All you have to do is specify AC=1 in the binder control statements, then have
your program promoted to an APF authorized library. It is the ICSF API that
requires the authorization. I think it is because you are trying to work with
the keys, not just the tokens.
Are you sure you really want to be adding, deleting, or changing keys?
Crypto keys are a *serious* hot button with auditors. The whole process end to
end has to be protected. Keys flowing in the open over a network are bound to
attract attention.
Of course, you may safely expect security and sysprogs to recoil in horror when
you ask for access to such a library (I certainly did when I was first asked).
Then you remind them that you will need both test and production libraries as
well as QA, depending on your site's policies.
BTW, we built a special set of load libraries and wrapped them in an extra
heavy security blanket.
HTH and good luck.
-----Original Message-----
From: IBM Mainframe Discussion List [mailto:[EMAIL PROTECTED] On Behalf Of De
La Fuente Seivane, Victor
Sent: Thursday, July 21, 2005 12:38 PM
To: [email protected]
Subject: Newbie doubt about Supervised State
Hello all!
As I write in the subject, I'm just a newbie. I'm sure what I'm going to ask
is obvious, but here I go...
I have a PL/I program trying to work with ICSF, and using one of the
functions (I don't remember which one) and I reached Return Code 8; Reason
Code 2068. It means I must execute the program in supervisor state or key 0.
What can I do to execute my program in Supervisor state?
Thanks all!
Best regards!
VĂctor de la Fuente Seivane
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
