Hi Lizette - We used to meticulously go through the SCHEDxx defaults and carefully "nullify" any entries for products that we were not using, but it just became an administrative and logistical headache. So, after some amount of research and internal discussion, we finally decided that this really wasn't an issue because unless somebody were to install a program into an APF-authorized library (...you do restrict and monitor that, right...?) with the same name as that in the PPT, the entry in the PPT wouldn't be any more of a risk than any other program that could get linked into an APF-authorized library. See the discussion in the section entitled "Auditors: Check the PPT" in:
https://www.rshconsulting.com/racftips/RSH_Consulting__RACF_Tips__April_2013.pdf ...at least that was *our* thinking on this. Larre Shiller US Social Security Administration “The opinions expressed in this e-mail are mine personally and do not necessarily reflect the opinion of the US Social Security Administration and/or the US Government.” ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
