We are testing out RACF on Z/vm. And have installed RACF v6.1
and tried using the example in the IBM manual
"RACF Security Server Security Administrator’s Guide v6.1",
document # SC24-6218-00. This particular example is found
in chapter 3 starting at the sub-topic "Defining Administrator User IDs for Your Own Use"
The statements we entered while logged in under the user id "SYSADMIN"
ADDUSER RACFADM PASSWORD(clemons) SPECIAL OPERATIONS AUDITOR
RDEFINE VMMDISK RACFVM.301
PERMIT RACFVM.301 CLASS(VMMDISK) ID(RACFADM) ACCESS(UPDATE)
Now at this point I logged off the SYSADMIN id.
Next I attempted to login as to the RACF created id "RACFVM" with password of "CLEMONS".
The response I got back from z/VM was:
HCPLGA053E RACFADM not in CP directory
Enter one of the following commands:
LOGON userid (Example: LOGON VMUSER1)
DIAL userid (Example: DIAL VMUSER2)
MSG userid message (Example: MSG VMUSER2 GOOD MORNING)
My question is do you need to also place an entry in the
CP directory (VM file "USER DIRECT") for every user id defined to RACF
or is there something we may not have installed or implemented correctly?