The PC_AUTH statement controls whether the PowerExchange Listener uses APF authorization of programs that run its address space or uses the PowerExchange MVS Program Call (PC) services routine to acquire the authorization required to access z/OS system services that require supervisor state, such as RACF signon when the SECURITY=2,… statement is specified for the Listener.
z/OS
All
No
PC_AUTH={
N
|Y}
N
.
The PowerExchange Listener requires APF-authorization of DBMS load libraries. Concatenate APF-authorized copies of the DBMS load libraries in the STEPLIB DD statement of the PowerExchange Listener.
Y
. If you have user programs that do not require APF authorization, or if you do not want to maintain any APF-authorized PowerExchange copies of the DBMS load libraries, specify Y. This setting causes the PowerExchange Listener to disable APF authorization for the address space after startup and then use the PowerExchange-installed MVS Program Call (PC) services routine to access authorized system services that PowerExchange uses, such as RACF and some built-in functions. For Listener processes that need to access the DBMS load libraries, you must define the DBMS load libraries in the DTLLOAD DD statement, instead of in the STEPLIB DD statement. If you use netport jobs to access data, define the load libraries in the DTLLOAD DD statement of the netport JCL.
Default is N.
If you've added user programs to the IDMS/DB load library and do not want them to be APF-authorized, specify PC_AUTH=Y and also specify the non-APF-authorized load libraries in Listener DTLLOAD DD statement. You can use this strategy for other things that are not APF-authorized, such as tape data sets or user-defined programs invoked by the CallProg function in a data map.