RDEFINE MCICSPPT * UACC(READ) ...
This profile applies to any authorization request for programs not covered by one of the specific profiles. RACF processing logic is such that the most specific profile for any given resource name is always used.
Note that to determine whether a profile is generic, you need only check if 'G' appears after the name of the profile when it is listed with RLIST or SEARCH. For example:
SEARCH CLASS(TCICSTRN)
C*
CED% (G)
** (G)
The above output shows that both CED% and ** are generic
profiles. The C* profile is not generic because it is not followed by (G).
This could have occurred if the C* profile was created before generic profiles
had been enabled with a SETROPTS command. The C* profile can be deleted and
redefined as a proper generic profile as follows:SETROPTS NOGENERIC(TCICSTRN)
SETROPTS NOGENCMD(TCICSTRN)
RDEL TCICSTRN C*
SETROPTS GENERIC(TCICSTRN)
RDEFINE TCICSTRN C* UACC(NONE)