Hi, Found this on Servline23 :
How to deal with new z/OS parameter VSM ALLOWUSERKEYCSA(YES|NO) Introduction There is a new parameter ALLOWUSERKEYCSA(YES | NO) in the SYS1.PARMLIB member DIAGnn available with z/OS Version 1.8 and above. Please note that this is a global option for the complete z/OS system tha t the customer is running. The default value for this parameter in z/OS Version 1.8 is YES, but the documentation recommends specifying NO (which prevents user key CSA from being obtained), because user key CSA creates a security risk as any unauthorized program can modify it. Important: The default value for this parameter in z/OS Version 1.9 is NO. Setting the parameter to NO prevents user key CSA from being allocated by failing any attempt to obtain user key from a CSA subpool (through GETMAI N or STORAGE OBTAIN) with a B04-5C, B0A-5C, or B78-5C abend. There is a "Health Checker" check in z/OS Version 1.8 which warns the installation if it has not specified NO. This check is shipped as inactiv e in z/OS Version 1.8, and the customer can choose to activate it. Software AG Products Affected The following products are using KEY-8 storage in (E)CSA and are affected by parameter ALLOWUSERKEYCSA. Product Product Code Version Adabas Cluster Services ALS 7.4 and 8.1 Adabas Parallel Services ASM 7.5 and 8.1 Adabas Fastpath AFP 7.4 and 8.1 Adabas Vista AVI 7.4 and 8.1 Adabas Transaction Manager ATM 7.5 and 8.1 EntireX Communicator EXX 7.2 and 7.3 Natural NAT 4.1 and 4.2 Refer to the individual section for details: Adabas Cluster Services (ALS) Adabas Parallel Services (ASM) Adabas Fastpath (AFP) Adabas Vista (AVI) Adabas Transaction Manager (ATM) EntireX Broker Services (EBV) Natural (NAT) Adabas Cluster Services (ALS) For Adabas Cluster Services (ALS) Version 7.4.2 it is necessary to set th e parameter ALLOWUSERKEYCSA to YES when using the V7 SVC or the SVC deliver ed on the LX distribution that accompanied Adabas Parallel Services (ASM) 7. 5. When using the V8 SVC with any supported release of ALS or ASM, place an entry in the z/OS Program PropertiesTable (PPT) to run these programs in a system key (1-7). For more information refer to the release notes of thes e products. Adabas Parallel Services (ASM) For Adabas Parallel Services (ASM) Version 7.5.1 it is necessary to set t he parameter ALLOWUSERKEYCSA to YES when using the V7 SVC or the SVC deliver ed on the LX distribution that accompanied ASM 7.5. When using the V8 SVC with any supported release of ALS or ASM, place an entry in the z/OS Program PropertiesTable (PPT) to run these programs in a system key (1-7). For more information refer to the release notes of thes e products. Adabas Fastpath (AFP) ALLOWUSERKEYCSA(YES) is required. The next major release (Version 8.2) will introduce an option to avoid th e use of ECSA. Adabas Vista (AVI) ALLOWUSERKEYCSA(YES) is required. The next major release (Version 8.2) will no longer use ECSA. Adabas Transaction Manager (ATM) ALLOWUSERKEYCSA(YES) is required. The next major release (Version 8.2) will no longer use ECSA. EntireX Broker Services (EBV) ALLOWUSERKEYCSA(YES) is required. Natural (NAT) The usage of Natural Global Buffer Pools requires ALLOWUSERKEYCSA(YES). T he next release following Natural Version 4.2.4 will allow ALLOWUSERKEYCSA (NO). ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
