Question & Answer
Question
I recently upgraded to CICS Configuration Manager for z/OS (CICS CM) V5.4 on z/OS V2.2. I run our CICS CM V5.4 server inside our existing CICS TS V5.3 CICSPlex SM WUI server address space. When I try to connect to the newly upgraded CICS CM 5.4 server port, the ISPF dialog displays Authorization failed in the upper right corner. Pressing PF1 for details says...
You are not authorized to perform the requested function. Security failure details are logged in the CICS Configuration Manager server job output, using a message prefix DFHXS
I use CA Top Secret from CA Technologies for our external security manager and I do not get any messages in our TSO ISPF userid or in the CICS CM (WUI) server JES joblog, or any DFHXS security failure messages in the CICS CM (WUI) server reporting security violations.
I was able to access CICS CM until I updated the system options to specify SecurityActive=Y to activate security.
Since I do not get any error messages, how can I determine the cause of the Authorization failed message?
Answer
I determined I had also specified a new security prefix in the system options definition parameter SAFPrefix, but did not have the resource security key profiles defined with the new prefix. Once I defined the resource keys with the new SAFPrefix value, I no longer received the Authorization failed message when connecting from the ISPF dialog.
Product Synonym
CICSCM CICS CM;CICS/TS CICSTS CICS TS CICS Transaction Server
Was this topic helpful?
Document Information
Modified date:
06 August 2018
UID
dwa1462948