The user that signed on following IPL has *SECOFR user class and special authorities equal to QSECOFR. Why doesn't he have authorization to this user library, and how do I provide authorization?
To determine the cause of the issue, look in the audit journal (QAUDJRN) for an authority failure (AF) message where the object name is the name of the library. There may be enough information provided by running the DSPAUDJRNE command to solve the problem.
It is possible that the failure is for a profile that you are not expecting to be running the process. If DSPAUDJRNE does not provide enough information, send the contents of the audit journal to an outfile and query it by using the CPYAUDJRNE command.
Dig Deeper on iSeries system and application security
Related Q&A from Carol Woodbury
Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old ... Continue Reading
When error messages arise concerning attempts to use a permanent system object without authority, find the source of the issue by looking for an AF ... Continue Reading
The UPPWEI field corresponds to the password expiration interval field, and its values "0" and "-1" represent the *SYSVAL and *NOXMAX commands. Continue Reading