As a long time RACF guy, I have believed that although it would be a rare scenario to exploit this, Universal Access (UACC) will allow access to an 'MVS user' that is not necessarily RACF defined and hasn't been authenticated through RACF, yet Generic Userid (*) equates to 'any RACF defined user', which requires the task to be associated to a valid RACF userid. An possible example could be an RJE. Can anyone confirm and point to documentation to verify this? Or refute it if and reference docmentation?
Free Guide: Managing storage for virtual environments
Complete a brief survey to get a complimentary 70-page whitepaper featuring the best methods and solutions for your virtual environment, as well as hypervisor-specific management advice from TechTarget experts. Don’t miss out on this exclusive content!