Message Class 0008 - EntireX ACI - Security Error

Security system not active: no authorization could be determined. Access denied.

Contact administrator of SAF security system.

User profile not defined to security system: access denied.

User has supplied incorrect password: access denied.

User's password has expired.

Supply existing and new password. Successful access will result in password change.

User has supplied an invalid new password: access denied.

Consult your site-specific rules governing passwords.

User access rejected by installation exit: access denied.

Determine whether your site specifies security rules.

User's access has been revoked - possible because of too many unsuccessful attempts: access denied.

Request user ID to be reset.

User is denied access at this time/date: access denied.

Contact security administrator to ensure that correct privileges are defined.

User is not permitted access to this resource: access denied.

Contact security administrator to ensure that correct privileges are defined.

Resource not defined to security system: access denied.

Contact security administrator to ensure that correct privileges are defined.

Users are not permitted to execute the application at the IP address where they is currently located. This applies only where IP address authorization is enabled.

Contact security administrator to ensure that correct privileges are defined.

The IP address where the user is currently located is not defined to the security system. This applies only where IP address authorization is enabled.

Contact security administrator to ensure that correct privileges are defined.

The user is not authorized to use the application that was defined with security-specific broker attribute APPLICATION‑NAME. See APPLICATION-NAME under Broker Attributes.

Ask your security administrator for permission to access the broker.

The security function in the Broker stub was unable to locate the SAFCFG module for processing security settings.

Assemble and link the SAFCFG module as described in the z/OS installation documentation. See Installing EntireX Security for Applications using Broker Stubs.

Internal error occurred.

Contact Software AG support.

Application must supply values 0 | 1 | 2 in ACI field ENCRYPTION-LEVEL.

Correct the application.

The application has supplied an incorrect value in ACI field CREDENTIALS-TYPE.

Correct the application.

User credentials are invalid.

Correct user credentials.

The value of this parameter supplied in the Broker attribute file is incorrect. Valid values are OS (authentication is performed agains local operating system) and ldapUrl (authentication is performed against LDAP repository).

Correct attribute file parameter SECURITY-SYSTEM under Broker Attributes. (This attribute was called AUTHENTICATION-TYPE in EntireX version 9.10 and below.)

SAF returns RACROUTE error codes: SSSSSSSS.

Determine cause of error using information listed below.

Security returns error code xx(yy).

Contact Software AG support

Either the user has not been defined, or the password does not match.

Verify the specified user ID / password for the LOGON command

Internal error occurred performing Client RPC Authorization.

Contact Software AG support.

Application has attempted to transfer control to a different thread, or process, without correctly transferring the necessary values of USER-ID, TOKEN and STOKEN.

The application transferring control must make values of USER-ID, TOKEN and STOKEN available to the application which is delegated to continue thread of execution.

Application has not correctly maintained the value of security token (STOKEN) in the EntireX Broker control block structure.

The application must maintain the value of STOKEN in order to securely communicate with Broker kernel without sending PASSWORD with each command.

If EntireX Security is enabled and the default user exit library usrsec is used, the additional library exxauthr must also be enabled.

Check your installation.

The resource is not defined. Access to service is rejected.

See information provided under Request Authorization under Configuration Options for Broker in the EntireX Security documentation for z/OS.

The user is not authorized to send a request to the specified service.

Check the list of defined users for this service (mainframe: EntireX SAF-based Security; UNIX/Windows: see Authorization Rules).

The Broker Security Server for BS2000 is not started.

Start the Broker Security Server.

EntireX Broker could connect to the EntireX BS2000 Security Server, but found the Server in status inactive.

Verify whether the Security Server task started correctly.

The Broker Security Server did not respond.

Verify whether the Security Server task started correctly. A Security Server trace may help to identify the problem.

Either the user ID is not defined or the password does not match.

Supply a valid user ID and password. A Security Server trace may be turned on to identify the exact reason why the authentication failed.

User credentials are invalid.

Correct user credentials.

The value of this parameter supplied in the Broker attribute file is incorrect.

Correct attribute file parameter AUTHENTICATION-TYPE.

The Assembler-written stubs support encryption only where the send buffer is less than approximately 32 KB of data. If encryption is requested and the send length is greater than 32 KB, the command cannot be processed by the stub and a response is given.

Do not specify encryption where the length of the send buffer is greater than 32 KB.