memberlist Profile Log in to check your private messages Log in
 
A4 Security Violation Error

 
Post new topic   Reply to topic    IBMMAINFRAMES.com Support Forums -> IMS DB/DC
View previous topic :: :: View next topic  
Author Message
asadullah

New User


Joined: 28 Jul 2005
Posts: 9

PostPosted: Wed Jul 09, 2008 2:01 pm    Post subject: A4 Security Violation Error
Reply with quote

When the program issues a CHNG call to another transaction, the IOPCB.SIGNON value contains the user who has last logged in the IMS region. As this user is from a different group, the call ends with A4 security violation. Giving access to the user id for the transaction is out of question is he/she is from a different group and uses the IMS region regularly.

Is there a way to override IOPCB.SIGNON value so that the security violation can be avoided?
Back to top
View user's profile Send private message

Sandy Zimmer

Active Member


Joined: 13 Jun 2007
Posts: 826
Location: Wilmington, DE

PostPosted: Thu Jul 10, 2008 8:36 pm    Post subject:
Reply with quote

I would never-ever hard code anything to override security. So, the answer is NO.
Back to top
View user's profile Send private message
asadullah

New User


Joined: 28 Jul 2005
Posts: 9

PostPosted: Wed Jul 16, 2008 8:02 am    Post subject: Reply to: A4 Security Violation Error
Reply with quote

so given the scenario is there a solution to avoid this Security violation error.
Back to top
View user's profile Send private message
Sandy Zimmer

Active Member


Joined: 13 Jun 2007
Posts: 826
Location: Wilmington, DE

PostPosted: Wed Jul 16, 2008 3:50 pm    Post subject:
Reply with quote

Do you have a IMS systems programmer available to help?
Back to top
View user's profile Send private message
dick scherrer

Site Director


Joined: 23 Nov 2006
Posts: 19270
Location: Inside the Matrix

PostPosted: Wed Jul 16, 2008 9:22 pm    Post subject:
Reply with quote

Hello,

Quote:
so given the scenario is there a solution to avoid this Security violation error.
Yes, properly define the security roles. . .

If "that" group needs to execute the transaction, they must be granted permission. Or possibly a new transaction could be defined for use by "that" group.
Back to top
View user's profile Send private message
asadullah

New User


Joined: 28 Jul 2005
Posts: 9

PostPosted: Thu Jul 17, 2008 2:09 pm    Post subject: Reply to: A4 Security Violation Error
Reply with quote

I understand your point. But doing so will not be correct logically because the problem has two aspects to it.

->We have a set of users who use IMS region who use it to send some messages, and while they use the region to send the messages. Inadvertently or by pure co-incidence one of my application job issues a CHNG call to another transaction code purely for my application purpose.

->Now because the job is automated the SIGNON value in the Transaction does not have any value. Hence the system automatically picks up the user id of person who last used IMS region(I really do not have an explanation for this argument, but the system behaves like that), and when it picks up any of the users who are outside the transaction authorization group is throws an A4 error. Obviously giving access to users for a transaction which they are not at all aware of does not make any sense businesswise as it has to be approved by project managers.

Hence I would like to know if there is any way of overriding IMS SIGNON value before the CHNG call is issued. Because any way the CHNG call is issued by a job which is a part of the application.

I have checked many references for an answer but so far only in vain:)
Back to top
View user's profile Send private message
asadullah

New User


Joined: 28 Jul 2005
Posts: 9

PostPosted: Thu Jul 17, 2008 2:16 pm    Post subject: Reply to: A4 Security Violation Error
Reply with quote

Also there is hardly any help from the IMS systems programmers so far.
Back to top
View user's profile Send private message
Sandy Zimmer

Active Member


Joined: 13 Jun 2007
Posts: 826
Location: Wilmington, DE

PostPosted: Thu Jul 17, 2008 4:25 pm    Post subject:
Reply with quote

Think about REUS - re-entrant. Many users can be using the same copy of the program executing in a region.

Are you including signon info when you pass your message? The IMS systems programmers group assign the regions where specific transactions execute.
Back to top
View user's profile Send private message
asadullah

New User


Joined: 28 Jul 2005
Posts: 9

PostPosted: Tue Jul 29, 2008 10:37 am    Post subject: Reply to: A4 Security Violation Error
Reply with quote

Sorry for the delayed response..was on vacatoin:)

When the messages are sent the SIGNON field has the user id as value. When my program reads the tran the SIGNON field in the tran is spaces as the tran is automatically initiated at a particular time. So IMS somehow assigns the userid to the SIGNON field in the TRAN and hence it abends with A4.
Back to top
View user's profile Send private message
Sandy Zimmer

Active Member


Joined: 13 Jun 2007
Posts: 826
Location: Wilmington, DE

PostPosted: Tue Jul 29, 2008 5:47 pm    Post subject:
Reply with quote

So, when the message comes into your program it has the correct user id - correct? Or, is it spaces when it comes into your program? Does your transaction come in from any type of menu? I am trying to determine at what point your signon field is corrupted. You cannot assume that your back and forth working storage area belongs to you. If your program is executing in a region with others using the same transaction, you need to be sure that you initialize every time you come in - move input message fields to output message area fields, etc.
Back to top
View user's profile Send private message
View previous topic :: :: View next topic  
Post new topic   Reply to topic    IBMMAINFRAMES.com Support Forums -> IMS DB/DC All times are GMT + 6 Hours
Page 1 of 1

 

Search our Forum:

Similar Topics
Topic Author Forum Replies Posted
No new posts IEW2456E error when link-editing a C ... Senthilraj JCL & VSAM 0 Fri Oct 13, 2017 3:12 pm
No new posts FTP Skip or ignore error and process ... AJAYREDDY All Other Mainframe Topics 3 Wed Sep 27, 2017 8:12 pm
No new posts Assembler Macro Copybook converted to... Ziquilix PL/I & Assembler 4 Tue Sep 26, 2017 3:07 am
No new posts FUSE - IBM MQ - CICS integration error Kevin Vaz CICS 1 Mon Sep 18, 2017 4:31 pm
No new posts Information About the Equifax Securit... Rohit Umarjikar PC Guides & IT News 6 Mon Sep 11, 2017 9:10 pm

Facebook
Back to Top
 
Job Vacancies | Forum Rules | Bookmarks | Subscriptions | FAQ | Polls | Contact Us