Skip to Content
0
Former Member
Nov 27, 2009 at 09:04 AM

Note 931252 - Authority check for function group SRFC

260 Views

Dear All,

Does anyone have experience in implementing the above mentioned note on a operational system? We have set the parameter auth/rfc_authority_check to value "9", which resulted in an endless stream of short dumps (RFC_NO_AUTHORITY) on our test system.

Apparently when the parameter is set this way, not only the function group SRFC is being checked, but also ERFC, ARFC and SYST. Are there more function groups which are checked, which were not checked before, when you set this parameter to 9?

As it turns out (almost) all users are somehow - without knowing it - using the mentioned function groups. Are there default authorizations that any user should have? We want to limit the authorizations as much as possible; if we simply give everyone broad authorizations, it doesn't make sense to set the parameter. However, we're struggling with defining exactly what they should have.

Are there logs or trace files that we could analyze to find out which user groups are using these function groups and in which way?

Any advice would be very welcome.

Kind regards

Maaike Duchateau