Hi Lionel, (cross-posted IBM-MAIN and MVS-OE)
Here are a couple of things to keep in mind.
1) I've found it necessary to specify the path as /* with the find command.
2) Check the extended ACLs too if there are any.
find path -acl_nouser
find path -acl_nogroup
3) As an alternative to the find command, consider using IBM's IRRHFSU utility
for this task. Our presentation on this utility, which includes a sample
ICETOOL job for this very task, is available on our website.
http://www.rshconsulting.com/racfres.htm
4) If there is a USERID assigned an Owner or ACL UID, but the USERID's Default
Group does not have a GID, find will consider the UID as being unassigned. Same
with the ls command and IRRHFSU. Verify a UID is truly unassigned before
changing it.
2) If this is a RACF installation, to avoid an SMF tsunami do not execute find
or IRRHFSU for the entire file system with a USERID having the UAUDIT attribute.
Regards, Bob
Robert S. Hansel
Lead RACF Specialist
RSH Consulting, Inc. *** Celebrating our 25th Year ***
617-969-8211
www.linkedin.com/in/roberthansel
http://twitter.com/RSH_RACF
www.rshconsulting.com
----------------------------------------------------------------------------
Upcoming RSH RACF Training - WebEx
- RACF Audit & Compliance Roadmap - FEB 5-9, 2018
- RACF Level I Administration - DEC 5-8, 2017
- RACF Level II Administration - NOV 13-17, 2017
- RACF Level III Admin, Audit, & Compliance - OCT 2-6, 2017
- RACF - Securing z/OS UNIX - OCT 23-27, 2017
----------------------------------------------------------------------------
-----Original Message-----
Date: Fri, 1 Dec 2017 15:51:02 +0000
From: "Dyck, Lionel B. (TRA)" <[email protected]>
Subject: Re: Finding OMVS Files with Owner IDs for Deleted Owners?
Thank you - that is just what I need.
--------------------------------------------------------------------------
Lionel B. Dyck <sdg><
Mainframe Systems Programmer - TRA
-----Original Message-----
From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf
Of Styles, Andy (ITS zPlatform Services)
Sent: Friday, December 01, 2017 9:49 AM
To: [email protected]
Subject: [EXTERNAL] Re: Finding OMVS Files with Owner IDs for Deleted Owners?
Classification: Public
Assuming their id has been deleted:
find . -nouser
-rw-r--r-- 1 5 XXXXXXXX 10 Jul 17 09:09 test.txt
Where '5' is the id of the deleted user (actually just me issuing chown 5
test.txt - but users without ids show up as numerics in ls).
01/12/17 15:45:50 /u/xxxxxxx $ find . -nouser
./test.txt
There's a -nogroup equivalent too.
Andy Styles
z/Series Systems Programmer
-----Original Message-----
From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf
Of Dyck, Lionel B. (TRA)
Sent: 01 December 2017 15:33
To: [email protected]
Subject: Finding OMVS Files with Owner IDs for Deleted Owners?
-- This email has reached the Bank via an external source --
Is there a tool that can find and report out all files that are owned by users
who have departed?
Just ran into a few that were owned by someone who left several years ago.
Thank you
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
