SEFM* - ADASAF SAF Interface and SAF Security Kernel Messages

This message should be ignored.

The security system determined that the user identified in the message ( user) does not have authorization for the resource listed in the message (resource). System return and reason codes are given in the hexadecimal string ssssssss. This message is displayed when access has been denied to a particular resource.

An unexpected response code (XX) was received from the SAF Security Kernel for the user identified in the message (user) when requesting function FF to be performed on the resource specified in the message (resource).

The SAF Security Kernel was not able to extract a list of protected program objects from the security system on behalf of Natural users.

Obtain a trace of SAF call RACROUTE EXTRACT from the security system and contact your technical support representative. ACF2 and Top Secret users should ensure that the protected programs have been extracted from the security system and supplied to the SAF Security Kernel via the SEFEXT DD statement in the daemon started task JCL.

The SAF Security Kernel returned the Adabas response code (XX) and subcode (xx) shown in the message to request FF for the user shown in the message (user).

Ensure that the SAF Kernel started task is active. Check its output for error messages. Take the necessary remedial action indicated by the Adabas response code.

Entire Net-Work SAF Security Interface (ADASAF) startup completed or the SAF Security Kernel initialized successfully.

No action is required for this informational message.

Entire Net-Work SAF Security Interface could not load the module listed in the message (module-name).

Ensure that the module is in the STEPLIB and that the region size is sufficient.

The SAF Security Kernel or the Entire Net-Work SAF Security Interface (ADASAF) were not able to allocate all the memory or storage required to satisfy the buffer size specified in its parameters. Operation continues.

Ensure that the region size is sufficient and the parameters are appropriate.

Entire Net-Work SAF Security Kernel or the SAF Security Interface (ADASAF) could obtain no storage or memory at system startup. Operation has terminated.

Operation has terminated.

Ensure that the region size is sufficient and system parameters are appropriate.

The SAF Security Kernel suffered an internal error. A general restart is performed and the operation continues.

Keep all information written to DDPRINT and contact your technical support representative.

The SAF Security Kernel was unable to logoff user from the security system. The SAF error code is ssssssss.

Contact your technical support representative.

The Natural SAF interface requires a larger value to be specidied for NSFSIZE.

Increase the Natural NSFSIZE parameter.

The Natural SAF interface could not acquire storage from the designated IDMSBUF.

Increase Natural region and/or thread size.

Internal problem in Natural SAF storage use.

Contact your technical support representative.

The Natural NSFSIZE parameter has not been specified.

Ensure NSFSIZE is set correctly in the Natural parameters.

The list of protected programs could not be returned from the SAF Security Kernel to Natural.

Ensure the same copy of the configuration module SAFCFG is used by all system components. Check that the GWSTYP parameter defined in SAFI010 and STY parameter in SAFI020 are both correctly set for the installed security system and that all installation requirements have been met.

The current Natural system files were not matched in the table defining all possible system file sets.

Ensure that the environment definitions in Natural Security are correct.

Possible reasons for error: Adabas link module installed into this component is not reentrant.

Interface could not identify table name for DBID/FNR of an SQL request.

Ensure interface is correctly installed, then contact your technical support representative.

Interface component could not determine the DBID/FNR associated with this SQL request.

Contact your technical support representative.

The interface is installed for operation with Entire Net-Work.

No action is required for this informational message.

The SAF Kernel will not permit user type T to operate using the currently installed options.

The stated error occurred when an SMF record was being written.

SAFPRINT=Y is set in SAFCFG, but no SAFPRINT dataset is defined.

The specified security class cccccccc has been configured to use FASTAUTH in SAFCFG. This message indicates the start of the RACLISTing process for this class.

No action is required for this informational message.

This message indicates RACLISTing has been successful for class cccccccc.

No action is required for this informational message.

This message indicates RACLISTing has failed for class cccccccc. The FASTAUTH option for this class cannot be honoured, authorization checks will be performed using RACROUTE REQUEST=AUTH (the default).

Refer to Adabas SAF Security > Adabas SAF Security Messages and Codes > SAF Return Codes for information on how to interpret the error code ssssssss.

This message indicates the signal listener has been successfully activated and is listening for ENF signal type xx.

No action is required for this informational message.

This message indicates the signal listener could not be activated for ENF signal type xx. The error code is eeeeeeee.

Contact your technical support representative.

This message indicates the signal listener has been successfully de-activated and is no longer listening for ENF signal type xx.

No action is required for this informational message.

This message indicates that signal listeners have been requested by configuration but there is an incompatibility between the Adabas SAF Security and the Adabas Limited Library (WAL) runtimes. The job continues to run, but without any active ENF Signal listeners.

Ensure Adabas SAF Security is at least version 8.4 SP1, and the Adabas Limited Library (WAL) is at least version 8.5 SP4 Patch level 1.

This message indicates a memory shortage when attempting to establish the signal listeners. The job continues to run, but without any active ENF Signal listeners.

Review the REGION size for the job. Review the SIGNQSZ parameter.

SAF daemon only. This message indicates that Adabas SAF Security in the daemon has been unable to cleanly terminate the ENF Signal listeners in response to a SSIGTERM command. The ENF Signal listeners are asynchronous processes that were likely busy at the time of termination.

Retry the SSIGTERM command at a later time

The interface component linked to Entire Net-Work displays the CPU ID of the host machine.

No action is required for this informational message.

The Entire Net-Work SAF Security Interface is active.

No action is required for this informational message.

Attempted illegal use of security request.

Contact your technical support representative.

Entire Net-Work SAF Security Interface (ADASAF) or the SAF Security Kernel received the operator command identified in the message.

No action is required for this informational message.

The operator command for general statistics was issued. Here is an example of the statistics messages produced for the SAF server:

SEFM901 * SAF SERVER - GENERAL STATISTICS (AT hhhhhhhh)
SEFM902 * RESOURCE    CHECK(+VE) CHECH(-VE) CHECK SAVED OVERWRITES LEN
SEFM903 * APPLICATION         1          0          0           0    8
SEFM903 * ADABAS              0          0          0           0   32
SEFM903 * SYSMAIN             0          0          0           0   13
SEFM903 * SYSTEM FILE         2          0          0           0   24
SEFM903 * PROGRAM             0          0          0           0   17
SEFM903 * BROKER              0          0          0           0   32
SEFM903 * NET-WORK            0          0          0           0    0
SEFM903 * SQL SERVER          0          0          0           0    0
SEFM904 * USERS - ACTIVE: 1 FREE: 55 OVEWRITES: 0

Here is an example of the statistics messages produced for the SAF Security Kernel:. The address in the first line is the address of the SAF Kernel's storage cache.

SEFM901 * SAF SECURITY KERNEL - SERVER STATISTICS (AT 12C47000)
SEFM902 * RESOURCE    CHECK(+VE) CHECH(-VE) CHECK SAVED OVERWRITES LEN
SEFM903 * APPLICATION        10          0          0           0    8
SEFM903 * DBMS CHECK          0          0          0           0   17
SEFM903 * SYSMAIN             0          0          0           0   21
SEFM903 * SYSTEM FILE         2          0          0           0   40
SEFM903 * PROGRAM             0          0          0           0   17
SEFM903 * BROKER              0          0          0           0   68
SEFM903 * NET-WORK            0          0          0           0   17
SEFM903 * SQL SERVER          0          0          0           0   32
SEFM904 * CACHED USERS:       1 HIGH WATERMARK:     1 MAX USERS:  5545
SEFM905 * OVERWRITES:         0 AUTHENTICATED:      0 DENIED:        0

No action is required for this informational message.

Various statistics for the SAF server and the SAF Security Kernel are displayed. See message SEFM901.

No action is required for this informational message.

The operator issued a command to shut down Entire Net-Work SAF Security Interface or the daemon started task (SAF Security Kernel). This message is also issued when a secure Adabas nucleus, Net-Work node or Adabas SQL server terminates.

No action is required for this informational message.

The operator issued a command to display a list of currently active users.

The following is a sample of the output produced for the SAF server:

SEFM910 * SAF SERVER - LIST ALL ACTIVE USERS
SEFM911 * USERID      CHECK(+VE) CHECH(-VE) CHECK SAVED OVERWRITES BUFF
SEFM912 * K11079              3          0          0           0   0

The following is a sample of the output produced for the SAF Security Kernel:

SEFM910 * SAF GATEWAY - LIST ALL ACTIVE USERS
SEFM911 * USERID CHECK(+VE) CHECH(-VE) CHECK SAVED OVERWRITES BUFF
SEFM912 * K11079         3          0          0           0   0

No action is required for this informational message.

The operator issued a command to display statistics specific to a currently active user.

The following is a sample of the output produced for the SAF server:

SEFM911 * NXB         CHECK(+VE) CHECH(-VE) CHECK SAVED OVERWRITES  BUFF
SEFM912 * APPLICATION         1          0          0           0    0
SEFM912 * DBMS CHECK          0          0          0           0    0
SEFM912 * SYSMAIN             0          0          0           0    0
SEFM912 * SYSTEM FILE         2          0          0           0    0
SEFM912 * PROGRAM             0          0          0           0    0
SEFM912 * BROKER              0          0          0           0    0
SEFM912 * NET-WORK            0          0          0           0    0
SEFM912 * SQL SERVER          0          0          0           0    0

The following is a sample of the output produced for the SAF Security Kernel:

SEFM911 * SJU         CHECK(+VE) CHECH(-VE) CHECK SAVED OVERWRITES  BUFF
SEFM912 * APPLICATION        10          0            0           0   10
SEFM912 * DBMS CHECK          0          0            0           0    0
SEFM912 * SYSMAIN             0          0            0           0    0
SEFM912 * SYSTEM FILE         2          0            0           0    2
SEFM912 * PROGRAM             0          0            0           0    0
SEFM912 * BROKER              0          0            0           0    0
SEFM912 * NET-WORK            0          0            0           0    0
SEFM912 * SQL SERVER          0          0            0           0    0

No action is required for this informational message.

No active users were found in Entire Net-Work SAF Security Interface (ADASAF) or in the SAF Security Kernel.

No action is required for this informational message.

The requested user was not found in the Entire Net-Work SAF Security Interface (ADASAF) or in the SAF Security Kernel.

No action is required for this informational message.

This message is issued in response to an SSNAP operator command and is followed by a sequence of SEFM916 messages.

No action is required for this informational message.

This message contains the results of an SSNAP command. Each SSNAP snaps up to 256 bytes and shows the address, the hexadecimal storage contents, and the interpretation.

No action is required for this informational message.

An attempt was made to snap storage outside the bounds of the SAF Kernel's cache.

A required parameter was omitted from an operator command. For example, SUSTAT with no userid specified.

Correct the operator command and try again.

This message is issued in response to an SHELP operator command and lists the available SAF Kernel operator commands.

No action is required. This message is informational.

The SAF Kernel was unable to obtain temporary storage (approximately 16Kb) to log users off in response to an SREST, SNEWCOPY or SLOGOFF operator command.

Increase the region size.

This message is issued in response to an SLOGOFF operator command. The indicated user has been logged off from the security system.

No action is required for this informational message.

This message is issued in response to an SLOGOFF operator command. The requested user could not be found in the SAF Kernel’s cache.

Verify the correct user ID was specified.

This message is issued in response to an SLOGOFF operator command. An internal error (indicated by ZZ) occurred while attempting to log the requested user off.

Evaluate the return code to determine the cause of the error.

The STRACE operator command was issued with an invalid trace setting.

Correct the trace setting and try again.

An invalid SAF Security Kernel operator command was entered.

Specify a valid SAF Security Kernel operator command.

When the ENF Signal Listener is active, this message is appended to the general statistics displayed by message SEFM901 as a result of an SSTAT or SREST command. Together with SEFM931, counts are displayed relating to the number of ENF Signal conditions which have resulted in an SREST operation being requested, since the time of the last completed SREST operation.

No action is required for this informational message.

When the ENF Signal Listener is active, this message is appended to the general statistics displayed by message SEFM901 as a result of an SSTAT or SREST command. Counts are displayed relating to the number of ENF Signal conditions which have resulted in an SREST operation being requested, since the time of the last completed SREST operation.

QUEUE FULL

The number of times a free entry in the ENF Signal Listener Queue could not be found.

ENF-nn

The number of times the ENF Signal Listener was unable to identify the signal type nn as belonging to a specific user.

No action is required for this informational message.