John, you mentioned: <quote> Of course, this is a lot of "overhead" and would likely cause upper level management to explode in rage and force me to put it in key 8 CSA unencrypted for "ease of use". </quote>
This wouldn't work indefinitely, as the Announcement for z/OS 2.3 indicated that 2.3 will be the last release to support ALLOWUSERKEYCSA(YES). I think the default was changed from YES to NO in z/OS 1.19 as a shot across the bow. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
