I had configured my TCPIP to have
PORT
...
3023 TCP * SAF VERIFY ; COLIN PAICE
This says
- 3023 is the port number
- TCP for when the request is TCP ( and not UDP)
- * Any job
- SAF check with the SAF interface
- VERIFY. This is part of the RACF resource name.
I used X3270 to provide TLS sessions into z/OS. When TN3270 started (or was refreshed), I got
EZZ6035I TN3270 DEBUG CONFIG EXCEPTION
LINE: N/A MOD: EZBTMCVU
RCODE: 8020-00 Initialization of the Telnet Port failed.
PARM1: 0000102B PARM2: 3023 PARM3: 00000000
EZZ6038I TN3270 COMMAND OBEYFILE COMPLETE
EZZ6035I TN3270 DEBUG TASK EXCEPTION 766
TASK: MAIN MOD: EZBTZMST
RCODE: 1018-01 The Port task has ended in error.
PARM1: 0000102B PARM2: 00000BCF PARM3: 00000000
I could not find parm1 (0000102B) defined anywhere.
I defined the SERVAUTH profile EZB.PORTACCESS.*.*.* with fail WARN, and I got a message
ICH408I USER(TCPIP ) GROUP(OMVSGRP ) NAME(TCPIP
EZB.PORTACCESS.S0W1.TCPIP.VERIFY CL(SERVAUTH)
WARNING: INSUFFICIENT AUTHORITY – TEMPORARY ACCESS ALLOWED
FROM EZB.PORTACCESS...* (G)
ACCESS INTENT(READ ) ACCESS ALLOWED(NONE )
Where
- SOW1 is my z/OS system
- TCPIP is my TCPIP image name
- VERIFY – is the value in the TCPIP configuration file
With the RACF definition I did not get the error message.
I then defined a proper profile for it.
ColinPaice 