IBM Mainframe Forum

Hi,

With the help of IRRADU00 i have unloaded RACF Database and then, by using ICETOOL i have generated many reports for various RACF RECORD TYPES like 0200,0260,0270 etc., based on my requirement.

But, in the unloaded RACF Database i could'nt find any information about RACF record type 05C0. Record type 05C0 talks about Class Descriptor Table(CDT). I tried this in different Mainframe Systems but none of the systems gives information about record type 05C0. I could get information in the unloaded RACF Database from record type 0100 to record type 0505.

Could anyone, look into this and guide me where exactly i can get information about RACF record type 05C0 i.e, about Class Descriptor Table(CDT)

Eagerly waiting for a reply !!!!!!!!!!

Regards
Ravi

Moved to Mainframe Security Topic.

it woud be wise to review Your understanding of IRRADU00 ...

it does not deal with unloading the RACF database, it is an exit to
IFASMFDP ( smp dump program ) to process properly the RACF SMF record

the RACF SMF records simply track the RACF activity ( who has tried to do what )

the 05C0 CDT related record are not provided by the SMF records
but by the records produces by the IRRDBU00 ( RACF database dump utility )

if Yoy had searched the RACF documntation You would have found more quickly
the info You were lookin for

start from ( for example )
http://publibz.boulder.ibm.com/cgi-bin/ ... s/ICHZBK81
click on (search documents )
http://publibz.boulder.ibm.com/cgi-bin/ ... +Documents
enter 05C0 and click on (search)
and You will get
http://publibz.boulder.ibm.com/cgi-bin/ ... &rank=RANK
click on
z/OS V1R9.0 Security Server RACF Security Administrator's Guide
and from here ... good reading

Thank you for your reply. I will deffinetly go thru all the links.

Iam sorry, it was a typ/o error. I have used IRRDBU00 to unload RACF DB not IRRADU00.

from reading Your other posts on the issue...

if You can extract and process other record types, most probably there are no 05C0 records around...

why ( using smart sort trick ) dont' You get a count of each record type ?

it' a a while that the CDT logic has changed in RACF, there are static CDT's and dynamic ones
( look at the manuals )
frankly I do not remember if the STATIC CDT' s are addded to the RACF database at template initialization

to find out about them You could use the DSMON audit tool ...

a source of handy tools is also
http://www-03.ibm.com/servers/eserver/z ... odies.html