
Removing authorization from V5.2 PassTicket program libraries
CICSĀ® Configuration Manager V5.3 uses a non-APF authorized method for PassTicket generation that replaces the method used in V5.2 and earlier releases. If you have upgraded from V5.2 or an earlier release and you no longer need to run that release, you can remove the unnecessary authorization.
- Do not remove authorization from the V5.2 SCCVAUTH library until V5.2 is no longer in use.
- Remove authorization from the V5.2 SCCVAlang library, that is SCCVAENU or SCCVAJPN, if it was APF-authorized.
- You can install and use CICS Configuration Manager V5.3 while V5.2 remains in use.
- The V5.3 libraries SCCVAUTH and SCCVAlang do not require APF-authorization. SCCVAUTH contains copies of the non-authorized modules CCVBMAIN and CCVBHKP that are also stored in the SCCVLINK library. The reason for the duplication is to minimize customer JCL changes when upgrading from CICS Configuration Manager V5.2 to V5.3.
- The procedure to remove V5.2 authorization reverses the steps described in Authorize the PassTicket program libraries in the V5.2 User's Guide.
To remove authorization from the V5.2 PassTicket program libraries, complete the following steps on each logical partition (LPAR) on which the libraries were previously authorized:
- Remove authorization from the V5.2 programs CCVBHKP, CCVBMAIN, and CCVSCRPT by doing one of the
following steps. The method to use depends on how authorization was originally granted.
- Remove SCCVAUTH and SCCVAlang from the APF-authorized list.
- Remove CCVBMAIN and CCVSCRPT from the link pack area (LPA) if they were defined in the LPA.
- Remove the V5.2 SCCVAUTH and SCCVAlang libraries from the link list (LNKLST)
if they were defined in the LNKLST.Note: If the V5.3 SCCVAUTH and SCCVAlang libraries were added to the LNKLST, you do not have to remove them. To minimize JCL changes, SCCVAUTH contains copies of the programs CCVBHKP and CCVBMAIN, which are also in SCCVLINK.
- If the V5.2 programs CCVBHKP, CCVBMAIN, or CCVSCRPT were copied to a library that was already in the APF-authorized list and the LNKLST, delete these programs from that library.
- Remove authorization for the CCVSCRPT program within TSO/E:
- Remove the program name CCVSCRPT from the AUTHPGM list of programs that are authorized when started using the CALL command.
- Remove the program name CCVSCRPT from the AUTHTSF list of programs that are authorized when started using the TSO/E service facility.
For example, edit the SYS1.PARMLIB member IKJTSOxx, and remove CCVSCRPT from the following two lists:
AUTHPGM NAMES(...CCVSCRPT...) AUTHTSF NAMES(...CCVSCRPT...)
SYS1.PARMLIB is a standard library name. However, your system might use a different naming convention: ask your system administrator. After editing IKJTSOxx members, activate your changes by issuing either of the following commands:
- SET IKJTSO=xx console command, or
- TSO PARMLIB UPDATE(xx) command
For more details on authorizing a program to TSO/E, see z/OSĀ®: TSO/E Customization.
- If the user's TSO logon procedures were modified to locate an
authorized CCVSCRPT module, undo the modification. Either:
- Remove the V5.2 SCCVAUTH library from the STEPLIB concatenation in the TSO logon procedure. If other data sets in the STEPLIB concatenation were made APF-authorized only to retain authorization for the SCCVAUTH library, consider removing APF authorization for those data sets.
- Remove or adjust the TSOLIB ACTIVATE command that adds the SCCVAUTH library to the TSO search order. This technique of adding APF-authorized libraries to the TSO search order is illustrated in the V5.2 SCCVSAMP sample CCVX0005. Sample CCVX0005 has been retained unchanged in V5.3, although it is no longer required.
