Security product considerations for refresh

When the management directory is refreshed for RACF for the very first time, a RACF a sysplex wide data set profile is created, if it does not exist, for msys for Setup, with universal access READ. If the data set profile exists, it is altered to set universal access READ. This is to avoid security violations during IPL when the msys for Setup parmlib is in the active parmlib concatenation.

If RACF is not used as the security product, you must make sure that the equivalent definition is made for the particular security product that is in use.

Related information: