CICS Transaction Server for z/OS

6.1

Configuring CICS

IBM
 Note
Before using this information and the product it supports, read the information in Product Legal Notices.

This edition applies to the IBM® CICS® Transaction Server for z/OS®, Version 6 Release 1 (product number 5655-
YA15655-BTA ) and to all subsequent releases and modifications until otherwise indicated in new editions.
The IBM CICS Transaction Server for z/OS, Version 6 Release 1 may be referred to in the product and documentation as
CICS Transaction Server for z/OS, 6.1 .
© Copyright International Business Machines Corporation 1974, 2022.
US Government Users Restricted Rights – Use, duplication or disclosure restricted by GSA ADP Schedule Contract with
IBM Corp.
Contents

About this PDF......................................................................................................xi

Chapter 1. CICS topology....................................................................................... 1

What is a single CICS region?...................................................................................................................... 1
The roles of a CICS region in a CICSplex.....................................................................................................2

Chapter 2. How it works: CICS resources................................................................3

How you can define CICS resources............................................................................................................5
CEDA, EXEC CICS CSD, and DFHCSDUP command summary..................................................................10
Shared resources for intercommunication................................................................................................13
Security of resource definitions.................................................................................................................13

Chapter 3. How it works: CICS storage................................................................. 17

Terms to understand about CICS storage................................................................................................. 17
CICS virtual storage................................................................................................................................... 19
CICS dynamic storage areas (DSAs)..........................................................................................................21
CICS subpools in the CDSA.................................................................................................................. 26
CICS subpools in the SDSA.................................................................................................................. 27
CICS subpools in the RDSA.................................................................................................................. 28
CICS subpools in the PCDSA................................................................................................................28
CICS subpools in the PUDSA................................................................................................................29
CICS subpools in the ECDSA................................................................................................................29
CICS subpools in the EPCDSA..............................................................................................................42
CICS subpools in the EPUDSA............................................................................................................. 43
CICS subpools in the ESDSA................................................................................................................ 43
CICS subpools in the ERDSA................................................................................................................44
CICS subpools in the GCDSA............................................................................................................... 44
CICS subpools in the GSDSA................................................................................................................46
MVS storage............................................................................................................................................... 46
MVS common area................................................................................................................................48
MVS private area...................................................................................................................................50
Where JVM storage is located................................................................................................................... 53
What CICS uses virtual storage for............................................................................................................53
CICS facilities that use 64-bit storage.................................................................................................54
How you can protect storage.....................................................................................................................57
Storage protection................................................................................................................................57
Transaction isolation............................................................................................................................ 58
Command storage protection.............................................................................................................. 61
Reentrant program storage protection................................................................................................ 62
Instruction execution protection......................................................................................................... 62
How you can monitor CICS storage...........................................................................................................63

Chapter 4. Setting up shared data sets, CSD and SYSIN........................................ 65

Planning your CSD configuration............................................................................................................... 65
Calculating CSD disk space....................................................................................................................... 66
Initializing the CSD.....................................................................................................................................67
Creating a larger CSD............................................................................................................................69
Defining CSD attributes..............................................................................................................................69
Shared user access from the same CICS region....................................................................................... 70
Sharing user access from several CICS regions.................................................................................. 70

iii
 Multiple users of the CSD within a CICS region (non-RLS)....................................................................... 71
Sharing a CSD by CICS regions within a single MVS image (non-RLS)..................................................... 71
Sharing a CSD in a multi-MVS environment (non-RLS).............................................................................72
Multiple users of one CSD across CICS or batch regions (non-RLS)........................................................ 72
Sharing the CSD between different releases of CICS............................................................................... 73
Sharing the CSD between CICS regions that use Db2.........................................................................74
CICS-supplied compatibility groups.................................................................................................... 74
Other factors restricting CSD access.........................................................................................................74
Differences in CSD management between RLS and non-RLS access...................................................... 75
Specifying read integrity for the CSD................................................................................................... 75
Specifying file control attributes for the CSD............................................................................................75
Effect of RLS on the DFHCSDUP utility......................................................................................................76
Planning for backup and recovery............................................................................................................. 76
Transaction backout during emergency restart...................................................................................79
Dynamic backout for transactions....................................................................................................... 79
Other recovery considerations.................................................................................................................. 79
CEDA command syncpoint criteria...................................................................................................... 79
Accessing the CSD by DFHCSDUP....................................................................................................... 80
Logging RDO commands............................................................................................................................80
Logging SPI commands............................................................................................................................. 81
Making the CSD available to CICS............................................................................................................. 82
Installing the RDO transactions........................................................................................................... 83
Installing definitions for the Japanese language feature....................................................................83

Chapter 5. Setting up a CICS region......................................................................85

Defining data sets...................................................................................................................................... 85
Setting up CICS data sets.....................................................................................................................85
Setting up temporary storage data sets.............................................................................................. 92
Setting up data sets for transient data................................................................................................ 94
Setting up CICS log streams................................................................................................................ 98
Setting up the catalog data sets........................................................................................................ 109
Setting up auxiliary trace data sets................................................................................................... 118
Defining dump data sets.................................................................................................................... 120
Defining user files...............................................................................................................................125
Defining the CDBM GROUP command data set.................................................................................135
Defining the CMAC messages data set.............................................................................................. 137
Defining the WS-AT data set.............................................................................................................. 138
Setting up the debugging profiles data sets......................................................................................139
Encrypting data sets.......................................................................................................................... 143
Specifying CICS system initialization parameters.................................................................................. 146
System initialization parameters to set up a CICS region.................................................................147
Specifying DFHSIT macro parameters.............................................................................................. 152
The default system initialization table...............................................................................................155
Assembling the SIT............................................................................................................................ 163
Selecting versions of CICS programs and tables.............................................................................. 163
Processing system initialization parameters.......................................................................................... 165
Supplying system initialization parameters to CICS......................................................................... 165
Using system initialization control keywords.................................................................................... 165
Controlling start and restart...............................................................................................................169
Retrieving information about system initialization parameters used at system startup.......................176
Specifying feature toggles....................................................................................................................... 177
Setting up a common configuration file.............................................................................................179
Setting up a region-level configuration file........................................................................................179
CICS startup.............................................................................................................................................180
Setting address space storage limits for a CICS region.................................................................... 181
Using the sample startup job stream................................................................................................ 182
A sample CICS startup procedure..................................................................................................... 191

iv
 Preparing your CICS region for debugging..............................................................................................192
Starting CICS regions...............................................................................................................................193
Specifying system initialization parameters before startup............................................................. 194
Starting CICS as a batch job.............................................................................................................. 195
Starting CICS as a started task.......................................................................................................... 195
Overriding system initialization parameters during startup............................................................. 197
System console messages for CICS startup......................................................................................198
CICS Transaction Server resource usage collection for software pricing.........................................202

Chapter 6. Setting up CICS data sharing servers................................................. 203

Defining and starting AXM system services............................................................................................ 203
Setting up and running a temporary storage server............................................................................... 204
Overview of the temporary storage data sharing server...................................................................204
Defining temporary storage pools for temporary storage data sharing........................................... 205
Defining TS server regions................................................................................................................. 207
Queue server automatic ALTER processing...................................................................................... 214
Shared TS queue server commands..................................................................................................214
Unloading and reloading queue pools............................................................................................... 216
Setting up and running a coupling facility data table server.................................................................. 218
Overview of a coupling facility data table server.............................................................................. 218
Coupling facility data tables.............................................................................................................. 219
Defining and starting a coupling facility data table server region.................................................... 224
Controlling coupling facility data table server regions......................................................................233
Deleting or emptying coupling facility data table pools....................................................................239
Unloading and reloading coupling facility data table pools.............................................................. 239
Setting up and running a region status server........................................................................................ 241
Defining a list structure...................................................................................................................... 242
Starting a region status server...........................................................................................................244
Controlling region status servers.......................................................................................................245
Deleting region status server pools................................................................................................... 251
Setting up and running a named counter server.....................................................................................251
Named counter server overview........................................................................................................252
Defining a named counter options table........................................................................................... 254
Defining a list structure for a named counter server.........................................................................256
Defining and starting a named counter server region.......................................................................257
Controlling named counter server regions........................................................................................ 262
Deleting or emptying named counter pools...................................................................................... 264
Changing the size of named counter pools....................................................................................... 265
Unloading and reloading named counter pools................................................................................ 265
Dumping named counter pool list structures....................................................................................266
Coupling facility server operations..........................................................................................................267
Monitoring coupling facility server messages................................................................................... 267
Coupling facility storage management.............................................................................................. 268
Managing the pool structure.............................................................................................................. 269
Server connection management........................................................................................................270
CICS server support for system-managed processes............................................................................ 272
System-managed list structure rebuild.............................................................................................273
System-managed list structure duplexing........................................................................................ 274

Chapter 7. Defining resources............................................................................ 275

Defining resources with DFHCSDUP....................................................................................................... 275
Automating the process of defining CICS application resources with CICS Transaction Server
resource builder............................................................................................................................ 276
Sharing the CSD between CICS Transaction Server for z/OS, Version 6 Release 1 and earlier
releases......................................................................................................................................... 278
Sample job for invoking DFHCSDUP as a batch program..................................................................278
Autoinstall................................................................................................................................................280

v
 Autoinstalling z/OS Communications Server terminals.................................................................... 280
Autoinstalling MVS consoles..............................................................................................................290
Autoinstalling APPC connections...................................................................................................... 293
Autoinstalling IPIC connections........................................................................................................ 296
Autoinstalling programs, map sets, and partition sets..................................................................... 296
Autoinstalling model terminal definitions......................................................................................... 300
Autoinstalling journals....................................................................................................................... 300
Defining CICS resources with macros.....................................................................................................300
Format of macros............................................................................................................................... 301
Defining control tables to CICS..........................................................................................................302
Assembling and link-editing control tables: the DFHAUPLE procedure...........................................304
Defining CICS bundles.............................................................................................................................307
Artifacts that can be deployed in bundles.........................................................................................309
Characteristics of resources in CICS bundles................................................................................... 314
Referencing zFS artifacts in a bundle................................................................................................ 320
Private resources for application versions........................................................................................ 321
Manifest contents for a CICS bundle................................................................................................. 327
Scoping of bundles.............................................................................................................................330
OSGi bundle recovery on a CICS restart............................................................................................332
Security for bundles........................................................................................................................... 333
Variables in a CICS project.................................................................................................................335
Variables and properties files definition............................................................................................337
Defining terminal resources.................................................................................................................... 338
Defining z/OS Communications Server terminals............................................................................. 338
Defining sequential (BSAM) devices..................................................................................................340
Defining console devices................................................................................................................... 342
Defining z/OS Communications Server persistent sessions support............................................... 345
Installing CICS resource definitions....................................................................................................... 346
What happens when CICS is initialized............................................................................................. 346
What happens when you use the INSTALL command...................................................................... 347
How to install a limited number of data definitions.......................................................................... 348
Duplicate resource definition names.................................................................................................348
Installing ATOMSERVICE resource definitions..................................................................................349
Installing connection definitions....................................................................................................... 349
Installing Db2 connection definitions................................................................................................350
Installing Db2 entry definitions......................................................................................................... 351
Installing Db2 transaction definitions............................................................................................... 352
Installing enqueue model definitions................................................................................................352
Installing file definitions.................................................................................................................... 353
Installing IPCONN definitions............................................................................................................353
Installing a LIBRARY resource definition by using CEDA..................................................................353
Installing partner definitions............................................................................................................. 354
Installing sessions definitions........................................................................................................... 354
Installing transient data queue definitions....................................................................................... 355
Installing terminal definitions............................................................................................................356
Installing URIMAP resource definitions............................................................................................ 357
Installing WEBSERVICE resource definitions....................................................................................358
Overriding resource definitions............................................................................................................... 358
How it works: resource definition overrides......................................................................................358
Setting up a resource overrides configuration file............................................................................ 363
Enabling resource definition overrides..............................................................................................373
Applying resource definition overrides .............................................................................................373
Monitoring resource definition overrides ..........................................................................................375

Chapter 8. Configuring shared data tables.......................................................... 377

Planning to use data tables..................................................................................................................... 377
Performance of a CICS-maintained data table................................................................................. 377

vi
 Performance of a user-maintained data table.................................................................................. 377
Storage use for shared data tables....................................................................................................377
MVS JCL requirements when using shared data tables....................................................................379
Selecting files for use as data tables................................................................................................. 379
Using statistics to select data tables.................................................................................................380
Security checking for data tables...................................................................................................... 383
Preparing to use shared data tables support.................................................................................... 384
Resource definition for data tables......................................................................................................... 385
Resource definition for CICS-maintained data tables...................................................................... 386
Resource definition for user-maintained data tables....................................................................... 386
The DEFINE FILE command defines data tables........................................................................... 387
EXEC CICS commands for data tables.............................................................................................. 390
CEMT commands for data tables.......................................................................................................391

Chapter 9. Setting up a platform........................................................................ 393

Designing a CICS platform.......................................................................................................................394
Preparing zFS for platforms.....................................................................................................................397
Creating a platform.................................................................................................................................. 399
Deploying a platform............................................................................................................................... 400

Chapter 10. Setting up CMCI.............................................................................. 403

Setting up CMCI with CICSPlex SM......................................................................................................... 403
Configuring CMCI with CMCI JVM server in a WUI region................................................................ 404
Converting a WUI region with basic CMCI to use CMCI JVM server.................................................408
Setting up for multiple CMCI JVM servers in a CICSplex..................................................................411
Record count warnings for CMCI in a CICSplex................................................................................ 412
Defining a client allowlist to CMCI JVM server in a CICSplex........................................................... 414
Setting up CMCI in a single CICS region................................................................................................. 416
Specifying CMCI and TCP/IP options for the SMSS...........................................................................420
Configuring the CMCI JVM server for the CICS bundle deployment API...............................................421
Configuration parameter mapping between WUI or SMSS region and CMCI JVM server..................... 423
Estimating storage requirements for CMCI............................................................................................ 427

Chapter 11. Setting up event processing.............................................................431

Chapter 12. Configuring the Link3270 bridge...................................................... 433

Defining Link3270 system initialization parameters.............................................................................. 433
Defining the bridge facility ......................................................................................................................433
Defining the facility............................................................................................................................ 433
Defining the bridge facility name....................................................................................................... 434
Defining a specific bridge facility name.............................................................................................436
Initializing the TCTUA.........................................................................................................................436
Accessing bridge facility properties.................................................................................................. 436

Chapter 13. Configuring EXCI.............................................................................441

Setting up EXCI for static routing............................................................................................................ 441
Setting up EXCI for dynamic routing....................................................................................................... 441
Defining connections to CICS..................................................................................................................442
CONNECTION resource definition for EXCI.......................................................................................442
SESSIONS resource definitions for EXCI connections......................................................................443
Inquiring on the state of EXCI connections.......................................................................................445
The EXCI user-replaceable module........................................................................................................ 446
Using the EXCI options table, DFHXCOPT.............................................................................................. 447

Chapter 14. Setting up and configuring CICS ONC RPC........................................453

Defining CICS ONC RPC resources to CICS.............................................................................................455

vii
 Transaction definitions for CICS ONC RPC transactions...................................................................455
Transaction definitions for extra alias transactions.......................................................................... 455
Program definitions for CICS ONC RPC programs.............................................................................455
Program definitions for user-written programs.................................................................................456
Program definitions for remote CICS programs................................................................................ 456
Mapset definition............................................................................................................................... 457
Transient data definitions.................................................................................................................. 457
XLT definitions.................................................................................................................................... 457
Configuring CICS ONC RPC using the connection manager................................................................... 457
Starting the connection manager...................................................................................................... 458
Using the connection manager BMS panels......................................................................................460
Updating CICS ONC RPC status......................................................................................................... 461
Enabling CICS ONC RPC.....................................................................................................................462
Defining, saving, modifying, and deleting 4-tuples...........................................................................464
Registering the 4-tuples.................................................................................................................... 468
Unregistering 4-tuples....................................................................................................................... 469
Disabling CICS ONC RPC....................................................................................................................471
Updating the CICS ONC RPC data set................................................................................................472
Processing the alias list......................................................................................................................476

Chapter 15. Configuring for recovery and restart.................................................479

Logging and journaling.............................................................................................................................479
Defining log streams to MVS.............................................................................................................. 480
Defining replication log streams........................................................................................................ 480
Defining system log streams..............................................................................................................480
Defining forward recovery log streams..............................................................................................487
Defining the log of logs.......................................................................................................................489
Effect of daylight saving time changes.............................................................................................. 490
Configuring for recovery of CICS-managed resources........................................................................... 491
Recovering resources in the Liberty JVM server............................................................................... 492
Recovery for transactions.................................................................................................................. 492
Recovery for files................................................................................................................................493
Recovery for intrapartition transient data......................................................................................... 499
Recovery for extrapartition transient data........................................................................................ 501
Recovery for temporary storage........................................................................................................ 502
Recovery for web services................................................................................................................. 503
Using a program error program (PEP)............................................................................................... 505

Chapter 16. Checking CICS configuration with IBM Health Checker for z/OS........509

Chapter 17. Migrating CICS to a Parallel Sysplex................................................ 511

Benefits of implementing CICS in a Parallel Sysplex............................................................................. 511
CICSplex, CICSPlex SM, and Parallel Sysplex........................................................................................ 512
Parallel Sysplex principles.......................................................................................................................513
CICS functions and components that directly exploit Parallel Sysplex technology.............................. 516
CICS log streams................................................................................................................................517
CICS coupling facility data tables...................................................................................................... 519
CICSPlex SM sysplex optimized workload management..................................................................519
XCF for MRO....................................................................................................................................... 519
Use of temporary storage pools.........................................................................................................520
Named counters.................................................................................................................................521
CICS functions and components that indirectly exploit Parallel Sysplex technology........................... 523
Db2 data sharing................................................................................................................................ 523
IBM MQ shared queues......................................................................................................................524
VSAM RLS........................................................................................................................................... 525
Networking......................................................................................................................................... 526
Other CICS functions and components that facilitate a Parallel Sysplex.............................................. 526

viii
 Planning for migrating CICS to a Parallel Sysplex.................................................................................. 528
Application affinities.......................................................................................................................... 528
CICS workload routing and management......................................................................................... 530

Chapter 18. Feature toggles............................................................................... 535

Notices..............................................................................................................537

Index................................................................................................................ 543

ix
x
About this PDF
This PDF describes how you set up CICS TS for z/OS. Other PDFs, listed below, describe the configuration
for certain areas of CICS and you might need to refer to those as well as this PDF. (In IBM Documentation,
all this information is under one section called "Configuring".) You are also likely to need the reference
companions to this PDF: the System Initialization Parameter Reference and the Resource Reference. Before
CICS TS V5.4, the information in this PDF was in the System Definition Guide and the Resource Definition
Guide.
Configuring information for areas of CICS is in the following PDFs:
• SOAP and JSON is in Web Services Guide .
• ONC/RPC interface is in the External Interfaces Guide .
• EXCI is in Using EXCI with CICS.
• Java and Liberty are in Java Applications in CICS.
• Front End Programming Interface is in the Front End Programming Interface User's Guide.
• Db2® is in Db2 Guide.
• DBCTL is in the IMS DB Control Guide.
• Shared data tables are in the Shared Data Tables Guide.
• CICSPlex SM is in CICSPlex SM Administration.
• BTS is in Business Transaction Services
• Connections between CICS systems is in the Intercommunication Guide
Reference information about the parameters used in CICS system initialization is in the System
Initialization Parameter Reference.
For details of the terms and notation used in this book, see Conventions and terminology used in the CICS
documentation in IBM Documentation.

Date of this PDF

This PDF was created on 2022-06-14 (Year-Month-Date).

© Copyright IBM Corp. 1974, 2022 xi

xii CICS TS for z/OS: Configuring CICS
Chapter 1. CICS topology
You can distribute CICS applications and the resources they use between interconnected CICS regions.
You can group CICS regions into CICS system groups and CICSplexes, and distribute regions across the
z/OS systems in a sysplex.

z/ OS system z/ OS system

CICSplex CICSplex

CICS system group CICS system group

CICS system group

CICS region CICS region CICS region CICS region CICS region CICS region CICS region CICS region

z/OS CICS

Figure 1. How CICS regions are organized in a sysplex

The following terms are used when discussing CICS topology:

Sysplex
A set of z/OS systems that communicate and cooperate with each other through multisystem
hardware components and software services.
CICS region
An named instance of CICS Transaction Server that runs in its own z/OS address space. A CICS region
can be started and stopped independently of other CICS regions.
A CICS region can be part of a CICSplex or a single CICS region that is not part of any CICSplex.
CICSplex
A grouping of CICS regions that is managed as a single entity. Each CICS region can belong to one
CICSplex only. A CICSplex can include CICS regions running on different z/OS systems in a sysplex.
CICS system group
A grouping of CICS regions in a CICSplex that can be managed as a single entity. A system group can
include CICS regions running on different z/OS systems. In a CICSplex, each CICS region can belong
to more than one system group, and system groups can be contained in other system groups.

What is a single CICS region?

A single CICS region is a CICS region that is not part of any CICSplex and hence not managed by CICSPlex
SM.
A single CICS region can take either of the following forms:
A stand-alone region
It is not part of a CICSplex and not managed by CICSPlex SM. It does not have support for any of
the CICS management client interface (CMCI) APIs either, so it cannot be administered or operated
through any HTTP client, including CICS Explorer®.

© Copyright IBM Corp. 1974, 2022 1

 A CICS System Management Single Server (SMSS)
It is not part of a CICSplex and hence not managed by CICSPlex SM. However, it is configured with
the CMCI so it can be administered through one or more of the CMCI APIs and CICS Explorer.
Depending on the type of CMCI that is configured with the region, different capabilities are available
for administering the region. For more information, see CICS management client interface (CMCI).

The roles of a CICS region in a CICSplex

In a CICSplex containing many CICS regions, it is convenient to assign regions to perform particular roles
for the applications that they support.
These roles are as follows:
Transport-owning region
A CICS region that connects a CICSplex to your communication network. Transaction requests
received by a transport-owning region are passed to an application-owning region for processing.
Terminal-owning region (TOR)
A CICS region that connects terminals and other devices, including printers, to the CICSplex.
Transaction requests received by a terminal-owning region are passed to an application-owning
region for processing.
Application-owning region (AOR)
A CICS region that manages application programs. Requests for data are passed to a data-owning
region.
Data-owning region
A CICS address space that manages access to files and databases.
File-owning region (FOR)
A CICS address space that manages access to files. A file-owning region is a specific type of data-
owning region.
All CICS regions can perform all the roles and, in some cases, it is appropriate to combine some of the
roles in one region.
When a CICSplex is managed by CICSPlex SM, the CICS region might also act as a MAS or CMAS, or be
configured with a WUI server, in the CICSPlex SM environment. For more information, see The CICSPlex
SM environment.

2 CICS TS for z/OS: Configuring CICS

Chapter 2. How it works: CICS resources
For CICS to support such a great range of businesses and types of applications, it must be flexible. A
key part of CICS flexibility is the way that it defines and processes the resources that it needs and how
resources are defined and managed separately from the applications that use them.

What is a CICS resource?

CICS identifies a set of elements that are used by itself or by applications as resources. For example,
some resources are used by applications, such as files, data queues, and web services. Some resources
define communication, such as connections, sessions, and URI maps. Other resources define system
resources, such as journaling and the JVM server environment. CICS supplies a set of resources that must
be installed on your CICS region and definitions of the resources that are used by the sample application
programs (see Supplied resource definitions, groups, and lists). Other resource definitions are up to you.
You can see a complete list of resources in here.
Each instance of a resource needs to be defined to CICS in a resource definition. CICS provides a number
of ways for you to create and modify resource definitions. These methods are described in How you can
define CICS resources. After a resource definition is created, it must be installed for CICS to be able to use
it.
In this documentation, CICS resource definitions are normally shown in uppercase: for example,
WEBSERVICE.
You define and modify resources with a set of attributes. The attributes are the properties of the resource,
telling CICS, for example, whether a file can be updated, what security level should be given to a
transaction, or the remote systems with which CICS can communicate.

How CICS uses resources

You define the resource using one of a number of available methods. These methods, and the interfaces
that control them, are described in How you can define CICS resources.
The resource definition is stored in a repository, according to the method of resource definition that you
used. See “Where resource definitions are held” on page 3.
You install (or deploy, for CICS bundles) the resource definition to make it available for CICS to use. When
a resource definition is installed or deployed, information about the resource is used to construct the
data structures that represent the resource in the CICS address space. Find out more about installing
resources in Resource definition installation.
You can modify installed resource definitions, again using one of a number of available methods. Find out
more about this in How it works: resource definition overrides.

Where resource definitions are held

The repository for the resource definition depends on how it is defined.
CICS system definition file
The CICS system definition data set (CSD) is a VSAM data set that contains a resource definition
record for every resource that is defined to CICS through CEDA, CICS Explorer, the CSD update
batch utility program DFHCSDUP, or EXEC CICS CSD commands. The CSD is defined to CICS as
a VSAM file called DFHCSD, so in CICS documentation, the terms CICS system definition data set
(CSD), CICS system definition file (CSD), CSD file, DFHCSD file and CSD mean the same and are used
interchangeably.
Resources in the CSD can be organized into groups and lists.
You can change the contents of the CSD without interfering with a running CICS region that uses
the CSD. When you install the definitions in the CICS region, CICS copies the information from the

© Copyright IBM Corp. 1974, 2022 3

 CSD and keeps it in its own storage. You can also change the definitions in the running region by
reinstalling them, or add more definitions by installing new resources. You can define the CSD file as
recoverable, so that changes that are incomplete when an abend occurs are backed out. You can also
share a CSD file and its resource definitions with different CICS regions, including regions at different
releases.
Following initialization, the CSD file contains two categories of resource definition groups:
1. Groups named in DFHLIST: these are essential for using Resource Definition Online (RDO) and
other CICS transactions.
2. Groups of definitions for the sample application programs. For details, see Sample application
program groups.
For information, see Setting up the CICS system definition data set.
CICSPlex SM data repository
The data repository is a VSAM key-sequenced data set (KSDS) that is created for each CMAS, using
a CICSPlex SM post-installation job. Resource definitions that are created through CICSPlex SM
Business Application Services (BAS) are stored here.
For information, see Creating the CICSPlex SM data repository.
The global catalog
The global catalog is a VSAM key-sequenced data set (KSDS) that CICS uses to save all resource
definitions that were installed when CICS shut down. Resource definitions that are created with
EXEC CICS CREATE commands and resource definitions that are amended with resource definition
overrides are recorded in the CICS global catalog.
For information, see Defining the global catalog.
z/FS
z/OS File System (zFS) is the primary type of z/OS UNIX file system and is widely used with CICS.
zFS is part of the Distributed File Service base element of z/OS. CICS support for Java, Node.js, Web
services, and feature toggles all store some of their configuration files in zFS. Bundles and some
other artifacts in application deployment are used from zFS and some applications, such as Java and
Node.js, store logs there.
Resource control tables
For CICS system initialization, you configure a system initialization table (SIT) and, through the SIT,
CICS selects other control tables. Each control table is created separately and can be re-created
at any time before system initialization. You prepare the required control tables by coding the
appropriate macros. Resources that cannot be defined in the CSD are held in CICS control tables.
See Defining resources in CICS control tables.

Organizing resources: bundles, groups and lists

Resource definitions that are held on the CICS system definition (CSD) file are organized into groups and
lists. A CICS bundle is a type of resource that provides a way of grouping and managing related resources,
for example, all the resources that are used by a version of an application.
CICS bundle
A CICS bundle is a directory that contains artifacts and a manifest that describes the bundle
and its dependencies. CICS bundles provide a way of grouping and managing related resources.
CICS bundles also provide versioning for the management of resource updates, and can declare
dependencies on other resources outside the bundle. Some characteristics of CICS resources change
when they are defined in a CICS bundle and dynamically created as part of a bundle deployment. The
life cycles of CICS resources that are created in this way cannot be managed independently of the
BUNDLE resource; they must be managed through the CICS bundle as a unit.
Group (CSD resources only)
A group is a collection of related resources on the CSD. Each resource that you define must belong
to a group; you cannot define a resource without naming the group. You can choose how to define
the group, but typically you might associate the resources for one application into a group. You might

4 CICS TS for z/OS: Configuring CICS

 group communication resources by location or by application. There can be only one resource of a
particular type and name in a group. For example, you cannot have two transactions named AP01 in
the same group.
List (CSD resources only)
A list contains the names of CSD resource groups that CICS installs at an initial or cold start. Groups
are associated with a list to provide a collection of the CSD resources that are needed for one CICS
region or execution. When the region starts, it can install resources from up to four lists that you
specify in the startup parameters. You can add groups to lists if you want them installed at an initial or
cold start, or if it helps you to manage your groups better. Groups do not have to belong to lists, and
can be defined independently. The same group can be placed in several lists.
CICS provides definitions for its own resources, such as the testing and resource management
transactions, in a list called DFHLIST. DFHLIST is normally part of your startup list for any region.

How you can define CICS resources

You can define CICS resources using the CICS Explorer, CICS bundles, CICSPlex SM Business Application
Services, resource definition online (RDO), CICS system programming commands, the CSD update batch
utility program DFHCSDUP, autoinstall, or macro resource definition. Compare the relevant methods of
resource definition to choose which way to define each of your CICS resources.
Resource definitions can be stored in the following repositories:
• The CICS system definition data set (CSD) for the CICS region
• The CICSPlex SM data repository
• zFS (the z/OS UNIX file system), for CICS bundles
• Control tables in a program library, for macro resource definition
Certain interfaces can be used to work with resource definitions in each of these repositories. Some CICS
resource types are not supported by some interfaces and some repositories.
You can use the following interfaces to define CICS resources:
CICS Explorer
You can use the CICS Explorer to define, install, and manage resources. If CICS Explorer is connected
to a CICS system, definitions are stored in the CICS system definition (CSD) file, and are installed into
an active CICS system from the CSD file. If CICS Explorer is connected to CICSPlex SM, definitions
are stored in the CICSPlex SM data repository and can be installed either automatically, during CICS
initialization, or dynamically, into a running CICS system.
Bundles
You can define and package resources in a CICS bundle using the CICS Explorer or IBM Developer
for z/OS. CICS creates the resources dynamically when the bundle is deployed, and you manage their
lifecycle through the CICS bundle as a single unit in the CICS system. The CICS bundle can also
specify any system resources that are required in the CICS regions where the bundle is deployed. You
can deploy a CICS bundle individually to a CICS region as a standalone bundle, or you can use it as
part of an application bundle that is deployed to a platform, or you can deploy it directly to a platform.
For information about CICS bundles, see Defining CICS bundles.
CICSPlex SM Business Application Services
You can use CICSPlex SM Business Application Services (BAS) to define and manage resources.
Definitions are stored in the CICSPlex SM data repository and can be installed either automatically,
during CICS initialization, or dynamically, into a running CICS system. For information about CICSPlex
SM BAS, see Administering BAS.
Resource definition online (RDO)
This method uses the supplied online transactions CEDA, CEDB, and CEDC, which allow you to define,
alter, and install resources in a running CICS system. Definitions are stored in the CSD file, and are
installed into an active CICS system from the CSD file. This method updates resources on the CSD file,
which means you can define, alter, and install resources in a running CICS system. For information
about RDO using the CEDA transaction, see Resource management transaction CEDA commands.

Chapter 2. How it works: CICS resources 5

 System programming, using the EXEC CICS SPI commands
You can use the EXEC CICS CREATE commands, and the EXEC CICS FEPI INSTALL commands
for FEPI resources, to create resources independently of the CSD file. For further information, see
Using EXEC CICS CREATE commands to define resources.
System programming, using the EXEC CICS CSD commands
You can use the EXEC CICS CSD commands to manage resource definitions in the CSD file from a
user-written program. The EXEC CICS CSD commands can perform all the functions of CEDA except
CEDA CHECK.
CSD update batch utility program DFHCSDUP
DFHCSDUP is an offline utility that allows you to define, list, and modify resources using a batch
job. DFHCSDUP can be invoked as a batch program or from a user-written program running either in
batch mode or under TSO. Using the second method, you can specify up to five user exit routines
within DFHCSDUP. You can use the DFHCSDUP utility to make changes to definitions in the CSD file.
The definitions are stored in the CSD file. For information about the DFHCSDUP utility, see Defining
resources with DFHCSDUP.
CICS Transaction Server resource builder
CICS Transaction Server resource builder is a DevOps utility, complementary to DFHCSDUP, that
provides CICS application developers with a guided and controlled experience for creating and
modifying CICS resource definitions that meet application and system standards and are pre-
approved by CICS system programmers. Application resources that are defined with CICS resource
builder are output to a DFHCSDUP commands file to be consumed by the DFHCSDUP utility, which
runs to update the CSD for a CICS region.
CICS resource builder provides a way to automate the process of defining CICS application resources
by using a configuration-as-code approach. With this approach, CICS application resource definitions
are stored with the application code, and application developers have a quicker turnaround time
for application resource definitions in the CICS region while system programmers can enforce best
practices and organization standards conveniently.
For details, see Automating the process of defining CICS application resources with CICS Transaction
Server resource builder and the CICS resource builder product documentation.
Automatic installation (autoinstall)
Autoinstall minimizes the need for a large number of definitions, by dynamically creating new
definitions based on a “model” definition provided by you. This applies to VTAM® terminals, LU6.2
sessions, IPIC connections, journals, programs, mapsets, and partitionsets. You set up “model”
definitions using either RDO or DFHCSDUP. CICS can then create and install new definitions for these
resources dynamically, based on the models.
Macro definition
You can use assembler macro source to define resources that cannot be stored on the CSD. The
definitions are stored in assembled control tables in a program library, from which they are installed
during CICS initialization.
You must use macro instructions to define non-VTAM networks and terminals, non-VSAM files,
databases, and resources for monitoring and system recovery. For information about CICS macros,
see Defining resources with macros.
Which methods you use depends on the resources you want to define. Table 1 on page 7 suggests
some of the things you should consider when deciding which definition method to use. Table 2 on page
8 shows you the methods you can use for each resource.
Overriding resource definitions
You can override resource definitions to tailor resources or apply standards for a specific CICS
environment, such as test or development. You can specify and apply resource overrides to any
resources that can be defined by using RDO. When resource definition overrides support is in use,
overrides are applied to relevant resources when those resources are installed. See How it works:
resource definition overrides.

6 CICS TS for z/OS: Configuring CICS

Table 1. Methods of resource definition
Method Advantages Disadvantages
CICS Explorer • Intuitive and easy to use interface. FEPI resources cannot be defined with
CICS Explorer.
• Integration point for other CICS tools.
• Centralized resource definition.
• Logical scoping.
• Distributed resource installation.
• Works with CICS bundles, BAS, and the
CICS CSD.

Bundles • You can define some resource types • You cannot modify or change the state
in the CICS bundle to be created of resources defined in a bundle in
dynamically when the bundle is the same ways as individually defined
deployed. resources.
• You can specify other required resources • Not all application resources are
that must be present in the CICS region. supported by bundles.
• You can install, uninstall, enable, and
disable applications by operating on a
single resource.
• Bundles provide versioning so that you
can manage resource and application
updates.
• Some resources can only be defined and
deployed using bundles.
• Non-CICS resources can be created and
managed in CICS bundles alongside CICS
resources.

CICSPlex SM BAS • Centralized resource definition. Not all application resources are supported
by BAS.
• Logical scoping.
• Distributed resource installation.

RDO RDO is used while CICS is running, so Because CEDA operates on an active CICS
allows fast access to resource definitions. system, care should be taken if it is used
in a production system. Use some form of
auditing as a control mechanism.
EXEC CICS SPI It enables configuration and installation CREATE commands neither refer to nor
commands of CICS resources for large numbers of record in the CSD file. The resulting
CICS regions from a single management definitions are lost on a cold start, and you
focal point. It also allows you to write cannot refer to them in a CEDA transaction.
applications for administering the running
CICS system.
EXEC CICS CSD • You can write applications customized to Requires more work to implement than
system commands your environment that can manage the some other methods.
CSD and installed resources.
• Resources updated by this method can
be referred to by CEDA.
• Supports compatibility mode for sharing
CSDs with earlier releases of CICS.

Chapter 2. How it works: CICS resources 7

Table 1. Methods of resource definition (continued)
Method Advantages
DFHCSDUP • You can modify or define a large number
of resources in one job.
• You can run DFHCSDUP against a non-
recoverable CSD file while it is being
shared between CICS regions using RLS
access mode.
Disadvantages
• You cannot install resources into an
active CICS system.
• You cannot make updates via DFHCSDUP
against a recoverable CSD file that is
being accessed in RLS mode.

Autoinstall If you have large numbers of resources, You must spend some time initially setting
much time is needed to define them, and if up autoinstall in order to benefit from it.
they are not all subsequently used, storage
is also wasted for their definitions. Using
autoinstall reduces this wasted time and
storage.
Macro • You can change the definitions contained
in the tables while CICS is running, but
you must stop and restart CICS if you
want it to use the changed tables.
• You must do time-consuming assemblies
to generate macro tables.

Table 2. Resources and how you can define them to the running CICS system

Resource CICS CICSPlex SM BAS RDO, EXEC CICS SPI, Bundles DFHCSDUP Autoinstall Macro
Explorer and EXEC CICS CSD
commands

Atom Yes Yes (ATOMDEF) Yes (ATOMSERVICE) Yes Yes No No

documents

Bundles Yes Yes (BUNDDEF) Yes (BUNDLE) N/A Yes No No

Connections Yes Yes (CONNDEF) Yes (CONNECTION) No Yes LU 6.2 only No

Db2 Yes Yes (DB2CDEF) Yes (DB2CONN) No Yes No No

Connections

Db2 entries Yes Yes (DB2EDEF) Yes (DB2ENTRY) No Yes No No

Db2 Yes Yes (DB2TDEF) Yes (DB2TRAN) No Yes No No

transactions

Document Yes Yes (DOCDEF) Yes (DOCTEMPLATE) No Yes No No

template

Enqueue Yes Yes (ENQMDEF) Yes (ENQMODEL) No Yes No No

models

Event Yes No No Yes No No No

bindings and
capture
specifications

Event Yes No No Yes No No No

processing
adapter

Event Yes No No Yes No No No

processing
adapter set

FEPI node No Yes (FENODDEF) Yes (NODELIST) No No No No

lists

FEPI pool No Yes (FEPOODEF) Yes (POOL) No No No No

definitions

FEPI property No Yes (FEPRODEF) Yes (PROPERTYSET) No No No No

sets

8 CICS TS for z/OS: Configuring CICS

Table 2. Resources and how you can define them to the running CICS system (continued)

Resource CICS CICSPlex SM BAS RDO, EXEC CICS SPI, Bundles DFHCSDUP Autoinstall Macro
Explorer and EXEC CICS CSD
commands

FEPI target No Yes (FETRGDEF) Yes (TARGETLIST) No No No No

lists

Files (BDAM) No No No No No No Yes (DFHFCT)

Files (VSAM) Yes Yes (FILEDEF) Yes (FILE) Yes Yes No No

IPIC Yes Yes (IPCONDEF) Yes (IPCONN) No Yes Yes No

connections

Journals Yes Yes (JRNLDEF) No No No Yes No

Journal Yes Yes (JRNMDEF) Yes (JOURNALMODEL) No Yes No No

models

LIBRARY Yes Yes (LIBDEF) Yes (LIBRARY) Yes Yes No No

resources

Local shared Yes Yes (LSRDEF) Yes (LSRPOOL) No Yes No No

resource
(LSR) pools

Map sets Yes Yes (MAPDEF) Yes (MAPSET) No Yes Yes No

Node.js Yes No No Yes No No No

applications

OSGi bundles Yes No No Yes No No No

and services

Package set Yes No No Yes No No No

Partition sets Yes Yes (PRTNDEF) Yes (PARTITIONSET) No Yes Yes No

Partners Yes Yes (PARTDEF) Yes (PARTNER) No Yes No No

Pipelines Yes Yes (PIPEDEF) Yes (PIPELINE) No Yes No No

Policy Yes No No Yes No No No

Process types Yes Yes (PROCDEF) Yes (PROCESSTYPE) No Yes No No

Profiles Yes Yes (PROFDEF) Yes (PROFILE) No Yes No No

Programs Yes Yes (PROGDEF) Yes (PROGRAM) Yes Yes Yes No

Recoverable No No No No No No Yes (DFHRST)

service
elements

Sessions Yes Yes (SESSDEF) Yes (SESSIONS) No Yes No. No

TCP/IP Yes Yes (TCPDEF) Yes (TCPIPSERVICE) No Yes No No

services

Temporary No No No No No No Yes (DFHTST)

storage
(defined by
macro)

Temporary Yes Yes (TSMDEF) Yes (TSMODEL) No Yes No No

storage
models
(resource
definition)

Terminals No No No No No No Yes (DFHTCT)

(non-VTAM)

Terminals Yes Yes (TERMDEF) Yes (TERMINAL) No Yes Yes No

(VTAM)

Transactions Yes Yes (TRANDEF) Yes (TRANSACTION) Yes Yes No No

Transaction Yes Yes (TRNCLDEF) Yes (TRANCLASS) No Yes No No

classes

Transient data Yes Yes (TDQDEF) Yes (TDQUEUE) No Yes No No

queues

Typeterms Yes Yes (TYPTMDEF) Yes (TYPETERM) No Yes No No

Chapter 2. How it works: CICS resources 9

Table 2. Resources and how you can define them to the running CICS system (continued)

Resource CICS CICSPlex SM BAS RDO, EXEC CICS SPI, Bundles DFHCSDUP Autoinstall Macro
Explorer and EXEC CICS CSD
commands

URI maps Yes Yes Yes (URIMAP) Yes Yes No No

Web services Yes Yes Yes (WEBSERVICE) No Yes Yes No

IBM MQ Yes Yes (MQCONDEF) Yes (MQCONN) No Yes No No

connection

XML Yes No No Yes No No No

transforms

CEDA, EXEC CICS CSD, and DFHCSDUP command summary

Commands supplied as EXEC CSD commands, as part of the CEDA transaction, or as part of the
CSD update batch utility program DFHCSDUP allow you to work with resources. Table 3 on page 10
summarizes the commands that are available for each of these methods of resource definition.

Table 3. Summary of CEDA, EXEC CICS CSD, and DFHCSDUP commands

Command Function CEDA EXEC CICS DFHCSDUP
CSD
ADD Adds a group name to a list. The CEDA CSD ADD The
ADD DFHCSDUP
command ADD
command
ALTER Modifies the attributes of an existing The CEDA CSD ALTER The
resource definition. ALTER DFHCSDUP
command ALTER
command
APPEND Copies a list to the end of another list. The CEDA CSD ALTER
APPEND
command
CHECK (CEDA only) Cross checks the resource definitions The CEDA n/a n/a
within a group, or within the groups in CHECK
a list or lists, up to a maximum of four command
lists.
COPY Copies one or more resource definitions The CEDA CSD COPY The
from one group to another, or one COPY DFHCSDUP
resource definition within a group. command COPY
command
DEFINE Creates a new resource definition. The CEDA CSD The
DEFINE DEFINE DFHCSDUP
command DEFINE
command
DELETE Deletes one or more resource The CEDA CSD The
definitions. DELETE DELETE DFHCSDUP
command DELETE
command
DISCONNECT n/a CSD n/a
DISCONNEC
T

10 CICS TS for z/OS: Configuring CICS

Table 3. Summary of CEDA, EXEC CICS CSD, and DFHCSDUP commands (continued)
Command Function CEDA EXEC CICS DFHCSDUP
CSD
DISPLAY (CEDA only) Shows the names of one or more The CEDA n/a n/a
groups, lists, or resource definitions DISPLAY
within a group. command
ENDBRGROUP Stops a browse of groups in the n/a CSD n/a
CSD started by a CSD STARTBRGROUP ENDBRGRO
command UP
ENDBRLIST Stops a browse of the lists in the n/a CSD n/a
CSD started by a CSD STARTBRLIST ENDBRRSR
command. CE
ENDBRRSRCE Stops a browse of the resource n/a CSD n/a
definitions in a group in the CSD that ENDBRRSR
was started by a CSD STARTBRRSRCE CE
command.
EXPAND (CEDA only) Shows the names of the resource The CEDA n/a n/a
definitions in one or more groups or EXPAND
lists. command
EXTRACT (DFHCSDUP Extracts and processes resource n/a n/a The
only) definition data from groups or lists on DFHCSDUP
the CSD file. EXTRACT
command
GETNEXTGROUP Returns the name of the next group n/a n/a
in the browse started by a CSD
STARTBRGROUP command.
GETNEXTLIST Returns the name of the next list in a n/a CSD n/a
browse started by a CSD STARTBRLIST GETNEXTG
command. ROUP
GETNEXTRSRCE Returns the details of the next resource n/a CSD n/a
in a browse started by a CSD GETNEXTRS
STARTBRRSRCE command. RCE
INQUIREGROUP Inquire on a group in the CSD or on a n/a CSD
group in a specified list in the CSD. INQUIREGR
OUP
INQUIRELIST Inquire on a list in the CSD. n/a CSD
INQUIRELIS
T
INQUIRERSRCE Inquire on the attributes of a resource in n/a CSD
a specified group in the CSD. INQUIRERS
RCE
INITIALIZE (DFHCSDUP Prepare a newly-defined data set for use n/a n/a The
only) as a CSD file. DFHCSDUP
INITIALIZE
command
INSTALL Dynamically adds a resource definition The CEDA CSD n/a
or a group of resource definitions to the INSTALL DISCONNEC
active CICS system. command T

Chapter 2. How it works: CICS resources 11

Table 3. Summary of CEDA, EXEC CICS CSD, and DFHCSDUP commands (continued)
Command Function CEDA EXEC CICS DFHCSDUP
CSD
LIST (DFHCSDUP only) Produce listings of the current status of n/a n/a The
the CSD file. DFHCSDUP
LIST
command
LOCK Prevents other operators updating or CSD LOCK
deleting a group or the groups in a list.
MOVE (CEDA only) Moves one or more resource definitions The CEDA n/a
from one group to another. MOVE
command
PROCESS (DFHCSDUP Applies maintenance to the CSD file for n/a n/a The
only) a specific APAR. DFHCSDUP
PROCESS
command
REMOVE Removes a group name from a list. The CEDA CSD The
REMOVE REMOVE DFHCSDUP
command REMOVE
command
RENAME Renames a resource definition, either The CEDA CSD
within a group, or while simultaneously RENAME RENAME
moving it to another group. command
SCAN (DFHCSDUP only) Scans all of the supplied groups and n/a n/a The
user-defined groups for a resource. DFHCSDUP
The definition of the matched resource SCAN
in an supplied group is compared to command
the definition(s) of the corresponding
matched resource in the user groups.
SERVICE (DFHCSDUP Applies corrective maintenance to the n/a n/a The
only) CSD file. DFHCSDUP
SERVICE
command
STARTBRGROUP Start a browse of the groups in the CSD n/a CSD
or of the groups in a list. STARTBRLI
ST
STARTBRLIST Start a browse of the lists in the CSD. n/a CSD
RENAME
STARTBRRSRCE Start a browse of the resources in a n/a CSD
specified group. STARTBRRS
RCE
UNLOCK Releases a lock on a group or list. CSD
UNLOCK
UPGRADE (DFHCSDUP Upgrades the CICS-supplied resource n/a n/a The
only) definitions on the CSD file (for example, DFHCSDUP
when you migrate to a higher release of UPGRADE
CICS). command

12 CICS TS for z/OS: Configuring CICS

Table 3. Summary of CEDA, EXEC CICS CSD, and DFHCSDUP commands (continued)
Command Function CEDA EXEC CICS DFHCSDUP
CSD
USERDEFINE Creates a new resource definition with The CEDA CSD The
your own defaults. USERDEFIN USERDEFIN DFHCSDUP
E command E USERDEFIN
E command
VERIFY (DFHCSDUP only) Removes internal locks on groups and n/a n/a The
lists. DFHCSDUP
VERIFY
command
VIEW (CEDA only) Shows the attributes of an existing The CEDA n/a
resource definition. VIEW
command

Shared resources for intercommunication

Resources that reside on a remote system, but are accessed by a local CICS system, have to be defined on
both the remote and local systems. To avoid duplicating definitions in the CICS system definition data set
(CSD) for the local and remote systems, you can create resource definitions on a CSD file that is shared by
the local and remote systems. This reduces disk storage and maintenance, because you require only one
CSD file record for each shared resource.
If you decide to use dual-purpose resource definition, you may want to consider reorganizing your
resources within your resource definition groups. For example, you might currently have two groups:
one containing all the resources for a CICS transaction-owning region (TOR), and one containing all the
resources for a CICS application-owning region (AOR).
When you use shared resource definitions, you can have three groups, with the first group containing
resources specific to the TOR, the second group containing resources specific to the AOR, and the third
group containing resources to be installed in both the TOR and the AOR.
These resources should be defined as both local and remote. When the definition is installed on
the TOR, CICS compares the SYSIDNT name with the REMOTESYSTEM name. If they are different, a
remote transaction definition is created. When the definition is installed on the AOR, CICS compares the
REMOTESYSTEM name with the SYSIDNT name. If they are the same, a local transaction definition is
installed.
Dual-purpose resource definition can be used with the following resources:
• Files
• Programs
• Temporary storage models (TSMODELs)
• Terminals
• Transient data queues (TDQUEUEs)
• Transactions

Security of resource definitions

CICS provides a number of facilities that help you keep your resource definitions secure from
unauthorized use.
When you are considering the security of your resource definitions:

Chapter 2. How it works: CICS resources 13

 Limited access to resource definitions in the CICS system definition data set (CSD)
You should limit read/write access to resource definitions in the CSD to a small number of people. To
do this:
• Protect groups of resources by using the CEDA command LOCK
• Protect the list of resource groups that is specified in the system initialization parameter GRPLIST by
using the CEDA command LOCK
• Use the CEDB transaction to create resource definitions, but not to INSTALL them
• Use the CEDC transaction for read-only access to resource definitions.
For information about the CEDA LOCK and UNLOCK commands, see Resource management
transaction CEDA commands.
Resource security checking

Resource security checking ensures that terminal operators can access only those resources for which
they have been authorized. You can use resource security checking (RESSEC) for the TRANSACTION
definition.
Multiple CSD files

You can have different CSD files for different CICS systems. The users of one CICS do not have access
to the CSD file for another CICS.
You could have a test CSD file in a system where the RDO transactions can be used, and a production
CSD file in a system where the RDO transactions are not available. There would then be no chance of
unauthorized users altering resource definitions needed for production work.
Read-only and update definitions for the same CSD file

Having two CSD files means duplicating resource definitions for resources that are shared by more
than one system. An advantage of RDO is that you need only one definition for each resource. You can
define one CSD file to be shared among several CICS systems with only one having write access. To do
this, you define one CSD file differently to different systems by using the CSDACC system initialization
parameter. For the system where the CSD file can be used but not updated, you specify:

CSDACC=READONLY

and, for the system where you are planning to update the CSD, you specify:

CSDACC=READWRITE

You need READONLY access to install definitions. This also allows you to use the DISPLAY and
VIEW commands. You need READWRITE access to use the ADD, APPEND, ALTER, COPY, MOVE, and
RENAME commands. For information on defining the CSD file, see Resource management transaction
CEDA commands.
Controlling access to a group or list—LOCK and UNLOCK

RDO also provides a means of controlling access to any group or list, so that users in the same system
can have different types of access. This is done with the LOCK and UNLOCK commands.
The LOCK and UNLOCK commands enable you to control update access to a group or list so that only
operators with the same operator identifier can make changes.
The lock is held on the CSD file and remains in effect across restarts of CICS. The lock is owned by the
user, who is identified by a combination of the CICS generic applid (specified by the APPLID system
initialization parameter), and the user's operator identifier (OPIDENT).

14 CICS TS for z/OS: Configuring CICS

 The OPIDENT is the one associated with the user when he or she signs on to the terminal used for
RDO. For further information on OPIDENT, see The CICS segment in user profiles.
Any user who is not signed on or who has a different OPIDENT is not allowed to perform any operation
that would change the locked group. However, any user is allowed to do the following things to a
locked group:
• COPY
• CHECK
• DISPLAY
• INSTALL
• VIEW
The lock can be removed, using the UNLOCK command, only by a user on the same system and with
the same operator identifier.
It would be wise to put a lock on your group of TYPETERMs and on your group of AUTINSTMODEL
TERMINALs.
Controlling access to the RDO transactions
Recommended access for the CEDA, CEDB, and CEDC transactions is as follows:
• CEDC can be given fairly wide access, because it allows only read-only commands.
• CEDB should be restricted, because it allows modification of the CSD file as well as read-only
commands.
• CEDA should be further restricted to the few people allowed to modify both the active CICS system
and the CSD file.
Installing resources
A user who is authorized to use CEDA can install any resources in the CICS system: beyond checking
the user's authority to use the transaction itself, CICS does not do any command or resource security
checking in the CEDA transaction.
This is not the case for transactions that use the CREATE command to install resources; here, CICS
uses
• command security to check that the user is authorized to use the CREATE command. For more
information, see Command security.
• resource security to check that the user is authorized to modify the resource in question. For more
information, see Resource security.

Chapter 2. How it works: CICS resources 15

16 CICS TS for z/OS: Configuring CICS
Chapter 3. How it works: CICS storage
To function, each CICS region requires storage for its own programs, for the CICS resources that are
installed in the region and for the application programs that run under CICS control. CICS manages
its own storage areas, but these are contained in a single z/OS virtual storage address space. The
following sections explain more about where CICS storage comes from, how it is configured, how it can be
monitored, and how workloads can make use of it.
For information about z/OS virtual storage, see Virtual storage overview in the z/OS MVS Initialization and
Tuning Guide.

Terms to understand about CICS storage

Before you can work with CICS virtual storage, there are some terms that you must understand.
The z/OS documentation explains What is virtual storage? and What is an address space?.

24-bit, 31-bit, and 64-bit storage and addressing

A z/OS address space has areas of storage that are described as 24-bit storage, 31-bit storage, and 64-bit
storage. These names reflect the addressability of each area of the address space.
A program that runs in an address space can reference all of the storage that is associated with that
address space. The mechanism used by a program to reference the storage that is associated with an
address space is called addressing.
A program on z/OS can run with 24-bit, 31-bit, or 64-bit addressing. This means that the program can
reference 24-bit storage, 31-bit storage, or 64-bit storage.

What are the line and the bar?

In information about CICS storage, you will see reference to storage above the line, below the line, above
the bar, and below the bar. What are the line and the bar?
This terminology is rooted in the history of IBM z/OS. You can read about this in A brief history of virtual
storage and 64-bit addressability.
A program's ability to reference all of the storage that is associated with an address space is called
addressability.
Way back in 1970, the IBM System/370 defined storage addresses as 24 bits in length, which allowed
users access to 16 MB of virtual storage.
In 1983, IBM extended the addressability of the architecture to 31 bits. With 31-bit addressing, the
operating system increased the addressability of virtual storage from 16 MB to 2 gigabytes (2 GB). The
16 MB address became the dividing point between the two architectures (24-bit addressing and 31-bit
addressing) and is commonly called the line. As a consequence, in older documentation, you might see
24-bit storage referred to as below the line and 31-bit storage referred to as above the line.
In 2000, IBM further extended the addressability of the architecture to 64 bits. With 64-bit addressing,
the operating system increased the addressability of virtual storage from 2 GB to a potential16 exabytes
(EB) in size. (An exabyte is slightly more than one billion gigabytes.) Although the potential upper limit for
this virtual storage is extremely high, there are practical limits to real storage, so parameters are used to
limit the amount of storage that the address space can use.
31-bit addresses finish at 2 GB and 64-bit addresses start at 4 GB. The separating area between 2 GB to
4 GB is called the bar; it conveys the invalidity of any address that has set the 32nd bit. As a consequence,
in older information, you might see 64-bit storage referred to as above the bar and 24-bit and 31-bit
storage referred to as below the bar. Below the bar storage can be addressed with a 31-bit address. Above
the bar storage requires a 64-bit address.

© Copyright IBM Corp. 1974, 2022 17

 64 bit addressing 16 EB

“the bar” 2 GB-4 GB

31 bit addressing

“the line” 16 MB

24 bit addressing

Figure 2. z/OS virtual storage

Addressing mode (AMODE) and residency mode (RMODE)

Every program that runs in z/OS is assigned two attributes: an addressing mode (AMODE) and a residency
mode (RMODE). These attributes are assigned in the assembler program or when you link to the program.
In documentation, you will often see AMODE and RMODE used as short-hand for addressing mode and
residency mode.
The AMODE attribute specifies the addressing mode in which your program is designed to receive control.
You can switch addressing modes in the program and have different AMODE attributes for different entry
points in a load module.
The RMODE attribute indicates where in virtual storage your program can reside, and as a result, where it
is loaded.

Storage keys and execution keys

One way that areas of storage are protected from each other is through keys. Each KB block of storage is
associated with a control field called a storage key. (You might also see this called a storage protect key.)
When a request is made for storage, the key that is associated with the request must match the storage
key for the request to be allowed.
There are two types of z/OS storage in which you can run application programs:
CICS-key
This is used for most CICS system code and control blocks and, at your discretion, other code, and
data areas that require protection from overwriting.
User-key
This is used for most application programs and their data areas.

18 CICS TS for z/OS: Configuring CICS

 Read-only key-0 protected
In addition to CICS-key and user-key storage, CICS also uses key-0 storage for separate dynamic
storage areas that are called the read-only DSAs (RDSA and ERDSA). These DSAs are used for eligible
reentrant CICS and user application programs. See CICS dynamic storage areas (DSAs).
There are two execution modes that are associated with the different types of storage. These are
described with an execution key. When the program runs, CICS passes control to it in the key that you
request when you define the program. These execution modes are:
CICS key
Many CICS system programs run in the execution mode of CICS key. A program that runs in CICS key
execution mode has read/write access to both CICS-key and user-key storage.
User key
By default, application programs run in the execution mode of user key. A program that runs in user
key execution mode has read/write access to user-key storage, but only read access to CICS-key
storage.

z/OS storage and MVS storage

In information about CICS storage, you will see the terms MVS storage and z/OS storage. Like the
terminology about the line and the bar, these terms come from the product's long history.
MVS was previously the name for the z/OS operating system and MVS storage described the operating
system's virtual storage address space. In 2000, IBM renamed the operating system that was previously
known as OS/390 and before that, as MVS, to z/OS. Today, the operating system's virtual storage address
space is called z/OS storage, taking its name from the current name of the operating system.
Over time, MVS storage took on a meaning of its own to describe what remains of the z/OS storage
after the CICS dynamic storage areas and other CICS storage requirements are met. This historical term
persists as shorthand for “the remaining z/OS storage that is not managed by CICS” but the picture today
is complex. The remaining z/OS storage supports other non-CICS activities, such as the allocation of
non-CICS Language Environment enclaves.

Real storage and auxiliary storage

Real storage and auxiliary storage are types of physical storage. Real storage is physical storage that is
located on the IBM Z processor itself. Auxiliary storage is physical storage that is external to IBM Z, such
as disk drives or tape drives. For information, see Physical storage used by IBM z/OS .

CICS virtual storage

Each CICS region operates in its own z/OS address space, in virtual storage. Conceptually, virtual storage
for CICS is the same as virtual storage for any other operating system.
Find out more in the z/OS documentation: What is virtual storage?, What is an address space?, and A brief
comparison of z/OS and UNIX.

Where CICS virtual storage comes from

A z/OS address space is divided into three addressing ranges: 24-bit, 31-bit, and 64-bit (see Terms to
understand about CICS storage). Each of these has private areas and common areas. Private areas are
unique to that address space and are used for running application modules and data. Common areas are
global to every address space. They too can be used to run application modules and data but they also
contain operating system control programs and data.
CICS uses and manages virtual storage in all three addressing ranges of its z/OS address space. Within
each of these, CICS uses some virtual storage from the private area and some from the common area.
Figure 3 on page 21 shows an outline of the addressing ranges.

Chapter 3. How it works: CICS storage 19

 64-bit storage (4 GB to a theoretical 16 exabytes)
64-bit storage comprises a user private area between 4 GB and a potential 16 exabytes (EB). This
area is subdivided into a user extended private area between 4 GB and 2 terabytes (TB), a shared area
between 2 TB and 512 TB, and a user private area between the end of the shared area and 16 EB.
Addresses in this area are accessed by 64-bit addressing, and programs can use this storage when
they run in AMODE 64.
The 2 GB to 4 GB separator is known as the bar, so you might find 64-bit storage called storage above
the bar.
31-bit storage (16 MB to 2 GB)
Addresses above the 16 MB address but below the 2 GB address are accessed by 31-bit addressing,
and programs can use this storage when they run in AMODE 31 or higher. The 16 MB address is known
as the line, so you might find 31-bit storage called storage above the line.
Storage below 2 GB can support both 24-bit and 31-bit addressing and is often referred to as storage
below the bar.
24-bit storage (0 MB to 16 MB)
Addresses below the 16 MB address are accessed by 24-bit addressing, and programs can use this
storage when they run in AMODE 24 or higher. The 16 MB address is known as the line, so you might
find 24-bit storage called storage below the line.
In each private area of storage, virtual storage is used to provide CICS dynamic storage areas (DSAs) and
MVS storage.
CICS dynamic storage areas
The DSAs are used to supply the storage requirements of CICS, access methods, and applications that
run in CICS. There are DSAs in 24-bit storage, 31-bit storage (known asExtended DSAs), and in 64-bit
storage (known as GDSAs - the G once stood for Grande but it is never spelled out today). See “CICS
dynamic storage areas (DSAs)” on page 21.
MVS™ storage
What remains of the storage after the DSAs and other CICS requirements are met is collectively
known as MVS storage? MVS storage is available to the operating system to perform region-related
services, such as using a JVM for Java programs or obtaining storage for control blocks and data areas
that are required to open data sets. For more information, see MVS storage.
Figure 3 on page 21 shows an outline of the storage ranges available in a z/OS address space.

20 CICS TS for z/OS: Configuring CICS

 16 EB

64-bit storage GDSAs

“the bar” 2 GB- 4 GB

Extended
31-bit storage
DSAs

EPCDSA

“the line” 16 MB

24-bit storage DSAs

Figure 3. z/OS address space

Related information
Terms to understand about CICS storage
MVS storage

CICS dynamic storage areas (DSAs)

The dynamic storage areas (DSAs) supply CICS tasks with storage to run transactions and are essential for
CICS operation. There are DSAs in 24-bit storage, 31-bit storage, and 64-bit storage.
Figure 4 on page 22 illustrates the DSAs in each addressing range and the parameters that control the
amount of storage that is available to them. “Where the storage for each DSA is allocated” on page 23
explains what each DSA is used for and whether it is allocated from CICS-key storage, user-key storage,
or read-only key-0 protected storage. “Which application program settings determine the DSA where it
runs?” on page 26 explains the combination of settings that determine where an application runs.

Chapter 3. How it works: CICS storage 21

 16 EB

GSDSA
64-bit storage
GUDSA

GCDSA

“the bar” 2 GB- 4 GB

ESDSA ERDSA
31-bit storage
EUDSA EPUDSA

ECDSA EPCDSA
EPCDSA
“the line” 16 MB

SDSA RDSA
24-bit storage
UDSA PUDSA

CDSA PCDSA

Figure 4. CICS Dynamic Storage Areas (DSAs)

The dynamic storage areas are contained in virtual storage pages that are taken from z/OS storage
subpools. In the dynamic storage areas, CICS arranges the storage in CICS subpools. The subpools are
dynamically acquired as needed, a page at a time, from within the applicable DSA. Individual subpools
can be static or dynamic. Some subpools contain static CICS storage, which cannot be tuned. All the
subpools are rounded up to a multiple of 4 KB in storage size. Include this rounding factor when you
calculate subpool sizes or you evaluate changes in storage size after tuning or other changes. The storage
that individual subpools use is shown in the domain subpool statistics in the CICS storage manager
statistics.
CICS manages DSA storage in extents. An individual DSA consists of one or more extents.
• 24-bit storage extents are usually allocated in multiples of 256 KB. However, when transaction isolation
is in operation, the UDSA (user DSA) is allocated in 1 MB extents.
• 31-bit storage extents are allocated in multiples of 1 MB.
• 64-bit storage extents are allocated in multiples of 1 GB.
Only the owning DSA can use an allocated extent, and an extent cannot be shared between more than one
DSA simultaneously.
Parameters control the amount of storage that CICS can use for DSAs. Within this allocated storage,
CICS manages the following dynamic storage areas automatically, and you do not need to specify their
individual sizes.

22 CICS TS for z/OS: Configuring CICS

• CICS DSALIM system initialization parameter specifies the upper limit of the total amount of storage
within which CICS can allocate the DSAs that reside in 24-bit storage. The amount of storage that
is specified by the DSALIM value is allocated as guaranteed storage at system initialization. At
initialization, CICS performs z/OS GETMAIN to get and reserve the DSALIM storage, and if the GETMAIN
fails, which means that the value is too large, CICS allocates smaller default amounts instead.
• CICS EDSALIM system initialization parameter specifies the upper limit of the total amount of storage
within which CICS can allocate the DSAs that reside in 31-bit storage. The amount of storage that
is specified by the EDSALIM value is allocated as guaranteed storage at system initialization. At
initialization, CICS performs z/OS GETMAIN to get and reserve the EDSALIM storage, and if the GETMAIN
fails, which means that the value is too large, CICS allocates smaller default amounts instead.
• The z/OS parameter MEMLIMIT (or the z/OS IEFUSI — Step Initiation Exit) limits the amount of 64-bit
storage that the CICS® address space can use, including the DSAs that reside in 64-bit storage. When
CICS needs storage for one of its GDSAs (GCDSA, GUDSA or GSDSA), there needs to be 1 GB of
continuous storage available from the MEMLIMIT; otherwise, a short on storage condition occurs and
CICS issues message DFHSM0606 (the amount of z/OS above the bar storage available to CICS is
critically low).
When programs that are loaded into the CDSA and SDSA are deleted, this frees up space in these DSAs.
This is not the case when programs are deleted from the PCDSA and PUDSA. A new DSA extent must be
freed before any storage from the PCDSA and PUDSA can be reallocated to another DSA.

Where the storage for each DSA is allocated

Within each addressing range, the storage for the DSAs can be allocated from CICS-key storage, user-key
storage, or read-only key-0 protected storage (see Terms to understand about CICS storage). The type
of storage that is allocated for each DSA depends on the settings for the STGPROT system initialization
parameter and RENTPGM system initialization parameter for the CICS region.

Table 4. CICS DSAs and their storage allocation

Dynamic Storage Used for Allocated from which type of storage
Area (DSA)
CDSA (CICS DSA) All non-reentrant CICS-key RMODE(24) Always from CICS-key storage
programs, all CICS-key task-lifetime
storage in 24-bit storage, and for CICS
control blocks that reside in 24-bit
storage.
The equivalent area in 31-bit storage is
the ECDSA. The equivalent area in 64-bit
storage is the GCDSA.

PCDSA (Program Requests for unprotected storage in 24- Always from CICS-key storage
CICS DSA that bit storage (see Instruction execution
is never protected protection.)
from instruction
The equivalent area in 31-bit storage is
execution)
the EPCDSA. There is no equivalent area
in 64-bit storage.

PUDSA (Program Requests for unprotected storage in 24- Depends on the setting on STGPROT for
user DSA that is bit storage (see Instruction execution the CICS region:
never protected protection.)
• If STGPROT=YES, this DSA is allocated
from instruction
The equivalent area in 31-bit storage is from user-key storage. This is the
execution)
the EPUDSA. There is no equivalent area default.
in 64-bit storage. • If STGPROT=NO, this DSA is allocated
from CICS-key storage.

Chapter 3. How it works: CICS storage 23

 Table 4. CICS DSAs and their storage allocation (continued)
Dynamic Storage Used for Allocated from which type of storage
Area (DSA)
UDSA (user DSA) All user-key task-lifetime storage in 24- Depends on the setting on STGPROT for
bit storage. the CICS region:
The equivalent area in 31-bit storage is • If STGPROT=YES, this DSA is allocated
the EUDSA. The equivalent area in 64- from user-key storage. This is the
bit storage is the GUDSA. default.
• If STGPROT=NO, this DSA is allocated
from CICS-key storage.

SDSA (Shared DSA) Any non-reentrant user-key RMODE(24) Depends on the setting on STGPROT for
programs, and also for any storage the CICS region:
obtained by programs that issue CICS
• If STGPROT=YES, this DSA is allocated
GETMAIN commands for 24-bit storage
from user-key storage. This is the
with the SHARED option.
default.
The equivalent area in 31-bit storage is • If STGPROT=NO, this DSA is allocated
the ESDSA. The equivalent area in 64-bit from CICS-key storage.
storage is the GSDSA.

RDSA (Read-only All reentrant programs and tables in 24- Depends on the setting on RENTPGM for
DSA) bit storage. the CICS region:
The equivalent area in 31-bit storage is • If RENTPGM=PROTECT, this DSA
the ERDSA. There is no equivalent area is allocated from read-only key-0
in 64-bit storage. protected storage. This is the default.
• If RENTPGM=NOPROTECT, this DSA is
allocated from CICS-key storage.

ECDSA (Extended All non-reentrant CICS-key Always from CICS-key storage

CICS DSA) RMODE(ANY) programs, all CICS-key
task-lifetime storage in 31-bit storage,
and CICS control blocks that reside in
31-bit storage.
The equivalent area in 24-bit storage is
the CDSA. The equivalent area in 64-bit
storage is the GCDSA.

EPCDSA (Extended Requests for unprotected storage in 31- Always from CICS-key storage
program CICS bit storage (see Instruction execution
DSA that is protection.)
never protected
The equivalent area in 24-bit storage is
from instruction
the PCDSA. There is no equivalent area
execution)
in 64-bit storage.

EPUDSA (Extended Requests for unprotected storage in 31- Depends on the setting on STGPROT for
program user bit storage (see Instruction execution the CICS region:
DSA that is protection.)
• If STGPROT=YES, this DSA is allocated
never protected
The equivalent area in 24-bit storage is from user-key storage. This is the
from instruction
the PUDSA. There is no equivalent area default.
execution)
in 64-bit storage. • If STGPROT=NO, this DSA is allocated
from CICS-key storage.

24 CICS TS for z/OS: Configuring CICS

Table 4. CICS DSAs and their storage allocation (continued)
Dynamic Storage Used for
Area (DSA)
EUDSA (Extended All user-key task-lifetime storage in 31-
user DSA) bit storage (above the line).
The equivalent area in 24-bit storage is
the UDSA. The equivalent area in 64-bit
storage is the GUDSA.
ESDSA (Extended Any non-reentrant user-key Depends on the setting on STGPROT for
shared DSA) RMODE(ANY) programs, and also for any the CICS region:
storage obtained by programs that issue
• If STGPROT=YES, this DSA is allocated
CICS GETMAIN commands for 31-bit
storage with the SHARED option.
The equivalent area in 24-bit storage is • If STGPROT=NO, this DSA is allocated
the SDSA. The equivalent area in 64-bit
storage is the GSDSA.
ERDSA (Extended All reentrant programs and tables in 31-
read-only DSA) bit storage.
The equivalent area in 24-bit storage is
the RDSA. There is no equivalent area in
64-bit storage.
GCDSA (64-bit All CICS-key task-lifetime storage in 64- Always allocated from CICS-key storage.
storage CICS DSA) bit storage, and for CICS facilities that
use 64-bit storage.
The equivalent area in 24-bit storage is
the CDSA. The equivalent area in 31-bit
storage is the ECDSA.
GUDSA (64-bit All user-key task-lifetime storage in 64-
storage user DSA) bit (above-the-bar) storage.
The equivalent area in 24-bit storage is
the UDSA. The equivalent area in 31-bit
storage is the EUDSA.
GSDSA (64-bit Any storage that programs obtain by
storage shared issuing a CICS GETMAIN64 command to
DSA) obtain 64-bit storage with the SHARED
option.
The equivalent area in 24-bit storage is
the SDSA. The equivalent area in 31-bit
storage is the ESDSA.
Allocated from which type of storage
Depends on the setting on STGPROT for
the CICS region:
• If STGPROT=YES, this DSA is allocated
from user-key storage. This is the
default.
• If STGPROT=NO, this DSA is allocated
from CICS-key storage.
from user-key storage. This is the
default.
from CICS-key storage.
Depends on the setting on RENTPGM for
the CICS region:
• If RENTPGM=PROTECT, this DSA
is allocated from read-only key-0
protected storage. This is the default.
• If RENTPGM=NOPROTECT, this DSA is
allocated from CICS-key storage.
Depends on the setting on STGPROT for
the CICS region:
• If STGPROT=YES, this DSA is allocated
from user-key storage. This is the
default.
• If STGPROT=NO, this DSA is allocated
from CICS-key storage.
Depends on the setting on STGPROT for
the CICS region:
• If STGPROT=YES, this DSA is allocated
from user-key storage. This is the
default.
• If STGPROT=NO, this DSA is allocated
from CICS-key storage.
Chapter 3. How it works: CICS storage 25
 Which application program settings determine the DSA where it runs?
The DSA where an application program runs is determined by a mix of settings. For information about the
execution key, see Storing data in a transaction. For information about re-entrancy, see Multithreading:
Reentrant, quasi-reentrant, and threadsafe programs .

Table 5. Summary of attributes defining DSA eligibility

Residency Execution Reentrant Above or Resident DSA subpool Dynamic
mode key (set on (set on the below 16 MB (set on the storage area
(RMODE) the compiler) line PROGRAM (DSA)
PROGRAM resource
resource definition)
definition)
24 CICS No Below Yes LDNRS PCDSA
24 CICS Yes Below Yes LDNRSRO RDSA
Any CICS No Above Yes LDENRS EPCDSA
Any CICS Yes Above Yes LDENRSRO ERDSA
24 CICS No Below No LDNUC PCDSA
24 CICS Yes Below No LDNUCRO RDSA
Any CICS No Above No LDENUC EPCDSA
Any CICS Yes Above No LDENUCRO ERDSA
24 USER No Below Yes LDRES PUDSA
24 USER Yes Below Yes LDRESRO RDSA
Any USER No Above Yes LDERES EPUDSA
Any USER Yes Above Yes LDERESRO ERDSA
24 USER No Below No LDPGM PUDSA
24 USER Yes Below No LDPGMRO RDSA
Any USER No Above No LDEPGM EPUDSA
Any USER Yes Above No LDEPGMRO ERDSA

CICS subpools in the CDSA

The subpools in the CICS dynamic storage area (CDSA) are listed, together with the use of each one.

Table 6. CICS subpools in the CDSA

Subpool name Description
AP_TCA24 Storage for the TCA when the task data location option is set to BELOW.
DFHAPD24 A general subpool for 24-bit application domain storage.
DFHTDSDS Storage for real transient data SDSCIs, each of which contains a DCB that resides in
24-bit storage (below 16 MB).
DHPDPOOL Storage for DCBs for partitioned data sets used by document handler domain.
FC_DCB Storage for the DCBs for BDAM files. Each file that is defined requires 104 bytes.

26 CICS TS for z/OS: Configuring CICS

 Table 6. CICS subpools in the CDSA (continued)
Subpool name Description
FCCBELOW Storage for real VSWA and data buffers for pre-reads. Each VSWA requires 120 bytes of
storage. The maximum number of data buffers for pre-reads is given by:
(number of strings) x (maximum record length) x (number of files).

KESTK24 A single 2 KB 24-bit (below 16 MB) stack segment. This is a dummy stack segment that
is shared by all tasks. Tasks that need to use 24-bit stack storage obtain an extension
stack segment from the subpool KESTK24E.
KESTK24E 4 KB 24-bit (below 16 MB) extension stack segments obtained by tasks that need to
use 24-bit stack storage. CICS preallocates a reserve pool of 24-bit extension stack
segments that tasks can use if no other storage is available in the subpool.
LD_JFCB Storage for the job file control blocks for the loader domain.
SMCONTRL Satisfies GETMAIN requests for control class storage.
SMSHARED 24-bit shared storage, for example RMI global work areas, EDF blocks for the life of the
transaction being monitored, and other control blocks.
SMSHRC24 Used for many control blocks of SHARED_CICS24 class storage.
SMTP24 Storage for line and terminal I/O areas that cannot be located above 16 MB. The
storage requirements depend on the amount of terminal and line traffic in the system.
The subpool can be tuned by reducing the RAPOOL, RAMAX, TIOAL size, and number of
MRO sessions.
SZSPFCAC FEPI z/OS Communications Server ACB work areas.
TRUBELOW Task-related user exit pool below 16 MB.
XMGEN24 General storage used by transaction manager.
ZCSETB24 Application control buffers below 16 MB.
ZCTCTUA Storage for the TCTTE user area. Its location is controlled by the system initialization
parameter, TCTUALOC=ANY|BELOW and the system initialization parameter,
TCTUAKEY=CICS|USER. The maximum size can be specified in USERAREALEN operand
of the terminal definition. For more information about the terminal definition, see
TERMINAL resources.

CICS subpools in the SDSA

The subpools in the shared dynamic storage area (SDSA) are listed, together with the use of each one.

Table 7. CICS subpools in the SDSA

Subpool name Description
APECA Storage for the event control areas.
DFHAPU24 A general subpool for application domain storage below 16 MB.
OSCOBOL Used for the allocation of the COBOL merged load list (MLL) control block and its
extents. This subpool should never occupy more than its initial allocation of one page of
storage.
SMSHRU24 Used for many control blocks of SHARED_USER24 class storage.

Chapter 3. How it works: CICS storage 27

 Table 7. CICS subpools in the SDSA (continued)
Subpool name Description
ZCTCTUA Storage for the TCTTE user area. Its location is controlled by the system initialization
parameter, TCTUALOC=ANY|BELOW and the system initialization parameter,
TCTUAKEY=CICS|USER. The maximum size can be specified in USERAREALEN operand
of the terminal definition. For more information about the terminal definition, see
TERMINAL resources.

CICS subpools in the RDSA

The subpools in the read-only dynamic storage area (RDSA) are listed, together with the use of each one.

Table 8. CICS subpools in the RDSA

Subpool name Description
LDNRSRO Storage for programs that are defined EXECKEY(CICS) that are RESIDENT, that were
link edited REENTRANT and RMODE(24).
LDNUCRO Storage for programs that are defined EXECKEY(CICS) that are not RESIDENT, that
were link edited REENTRANT and RMODE(24).
LDPGMRO Storage for programs that are defined EXECKEY(USER) that are not RESIDENT, that
were link edited RMODE(24) and REENTRANT.
LDRESRO Storage for programs that are defined EXECKEY(USER) and RESIDENT and were link
edited REENTRANT and RMODE(24).

CICS subpools in the PCDSA

The subpools in the CICS dynamic storage area that is never protected from instruction execution
(PCDSA) are listed, together with the use of each one.

Table 9. CICS subpools in the PCDSA

Subpool name Description
DFHAPUCB A general subpool for 24-bit application domain storage.
LDNRS Storage for the CICS nucleus and macro tables that are RESIDENT. The CICS nucleus
is approximately 192 KB and the size of the tables can be calculated. Programs are
defined as EXECKEY (CICS) and link edited with RMODE(24) without the reentrant
option.
LDNUC Storage for the CICS nucleus and macro tables that are not RESIDENT. The CICS
nucleus is approximately 192 KB and the size of the tables can be calculated. Programs
are defined as EXECKEY (CICS) and link edited with RMODE(24) without the reentrant
option.
SMSHCX24 Storage for CICS key below the line-shared storage where EXECUTABLE is specified on
the GETMAIN command.

28 CICS TS for z/OS: Configuring CICS

CICS subpools in the PUDSA
The subpools in the user dynamic storage area that is never protected from instruction execution (PUDSA)
are listed, together with the use of each one.

Table 10. CICS subpools in the PUDSA

Subpool name Description
DFHAPUUB A general subpool for application domain storage below 16 MB.
LDPGM Storage for dynamically loaded application programs (RMODE(24)). The expected size
of this subpool can be predicted from previous releases of CICS TS and by taking
LDPGMRO into account. The subpool size can be reduced by using 31-bit programs. Not
reentrant.
LDRES Storage for resident application programs (RMODE(24)). The expected size of this
subpool can be predicted from previous releases of CICS TS and by taking LDRESO
into account. The subpool size can be reduced by using 31-bit programs. Not reentrant.
SMSHUX24 Storage for CICS key below the line-shared storage where EXECUTABLE is specified on
the GETMAIN command.

CICS subpools in the ECDSA

The subpools in the extended CICS dynamic storage area (ECDSA) are listed, together with the use of
each one.

Table 11. CICS subpools in the ECDSA

Subpool name Description
>LGJMC Storage for the journal model resource entries for the log manager domain.
AITM_TAB The autoinstall terminal model (AITM) table entry subpool (DFHAITDS).
AP_TCA31 Storage for the TCA when the task data location option is set to ANY.
AP_TXDEX Storage for the application part of the TXD table.
APAID31 Storage for AIDs above the line.
APBMS Storage used by BMS.
APCOMM31 Storage for COMMAREAs. The storage requirement depends on the size of COMMAREA
specified and the number of concurrent users of the application.
APDWE Storage for non-task deferred work elements.
APICE31 Storage for ICEs above the line.
APURD Subpool containing unit of recovery descriptors (URDs) and nontask deferred work
elements (DWEs).
ASYNCBUF Buffers used by asynchronous operations in the sockets domain.
BAGENRAL A general-purpose subpool for the business application manager domain.
BAOFBUSG Buffer storage used by the business application manager domain.
BAOFT_ST Storage used by activities in the business application manager domain.
BR_BFBE Storage for the bridge facility block extension.
BR_BFNB Storage for the bridge facility name block.
BR_BMB Storage for the bridge message block.

Chapter 3. How it works: CICS storage 29

 Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
BR_BSB Storage for bridge start blocks.
BRGENRAL General-purpose subpool used by the bridge.
BRNSBLK Storage used for the bridge numberspace.
BRNSFBLK Storage used for bridge files.
BRPC Storage used for bridge primary clients.
BRVS Storage used for bridge virtual terminals.
BRVSCA Storage used for bridge virtual screen character attributes.
BRVSXA Storage used for bridge virtual screen extended attributes.
CCNV_BCE Storage for character conversion buffer chain elements.
CCNV_CCE Storage for character conversion chain elements.
CCNV_TRT Storage for character conversion translation tables. These tables are addressed by the
conversion chain elements.
CCNVG_AN Storage for character conversion anchor blocks.
COLARAY Storage for web control block array storage.
CQCQ_AN Storage for console queue management anchor blocks.
CQCQ_CB Storage for console queue management command input buffers.
DBCTL Subpool that contains the TIE blocks for RMI use, when called by the DBCTL task-
related user exit program, DFHDBAT. The TIE is 120 bytes long, and appended to the
TIE is the local task work area for this task-related user exit which is, for DFHDBAT, 668
bytes long. This subpool is present only when DBCTL is used. It can be tuned by limiting
DBCTL threads or using maximum tasks (MXT) or transaction classes.
DBDBG Storage for DBCTL global blocks.
DCTE_EXT Storage for all extrapartition queue definitions.
DCTE_IND Storage for all indirect queue definitions.
DCTE_INT Storage for all intrapartition queue definitions.
DCTE_REM Storage for all remote queue definitions.
DDAPSESS Storage for LDAP sessions state control blocks.
DDAPSRCH Buffers for LDAP search results.
DDBROWSE Storage for directory manager browse request tokens.
DDGENRAL Storage for directory manager control blocks general information.
DDS_BFBE Storage for directory manager directory elements for the BFBE table.
DDS_BFNB Storage for directory manager directory elements for the BFNB table.
DDS_DCTE Storage for directory manager directory elements for the DCTE table.
DDS_DHT1 Storage for directory manager directory elements for the DHT1 table.
DDS_DHT2 Storage for directory manager directory elements for the DHT2 table.
DDS_DSN Storage for directory manager directory elements for the DSN table.

30 CICS TS for z/OS: Configuring CICS

Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
DDS_D2AC Storage for directory manager directory elements for the D2AC table.
DDS_D2CS Storage for directory manager directory elements for the D2CS table.
DDS_D2EN Storage for directory manager directory elements for the D2EN table.
DDS_D2TN Storage for directory manager directory elements for the D2TN table.
DDS_D2TT Storage for directory manager directory elements for the D2TT table.
DDS_ECCS Storage for directory manager directory elements for the ECCS table.
DDS_ECEV Storage for directory manager directory elements for the ECEV table.
DDS_ECSC Storage for directory manager directory elements for the ECSC table.
DDS_EPAD Storage for directory manager directory elements for the EPAD table.
DDS_FCT Storage for directory manager directory elements for the FCT table.
DDS_ISIA Storage for directory manager directory elements for the ISIA table.
DDS_ISIN Storage for directory manager directory elements for the ISIN table.
DDS_JVMD Storage for directory manager directory elements for the JVMD table.
DDS_MLRL Storage for directory manager directory elements for the MLRL table.
DDS_MLXT Storage for directory manager directory elements for the MLXT table.
DDS_MQII Storage for directory manager directory elements for the MQII table.
DDS_MQIN Storage for directory manager directory elements for the MQIN table.
DDS_NQRN Storage for directory manager directory elements for the NQRN table.
DDS_PIPL Storage for directory manager directory elements for the PIPL table.
DDS_PPT Storage for directory manager directory elements for the PPT table.
DDS_PTPO Storage for directory manager directory elements for the PTPO table.
DDS_PTST Storage for directory manager directory elements for the PTST table.
DDS_PTT Storage for directory manager directory elements for the PTT table.
DDS_REFE Storage for directory manager directory elements for the REFE table.
DDS_RLBN Storage for directory manager directory elements for the RLBN table.
DDS_RTXD Storage for directory manager directory elements for the RTXD table.
DDS_SCAC Storage for directory manager directory elements for the SCAC table.
DDS_SERV Storage for directory manager directory elements for the SERV table.
DDS_SOCI Storage for directory manager directory elements for the SOCI table.
DDS_SOSI Storage for directory manager directory elements for the SOSI table.
DDS_TCL Storage for directory manager directory elements for the TCL table.
DDS_TPNM Storage for directory manager directory elements for the TPNM table.
DDS_TXD Storage for directory manager directory elements for the TXD table.
DDS_USD1 Storage for directory manager directory elements for the USD1 table.

Chapter 3. How it works: CICS storage 31

 Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
DDS_USD2 Storage for directory manager directory elements for the USD2 table.
DDS_USD3 Storage for directory manager directory elements for the USD3 table.
DDS_USD4 Storage for directory manager directory elements for the USD4 table.
DDS_WBST Storage for directory manager directory elements for the WBST table.
DDS_WBUR Storage for directory manager directory elements for the WBUR table.
DDS_WSRD Storage for directory manager directory elements for the WSRD table.
DDS_WURS Storage for directory manager directory elements for the WURS table.
DDS_W2AT Storage for directory manager directory elements for the W2AT table.
DDS_W2RL Storage for directory manager directory elements for the W2RL table.
DFHAPDAN A general subpool for application domain storage above 16 MB but below 2 GB.
DFHD2CSB Storage for control blocks representing Db2 threads created by the CICS/Db2 adapter.
DFHD2ENT Storage for control blocks representing DB2ENTRY definitions.
DFHD2PKG Storage for control blocks representing Db2 PACKAGESET definitions.
DFHD2TRN Storage for control blocks representing DB2TRAN definitions.
DFHECCD Storage for event capture data.
DFHECCS Storage for event capture specification blocks.
DFHECDQE Storage for event capture deferred filter queue elements.
DFHECEVB Storage for event capture event binding blocks.
DFHECFP Storage for event capture event filter predicate blocks.
DFHECSC Storage for event capture system event calls.
DFHECSF Storage for event capture system filter predicates.
DFHEPAC Storage for event capture event adapter configuration data.
DFHMPGEN Used for allocations of Managed Platform anchor block (MPA) and failed adapter
(MPPFA) control blocks.
DFHMPMOD Used for allocations of Managed Platform model (MPMOD) control blocks.
DFHMPPPB Used for allocations of Managed Platform policy (MPPPB) control blocks.
DFHTDG31 Transient data general storage and control blocks. The storage requirement depends on
the number of buffers and strings, and on the control interval size specified.
DFHTDIOB Intrapartition transient data input/output buffers. The storage requirement is given by
the control interval size of the intrapartition transient data set multiplied by the number
of buffers.
DFHTDWCB Storage for the transient data wait elements.
DHCACHE Storage for cached copies of document templates.
DHDBB Storage for document bookmark blocks.
DHDCR Storage for document control records.
DHDDB Storage for document data.

32 CICS TS for z/OS: Configuring CICS

Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
DHDOA Storage for document anchor blocks.
DHFSPATH Storage for HFS path template extensions.
DHGENRAL The general purpose subpool for the document manager domain.
DHSTB Storage for document symbol tables.
DHTLPOOL Storage for document handler template descriptors.
DLI Subpool that contains the TIE blocks for RMI use, when called by the EXEC DL/I
task-related user exit program, DFHEDP. The TIE is 120 bytes long, and appended to
the TIE is the local task work area for this task-related user exit, which is, for DFHEDP,
4 bytes long. This subpool is present only when EXEC DL/I is used. It can be tuned by
limiting DBCTL threads or using maximum tasks (MXT) or transaction classes.
DMSUBPOL The domain manager subpool for general usage.
DP_GENRL Storage for the control blocks for the DP domain.
DPLA Storage for the anchor blocks for instore linked lists of debugging profiles.
DPLE Storage for the elements in the instore linked lists of debugging profiles.
DPLP Storage for the elements in the debug profile that is used for pattern matching.
DPTA Storage for transaction instance state data that is required by the DP domain.
DS_STIMR Storage for dispatcher domain STIMER tokens.
DS_TCB Storage for dispatcher domain TCBs.
DS_VAR The dispatcher domain variable length subpool.
DSBROWSE Storage for dispatcher browse request tokens.
EC_GENRL Storage for the control blocks for the EC domain.
EJMI The enterprise bean method information.
EJOSGENS The enterprise bean general subpool.
EJOSTSKS The enterprise bean task subpool.
EJSPBFBC Storage for web browser control blocks for enterprise beans.
EJSPBVIC Storage for enterprise bean control blocks.
EJSPCFBC Storage for web browser control blocks for CorbaServers.
EJSPCFIC Storage for control blocks for CorbaServers.
EJSPCOMM Storage for anchor blocks for enterprise beans.
EJSPDFBC Storage for web browser control blocks for deployed JAR files.
EJSPDFIC Storage for control blocks for deployed JAR files.
EJSPGVNC Storage for persistent storage for enterprise beans.
EJSPTVNC Storage for transaction-related storage for enterprise beans.
EJSTGENS Storage for control blocks for enterprise bean statistics.
EMBRB Storage for event manager browse blocks.
EMEVA Storage for the event manager event pool anchor.

Chapter 3. How it works: CICS storage 33

 Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
EMEVB Storage for event manager event blocks.
EMGENRAL General-purpose subpool for event manager domain.
EP_GENRL Storage for the control blocks for the EP domain.
EPADA Storage for event processing adapter management.
EPADI Storage for EP adapter name in EP adapter set.
EPADT Storage for event processing adapter set management.
FC_ABOVE Storage for real VSWA and data buffers for prereads. Each VSWA requires 120 bytes of
storage. The maximum number of data buffers for prereads is given by:
(number of strings) x (maximum record length) x (number of files)

FC_ACB Storage for ACBs for VSAM files. Each VSAM file has one ACB, of 80 bytes.
FC_BDAM Storage for BDAM file control blocks. Each BDAM file requires 96 bytes of storage.
FC_DSNAM Storage for data set name blocks. Each file requires a data set name block, which uses
120 bytes of storage.
FC_FCPE Storage for file control pool elements.
FC_FCPW Storage for file control CFDT pool wait elements.
FC_FCUP Storage for the file control CFDT unit of work pool block.
FC_FLAB Storage for file control lasting access blocks.
FC_FLLB Storage for file control lock locator blocks.
FC_FRAB Storage for file request anchor blocks (FRABs). Each transaction that has issued a file
control request has one FRAB. The FRAB is retained until the end of the task. There is a
free chain of FRABs not currently in use.
FC_FRTE Storage for file request thread elements (FRTE). There is one FRTE for each active file
control request per task. A file control request has a FRTE if it meets these conditions:
• It has not yet stopped its VSAM thread. For example, a browse that has not yet issued
an ENDBR.
• It has updated a recoverable file and a sync point has not yet occurred.
• It is holding READ-SET storage that must be freed in future.
There is a free chain of FRTEs not currently in use.

FC_RPL Storage for file control request parameter lists.

FC_SHRCT Storage for file control SHRCTL blocks. There are eight of these blocks and each
describes a VSAM LSR pool.
FC_VSAM Storage for the file control table (FCT) entries for VSAM files.
FCB_256 File control buffers of length 256 bytes. These buffers are used by file control requests
that are made against files with a maximum record length less than or equal to 256
bytes.
FCB_512 File control buffers of length 512 bytes. These buffers are used by file control requests
that are made against files with a maximum record length between 256 + 1 bytes and
512 bytes.

34 CICS TS for z/OS: Configuring CICS

Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
FCB_1K File control buffers of length 1 KB. These buffers are used by file control requests that
are made against files with a maximum record length between 512 + 1 bytes and 1 KB.
FCB_2K File control buffers of length 2 KB. These buffers are used by file control requests that
are made against files with a maximum record length between 1 KB + 1 byte and 2 KB.
FCB_4K File control buffers of length 4 KB. These buffers are used by file control requests that
are made against files with a maximum record length between 2 KB + 1 byte and 4 KB.
FCB_8K File control buffers of length 8 KB. These buffers are used by file control requests that
are made against files with a maximum record length between 4 KB + 1 byte and 8 KB.
FCB_16K File control buffers of length 16 KB. These buffers are used by file control requests that
are made against files with a maximum record length between 8KB + 1 byte and 16 KB.
FCB_32K File control buffers of length 32 KB. These buffers are used by file control requests that
are made against files with a maximum record length between 16 KB + 1 byte and 32
KB.
FCB_64K File control buffers of length 64 KB. These buffers are used by file control requests that
are made against files with a maximum record length between 32 KB + 1 byte and 64
KB.
FCB_128K File control buffers of length 128 KB. These buffers are used by file control requests
that are made against files with a maximum record length between 64 KB + 1 byte and
128 KB.
FCB_256K File control buffers of length 256 KB. These buffers are used by file control requests
that are made against files with a maximum record length between 128 KB + 1 byte and
256 KB.
FCB_512K File control buffers of length 512 KB. These buffers are used by file control requests
that are made against files with a maximum record length between 256 KB + 1 byte and
512 KB.
FCB_1M File control buffers of length 1MB. These buffers are used by file control requests that
are made against files with a maximum record length between 512 KB + 1 byte and 1
MB.
FCB_2M File control buffers of length 2 MB. These buffers are used by file control requests that
are made against files with a maximum record length between 1 MB + 1 byte and 2 MB.
FCB_4M File control buffers of length 4 MB. These buffers are used by file control requests that
are made against files with a maximum record length between 2 MB + 1 byte and 4 MB.
FCB_8M File control buffers of length 8 MB. These buffers are used by file control requests that
are made against files with a maximum record length between 4 MB + 1 byte and 8 MB.
FCB_16M File control buffers of length 16 KB. These buffers are used by file control requests that
are made against files with a maximum record length between 8 MB + 1 byte and 16
MB.
FCSTATIC File control static storage.
ICUS Storage for internal control element (ICE) secure extensions.
IE_GENRL Storage for the control blocks for the IE domain.
IECCB Storage for the conversation control blocks in the IE domain.
IECSB Storage for the client state blocks in the IE domain.

Chapter 3. How it works: CICS storage 35

 Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
IFGLUWID The VSAM IFGLUWID area.
IIGENRAL The IIOP domain general subpool.
IIMBR The IIOP domain request model browse block.
IIMDB The IIOP domain request model block.
IS_GENRL Storage for the control blocks for the IS domain.
ISAQ Storage for IS allocate queue elements.
ISCB Storage for IS control blocks, used to record installed instances of IPCONNs.
ISQA Storage for IS queue attach control blocks.
ISRD Storage for IS remote delete requests.
ISSB Storage for the IS session blocks, each of which is associated with an ISCB subpool.
ISSS Storage for IS session sets.
KEANCHOR Storage Manager domain anchors.
KESTK31 28 KB 31-bit (above the line) stack segments. There is one per MXT plus one for every
dynamic system task that is running.
KESTK31E 8 KB 31-bit (above the line) extension stack segments. There is at least one for every
ten tasks specified in the MXT limit.
KETASK Storage for kernel task entries.
LD_CDE Storage for loader domain dummy CDEs.
LD_CNTRL Storage for loader domain general control information.
LD_LDBE Storage for LDBE (loader browse element) control blocks for the loader domain.
LD_LDWE Storage for LDWE (loader suspend work element) control blocks for the loader domain.
LD_PLIBE Storage for program library element storage for the loader domain.
LDENRS Storage for the extended CICS nucleus, and 31-bit macro tables that are RESIDENT.
The extended CICS nucleus is approximately 50 KB. Programs are defined with
EXECKEY(CICS) and link edited RMODE(ANY) without the REENTRANT option.
LDENUC Storage for the extended CICS nucleus and 31-bit macro tables that are not RESIDENT.
The extended CICS nucleus is approximately 50 KB. Programs are defined with
EXECKEY(CICS) and link edited RMODE(ANY) without the REENTRANT option.
LGBD Storage for log stream name, journal name, and journal model browse tokens for the log
manager domain.
LGGD Storage for explicitly opened general logs for the log manager domain.
LGGENRAL The general-purpose subpool for the log manager domain.
LGJI Storage for journal name entries for the log manager domain.
LGSD Storage for log stream data entries for the log manager domain.
LGUOW Storage for unit-of-work data entries for the log manager domain.
LI_PLB Storage for the language interface program language block. One is allocated for each
program when control is first passed to it.

36 CICS TS for z/OS: Configuring CICS

Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
L2GENRAL The log manager domain general subpool.
L2OFL2BL Storage for logger block entries for the log manager domain.
L2OFL2BS Storage for browseable stream objects for the log manager domain logger.
L2OFL2CH Storage for chain objects for the log manager domain logger.
L2OFL2SR Storage for stream objects for the log manager domain logger.
MDTTABLE The MDT field attribute table for BMS maps sent through the CICS web interface.
ML_GENRL General storage for the ML domain.
MN_CNTRL Storage for monitoring control blocks general information.
MN_TIMAS Storage for monitoring control blocks identity monitoring area.
MN_TMAS Storage for monitoring control blocks transaction monitoring area.
MN_TRMAS Storage for monitoring control blocks resource monitoring area.
MQM WebSphere® MQ communication storage.
MRO_QUEU Used by the MRO work queue manager.
MROWORKE Used by the MRO work queue manager elements.
NQEAS Storage for NQ domain queue element areas.
NQGENRAL A general subpool used by NQ domain.
NQPOOL Storage for NQ domain enqueue pools.
NQRNAMES Storage for NQRN directory entries.
OTGENRAL The general subpool used by the OT domain.
OTISINST Storage for inflight state of OTS transactions.
OVERLAPD Storage for overlap field merging.
PGCHCB Storage for channel control blocks. This storage contains header information that
describes a channel.
PGCPCB Storage for the channel container pool control block. This storage contains header
information that describes sets of containers.
PGCPCBCH Storage for the chained container pool control block.
PGCRBB Storage for browses of channel containers.
PGCRCB Storage for channel container control blocks. This storage contains the header
information for each container.
PGCSCB Storage for channel container segments.
PGGENRAL Storage for general purpose program manager domain subpools.
PGHMRSA Storage for program handle manager cobol register save areas.
PGHTB Storage for the program manager handle table block.
PGJVMCL Storage for JVM class names.
PGLLE Storage for program manager load list elements.

Chapter 3. How it works: CICS storage 37

 Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
PGPGWE Storage for program manager wait elements.
PGPPTE Storage for program manager program definitions.
PGPTA Storage for program manager transaction-related information.
PI_GENRL General storage for the pipeline manager (PI) domain.
PI_POLCY Currently not used.
PI_PRSER Currently not used.
PINODEBL Storage for pipeline objects.
PIPEINST Storage for pipeline objects.
PITKDAT Storage for pipeline token data for context token.
PITKPOOL Storage for pipeline tokens.
PITXMAST Storage for Web Services Atomic Transaction (WS-AT) main control block or PI domain
transaction control block.
PR_TABLE Storage for PTEs from the PRT.
PTTWSB General storage for pool tokens.
RCLELEM Storage for the web row-column element list storage.
RCTABLE Web table storage.
RLGENRAL The resource lifecycle general subpool.
RMGENRAL The recovery manager general subpool.
RMOFRMLK Storage for recovery manager link objects.
RMOFRMUW Storage for recovery manager unit-of-work objects.
ROWARAY Web row array storage.
RS_FILEL Region status (RS) domain file list storage.
RS_GENRL Storage for the control blocks for the RS domain.
RUNTRAN A transaction manager subpool for run transaction.
RUTKPOOL A subpool for reusable token class.
RXGENRAL A general subpool for RX domain.
RZGENRAL A general subpool for request streams domain.
RZOFRSNR Storage for request streams notification requests.
RZOFRSRG Storage for request streams registration objects.
RZOFRZRS Storage for request streams objects.
RZOFRZTR Storage for request stream transports.
SHGENRAL The general subpool for scheduler services domain.
SHOFSHRE Storage for scheduler services request objects.
SJGENRAL The general subpool for SJVM domain.
SJJ8TCB Storage for TCBs in the SJVM domain.

38 CICS TS for z/OS: Configuring CICS

Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
SMSHRC31 Storage for many control blocks of the SHARED_CICS31 class.
SMTP Line and terminal I/O areas. The storage requirements depend on the amount of
terminal and line traffic in the system. The subpool can be tuned by reducing the
RAPOOL, RAMAX, TIOAL size, and number of MRO sessions.
SOCKET Storage for socket objects.
SOCKPOOL Socket pool storage.
SOCKSSL Storage for the SSL data related to a socket.
SOGENRAL The sockets domain general subpool.
SOLTE Storage for socket domain listener terminal entries.
SOSTE Storage for socket domain socket terminal entries.
SOTBR Storage for socket domain TCPIPSERVICE browse blocks.
SOTDB Storage for socket domain TCPIPSERVICE blocks.
SOTKPOOL Storage for socket domain socket tokens.
STSUBPOL A statistics domain manager subpool.
SZSPFCCD The FEPI connection control subpool.
SZSPFCCM The FEPI common area subpool.
SZSPFCCV The FEPI conversation control subpool.
SZSPFCDS The FEPI device support subpool.
SZSPFCNB The FEPI node initialization block subpool.
SZSPFCND The FEPI node definition subpool.
SZSPFCPD The FEPI pool descriptor subpool.
SZSPFCPS The FEPI property descriptor subpool.
SZSPFCRP The FEPI request parameter list subpool.
SZSPFCRQ The FEPI requests subpool.
SZSPFCSR The FEPI surrogate subpool.
SZSPFCTD The FEPI target descriptor subpool.
SZSPFCWE The FEPI work element subpool.
SZSPVUDA The FEPI data areas subpool.
TA_GENRL Currently not used.
TASKASOC Storage for sockets domain task association objects.
TD_TDCUB Storage for all the transient data CI update control blocks.
TD_TDQUB Storage for all the transient data queue update control blocks.
TD_TDUA Storage for all the transient data UOW anchor control blocks.
TFUS Storage for TCTTE secure extensions.
TGODR Storage for the transaction group origin data record.

Chapter 3. How it works: CICS storage 39

 Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
TIA_POOL The timer domain anchor subpool.
TIQCPOOL The timer domain quick cell subpool.
TSBRB Storage for temporary storage (TS) browse blocks.
TSBUFFRS Temporary storage I/O buffers. The storage requirement is given by:
(TS control interval size) x (number of TS buffers). The use of temporary storage
by application programs affects the size of a number of subpools associated with
temporary storage control blocks.

TSGENRAL The amount of storage used by the TSGENRAL subpool. The amount depends on the
number of buffers and strings and the control interval size defined for the temporary
storage data set.
TSMBR Storage for temporary storage browse blocks.
TSMDB Storage for temporary storage model blocks.
TSQAB Storage for TS queue anchor blocks.
TSQOB Storage for TS queue ownership blocks.
TSQUB Storage for TS queue update blocks.
TSTSS Storage for TS section descriptors.
TSTSX Storage for TS auxiliary item descriptors.
TSW Storage for TS wait queue elements.
UE_EPBPL The subpool for the user exit program block (EPB).
USIDTBL Storage for the attach security userid table entries (LUITs). See ISC/IRC attach time
entry statistics for more information.
USGENRAL The general purpose subpool for the user domain.
USRTMQUE Storage for queue elements for users waiting for USRDELAY. Each queue element is 16
bytes.
USUDB Storage for user data blocks. The storage requirement is 128 bytes for each unique
user.
USXDPOOL Storage for user domain transaction-related data. Each running transaction requires 32
bytes.
XSGENRAL The general purpose subpool for the security domain.
XSXMPOOL Storage for security domain transaction-related data. Each running transaction requires
56 bytes.
WBGENRAL The general subpool for CICS web support.
WBOUTBND Storage for outbound HTTP buffers.
WBPATHN1 Storage for path node elements used for URI map storage for short path names.
WBPATHN2 Storage for path node elements used for URI map storage for long path names.
WBPATHUR Storage used for URI map storage for URI path names.
WBRQB Storage for web request objects.

40 CICS TS for z/OS: Configuring CICS

Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
WBS Storage for inbound web session blocks used for the IPIC protocol.
WBURIMAP Storage for URI mapping elements.
WBURIXT1 Storage for URI mapping element extensions (short).
WBURIXT2 Storage for URI mapping element extensions (long).
WBWRBR Storage for web request browse blocks.
WBVHOST Storage for URI virtual host elements.
WEB_STA Web state-related storage.
WEBELEM Storage for web output element lists.
WEBHTML Storage for web HTML buffers.
WEBINB Storage for web domain storage for incoming data.
WEB327B Web domain 3270 buffer storage.
W2ATOMSE Storage for Web 2.0 atom service elements.
W2ATOMX1 Storage for Web 2.0 atom service extensions.
W2ATOMX2 Storage for Web 2.0 atom service extensions.
W2GENRAL The general-purpose subpool for the Web 2.0 domain.
XMGENRAL The general-purpose subpool for the transaction manager.
XMTCLASS Storage for the transaction manager tranclass definition.
XMTRANSN Storage for transaction manager transactions; one for every transaction in the system.
XMTXDINS The transaction manager transaction definition.
XMTXDSTA The transaction manager transaction definition.
XMTXDTPN The transaction manager transaction definition TPNAME storage.
ZC2RPL Storage for the duplicate RPLs for active tasks. Each active task associated with a z/OS
Communications Server terminal requires 304 bytes.
ZCBIMG Storage for BIND images.
ZCBMSEXT Storage for the BMS extensions for terminals. Subpool storage requirements are 48
bytes for each terminal, surrogate, ISC session, and console.
ZCBUF Storage for the non-LU 6.2 buffer list.
ZCCCE Storage for the console control elements. Each console requires 48 bytes.
ZCGENERL The general-purpose subpool for terminal control.
ZCLUCBUF Storage for the LU 6.2 SEND and RECEIVE buffer list.
ZCLUCEXT Storage for the LU 6.2 extensions. The storage requirement is 224 bytes for each LU 6.2
session.
ZCNIBD Storage for the NIB descriptors. Each terminal, surrogate, ISC session, and system
definition requires 96 bytes of storage.

Chapter 3. How it works: CICS storage 41

 Table 11. CICS subpools in the ECDSA (continued)
Subpool name Description
ZCNIBISC Storage for the expanded NIB and response during OPNDST and CLSDST for ISC. Each
concurrent logon and logoff requires 448 bytes of storage. The maximum number of
concurrent requests is limited by the number of sessions. The storage can be tuned by
reducing the number of sessions.
ZCNIBTRM Storage for the expanded NIB during OPNDST and CLSDST for terminals. Each
concurrent logon and logoff requires 192 bytes of storage. The maximum number of
concurrent requests is limited by the number of terminals. The storage can be tuned by
reducing the number of terminals.
ZCRAIA Storage for the RECEIVE ANY I/O areas.
ZCRPL Storage for the RPLs for active tasks. Each active task associated with a z/OS
Communications Server terminal requires 152 bytes.
ZCSETB Storage for application control buffers above 16 MB but below 2 GB.
ZCSKEL Storage for the remote terminal entries. Each remote terminal definition requires 32
bytes of storage.
ZCSNEX Storage for the TCTTE sign-on extensions. The storage requirement is 48 bytes for each
terminal, surrogate, session, and console.
ZCTCME Storage for the mode entries. Each mode entry requires 128 bytes of storage.
ZCTCSE Storage for the system entries. Each system entry requires 192 bytes of storage.
ZCTCTTEL Storage for the large terminal entries. 504 bytes of storage are required for every
terminal, surrogate model, and ISC session defined.
ZCTCTTEM Storage for the medium terminal entries. 400 bytes of storage are required for every
IRC batch terminal.
ZCTCTTES Storage for the small terminal entries. 368 bytes of storage are required for every MRO
session and console.
ZCTPEXT The TPE extension.
ZCTREST The terminal control transaction restart subpool.
ZCTCTUA Storage for the TCTTE user area. Its location is controlled by the system initialization
parameter, TCTUALOC=ANY|BELOW and the system initialization parameter,
TCTUAKEY=CICS|USER. The maximum size can be specified in USERAREALEN operand
of the terminal definition. For more information about the terminal definition, see
TERMINAL resources.

CICS subpools in the EPCDSA

The subpools in the extended CICS dynamic storage area that is never protected from instruction
execution (EPCDSA) are listed, together with the use of each one.

Table 12. CICS subpools in the ECDSA

Subpool name Description
DFHAPUCA A general subpool for application domain storage that is above 16 MB but below 2 GB.
DFHECFP Storage for event capture event filter predicate blocks.

42 CICS TS for z/OS: Configuring CICS

 Table 12. CICS subpools in the ECDSA (continued)
Subpool name Description
LDENRS Storage for the extended CICS nucleus, and 31-bit macro tables that are RESIDENT.
The extended CICS nucleus is approximately 50 KB. Programs are defined with
EXECKEY(CICS) and link edited RMODE(ANY) without the REENTRANT option.
LDENUC Storage for the extended CICS nucleus and 31-bit macro tables that are not RESIDENT.
The extended CICS nucleus is approximately 50 KB. Programs are defined with
EXECKEY(CICS) and link edited RMODE(ANY) without the REENTRANT option.
SMSHCX31 Storage for CICS key below the line-shared storage where EXECUTABLE is specified on
the GETMAIN command.

CICS subpools in the EPUDSA

The subpools in the extended user dynamic storage area that is never protected from instruction
execution (EPUDSA) are listed, together with the use of each one.

Table 13. CICS subpools in the EPUDSA

Subpool name Description
DFHAPUUA A general subpool for application domain storage above 16 MB but below 2 GB.
LDEPGM Storage for extended (31-bit) dynamically-loaded application programs and programs
defined EXECKEY(USER).
LDERES Storage for extended (31-bit) resident application programs.
SMSHUX31 Storage for user key above 16MB but below 2 GB shared storage where EXECUTABLE is
specified on the GETMAIN command.

CICS subpools in the ESDSA

The subpools in the extended shared dynamic storage area (ESDSA) are listed, together with the use of
each one.

Table 14. CICS subpools in the ESDSA

Subpool name Description
DFHAPUAN A general subpool for application domain storage above 16 MB but below 2 GB.
IE_BUFF The IE domain buffers that are used when processing inbound and outbound
messages.
IIBUFFER The IIOP domain buffer subpool.
IS_BUFF Storage for the IS buffers that are used to hold the message data for an IS session
block.
SJSCCHS Storage for the Java™ Virtual Machine domain (SJ domain) class cache.
SJSJPTE Storage for the SJ domain profile table entries.
SJSJTCB Storage for the SJ domain TCB usage.
SJUSERKY SJ domain user key storage.
SMSHRU31 Used for many control blocks of SHARED_USER31 class storage, RMI global work
areas, EDF blocks for the life of the transaction being monitored, and other control
blocks.
WEBINB Inbound Web 3270 buffer storage.

Chapter 3. How it works: CICS storage 43

 Table 14. CICS subpools in the ESDSA (continued)
Subpool name Description
ZCTCTUA Storage for the TCTTE user area. Its location is controlled by the system initialization
parameter, TCTUALOC=ANY|BELOW and the system initialization parameter,
TCTUAKEY=CICS|USER. The maximum size can be specified in USERAREALEN operand
of the terminal definition. For more information about the terminal definition, see
TERMINAL resources.

CICS subpools in the ERDSA

The subpools in the extended read-only dynamic storage area (ERDSA) are listed, together with the use of
each one.

Table 15. CICS subpools in the ERDSA

Subpool name Description
LDENRSRO Storage for the extended CICS nucleus and 31-bit macro tables that are RESIDENT. The
extended CICS nucleus is approximately 1850 KB. The contents of this subpool must
be linked reentrant.
LDENUCRO Storage for the extended CICS nucleus and 31-bit macro tables that are not RESIDENT.
The extended CICS nucleus is approximately 1850 KB. The contents of this subpool
must be linked reentrant.
LDEPGMRO Storage for extended (31-bit) dynamically loaded application programs. The contents
of this subpool must be linked reentrant.
LDERESRO Storage for extended (31-bit) resident application programs. The contents of this
subpool must be linked reentrant.

CICS subpools in the GCDSA

The subpools in the above-the-bar CICS dynamic storage area (GCDSA) are listed, together with the use
of each one.

Table 16. CICS subpools in the GCDSA

Subpool name Description
CPSM_64 Storage for CICSPlex SM API result sets in a System Management Single Server (SMSS)
environment.
CQCQ_TR Storage for the console queue processing trace table.
CQCQ_XT Storage for the console queue transaction entry table.
DFHAPD64 A general subpool for 64-bit application domain storage.
DFHMPMDR Used for allocations of Managed Platform model rules (MPMODR) control blocks.
DFHMPPMB Used for allocations of Managed Platform policy modifier (MPPMB) control blocks.
DFHMPPRB Used for allocations of Managed Platform policy rule (MPPRB) control blocks.
DFHMPTAS Used for allocations of Managed Platform task lifetime storage (MPTAS) control blocks.
DTCTL64 Used to store shared data table control data (descriptors, backout elements, and index
entries).
EP_64 Storage for control blocks for items in event capture queues, used in CICS event
processing.

44 CICS TS for z/OS: Configuring CICS

Table 16. CICS subpools in the GCDSA (continued)
Subpool name Description
LD_APES Active Program Element (APE) control blocks for the loader domain.
LD_CPES Current Program Element (CPE) control blocks for the loader domain.
LD_CSECT CSECT list storage for the loader domain.
ML64GNRL Buffers for input and output for the z/OS XML System Services (XMLSS) parser.
MN_ADCS Storage for association data control blocks.
MPSTAT Storage for control blocks for any static data capture items defined for a policy rule with
an event action.
PGCSDB Storage for channel container segments, including segment headers.
PGPPTE64 Storage for application context data control blocks.
SMSHRC64 Used for many control blocks of SHARED_CICS64 class storage.
SOGNRL6 Storage for HTTPS data for the sockets domain.
TSDTN Temporary storage (TS) digital tree nodes.
TSICDATA Storage for TS interval control elements.
TSMAIN Storage for main temporary storage.
TSMN0064 Fixed length elements for main temporary storage items that have lengths, including
the header, less than or equal to 64 bytes. The header length is 8 bytes.
TSMN0128 128-byte fixed length elements for main temporary storage items.
TSMN0192 192-byte fixed length elements for main temporary storage items.
TSMN0256 256-byte fixed length elements for main temporary storage items.
TSMN0320 320-byte fixed length elements for main temporary storage items.
TSMN0384 384-byte fixed length elements for main temporary storage items.
TSMN0448 448-byte fixed length elements for main temporary storage items.
TSMN0512 512-byte fixed length elements for main temporary storage items.
TSMN0576 576-byte fixed length elements for main temporary storage items.
TSMN0640 640-byte fixed length elements for main temporary storage items.
TSMN0704 704-byte fixed length elements for main temporary storage items.
TSMN0768 768-byte fixed length elements for main temporary storage items.
TSMN0832 832-byte fixed length elements for main temporary storage items.
TSMN0896 896-byte fixed length elements for main temporary storage items.
TSMN0960 960-byte fixed length elements for main temporary storage items.
TSMN1024 1024-byte fixed length elements for main temporary storage items.
TSQUEUE TS queue descriptors.
TSTSI TS item descriptors.
WB64GNRL Storage for HTTP data for the Web domain (WB).
WBOUTB64 A general subpool for Web domain (WB) outbound use.

Chapter 3. How it works: CICS storage 45

 Table 16. CICS subpools in the GCDSA (continued)
Subpool name Description
WU_64 Storage for CMCI retained results and metadata.
XMGEN64 A general subpool for 64-bit storage.

CICS subpools in the GSDSA

The subpools in the above-the-bar shared dynamic storage area (GSDSA) are listed, together with the use
of each one.

Table 17. CICS subpools in the GSDSA

Subpool name Description
DFHAPU64 A general subpool for application domain storage above the bar.
SMSHRU64 Used for many control blocks of SHARED_USER64 class storage.

MVS storage
MVS storage is available to z/OS to perform region-related services in response to an operating system
macro or SVC issued by the CICS region. MVS storage is the amount of storage that remains after the
dynamic storage areas and other CICS storage requirements are met. CICS initially preallocates the CICS
DSAs out of the region storage and manages this storage. The remainder of the storage is used where
CICS, z/OS components, vendor programs, or applications issue requests.
For example, languages and components such as z/OS Communications Server, DL/I, or Db2 issue z/OS
GETMAIN requests to obtain storage in which to build their own control blocks. These requests are met
from z/OS storage below 2 GB. If you run Java™ or Node.js programs in a region, both 31-bit and 64-bit
MVS storage is allocated to each JVM or Node.js application that runs under the control of CICS.
Figure 5 on page 47 shows the layout of virtual storage for a z/OS address space and the various storage
areas.
The areas that are shown in the diagram are introduced in MVS common area and MVS private area. See
Terms to understand about CICS storage for information about the separating areas that are called the
line and the bar.
The 24-bit and 31-bit virtual storage areas are managed according to the concept of subpools, where
each subpool has specific characteristics, such as authorization requirements, fixed or pageable storage,
common (available to all address spaces) or private storage area, a system or application program area,
and so on.
• For each area below 16 MB, there is an equivalent area above 16 MB. For example, the common area
below 16 MB has the equivalent extended common area above 16 MB.
• z/OS services such as GETMAIN, STORAGE OBTAIN, CPOOL are used to allocate, deallocate, and alter
storage in these areas on a byte basis.
• Specific virtual private ranges can be shared between address spaces.
The 64-bit virtual storage areas above the bar are managed according to the concept of memory objects.
Memory objects are allocated in megabyte increments and have specific attributes.
• CICS uses z/OS services such as IARV64 and IARCP64 to allocate, deallocate, and alter storage in these
areas.
• Specific virtual storage ranges can be defined as common or private and, if private, can be shared
among different address spaces.

46 CICS TS for z/OS: Configuring CICS

 16 EB
High-Virtual Private High-Virtual User Region

High-Virtual Shared High-Virtual Shared

2 TB
High-Virtual Common High-Virtual Common
64 bit addressing
High-Virtual User Region
320 GB
High-Virtual Private Local System Area
64 GB
Compressed References Area
2 GB-4 GB
Extended LSQA, SWA, AUK “the bar”
(Extended High Private)
Extended Private
Extended User Region
(Extended Low Private)

Extended Restricted Use

CSA 31 bit addressing
Extended CSA
Extended Common
Extended PLPA, FLPA, MLPA

Extended SQA

Extended Nucleus
16 MB
“the line”
Nucleus

SQA

Common PLPA, FLPA, MLPA

CSA

Restricted Use CSA (RUCSA)

24 bit addressing
LSQA, SWA, AUK
(High Private)

User Region
Private
(Low Private)
24 KB
System Region
8 KB
Common PSA
0

Private area Common area High-Virtual Shared

Figure 5. Virtual storage map that shows common areas and private areas

Chapter 3. How it works: CICS storage 47

 Storage when CICS uses other products
The VSAM buffers and most of the VSAM file control blocks reside above 16 MB. The VSAM buffers might
be for CICS data sets defined as using local shared resources (LSR) or nonshared resources (NSR). The
VSAM LSR pool is built dynamically above 16 MB when the first file specified as using it is opened, and
deleted when the last file that uses it is closed. Every opened data set requires some amount of storage in
this area for such items as input/output blocks (IOBs) and channel programs.
Files that are defined as data tables use storage above 16 MB for records that are included in the table,
and for the structures that allow them to be accessed.
Queued sequential access method (QSAM) files require some storage in this area. Transient data uses a
separate buffer pool above 16 MB for each type of transient data queue. Storage is obtained from the
buffer pool for transient data queue resources as they are installed. Transient data also uses a buffer
pool above 16 MB where sections of extrapartition transient data queue definitions are copied for use by
QSAM, when an extrapartition queue is being opened or closed.
CICS DBCTL uses DBCTL threads. DBCTL threads are specified in the CICS address space but they have
storage requirements in the high private area of the CICS address space. If CICS uses Db2, MVS storage is
allocated for each Db2 thread.

MVS storage limits

The physical placement of the MVS storage below 2 GB can be anywhere in the region, and might
sometimes be above the CICS region. The region might expand into this MVS storage area, above the
region, up to the IEALIMIT set by the installation or up to the default value. For more information about
IEALIMIT, see z/OS MVS Installation Exits. This expansion occurs when z/OS GETMAIN requests are
issued, the MVS storage in the region is exhausted, and the requests are met from the MVS storage area
above the region.
When both the MVS storage areas below 2 GB are exhausted, the GETMAIN request fails, causing abends
or a bad return code if it is a conditional request.
The amount of MVS storage below 2 GB must be enough to satisfy the requests for storage during the
entire execution of the CICS region. You must use caution; you never want to run out of MVS storage, but
you also do not want to allocate too much.
The size of MVS storage below 2 GB is the storage that remains in the region after you allow for the
storage required for the dynamic storage areas, the kernel storage areas, and the IMS/VS and DBRC
module storage. It is important to specify the correct DSA sizes so that the required amount of MVS
storage is available in the region.
Because of the dynamic nature of a CICS system, the demands on MVS storage varies through the day,
that is, as the number of tasks increases or data sets are opened and closed. Also, because of this
dynamic use of MVS storage, fragmentation occurs, and you must allocate more storage to compensate
for this. For more information, see Calculating storage requirements for JVM servers .

MVS common area

MVS storage is separated into common areas and private areas. The MVS common area contains a
number of storage areas. CICS uses the Common Service Area (CSA) and its equivalent in 31-bit storage,
the Extended Common Service Area (ECSA).
For an illustration of the storage through all addressing ranges of the z/OS address space, see Virtual
storage map showing common areas and private areas.
The following areas comprise the MVS common area. All these elements of the common area, except the
PSA, are duplicated above 16 MB.
• “Common service area (CSA) and extended common service area (ECSA)” on page 49
• “Link pack area (LPA) and extended link pack area (ELPA)” on page 49
• System queue area (SQA and ESQA)

48 CICS TS for z/OS: Configuring CICS

• Nucleus and extended nucleus
• Prefixed storage area (PSA).
For detailed information about these areas, see z/OS MVS Programming: Extended Addressability Guide
and z/OS MVS Programming: Assembler Services Guide.

Common service area (CSA) and extended common service area (ECSA)
The common service area contains z/OS system control programs and control blocks. Each address space
uses the same common service area.
These common service areas contain, for example, buffers or executable modules for IMS, ACF/SNA, and
JES3. CSA and ECSA also contain control blocks that are used to define subsystems and provide working
storage for areas such as TSO input/output control (TIOC), event notification facility (ENF), and message
processing facility (MPF). When system configuration and activity increases, the storage requirements
also increase.
CICS uses the ECSA for multiregion operation (MRO) to store control blocks only and not for data transfer.
If cross-memory facilities are used, the ECSA usage is limited to the following amounts:
• 40 bytes per session if IRC (interregion communication) is open, irrespective of whether the resource is
acquired and in-service, or released
• 4 KB per address space participating in MRO
In addition, the amount of storage used by CICS MRO for interregion buffers is detailed in the DFHIR3794
message issued to the CSMT destination at termination.
CICS also uses ECSA for IMS and shared data tables.
For static systems, the amount of unallocated CSA should be around 10% of the total allocated CSA; for
dynamic systems, a value of 20% is optimal. Unlike the SQA, if CSA is depleted there is no scope for
expansion and a re-IPL might be required.

Link pack area (LPA) and extended link pack area (ELPA)
The link pack area (LPA) contains all the common reentrant modules that are shared by the system.
The link pack area (LPA) provides economy of real storage by sharing one copy of the modules, protection
because LPA code cannot be overwritten, even by key-0 programs, and reduced path length because
modules can be branched to.
It has been established that a 2 MB LPA is sufficient for z/OSwhen using CICS with MRO or ISC, that is, the
size of an unmodified LPA as shipped by IBM. If it is larger, there are load modules in the LPA that might
be of no benefit to CICS. There might be SORT, COBOL, ISPF, and other modules that are benefiting batch
and TSO users. You must evaluate whether the benefits you obtain are worth the virtual storage that they
use. If modules are removed, check whether you need to increase the size of the regions they run in to
accommodate them.
The pageable link pack area (PLPA) contains supervisor call routines (SVCs), access methods, and other
read-only system programs, along with read-only reenterable user programs selected by an installation
to be shared among users of the system. Optional functions or devices selected by an installation during
system generation add additional modules to the PLPA.
The modified link pack area (MLPA) contains modules that are an extension to the PLPA. The MLPA can be
changed at IPL without requiring the Create Link Pack Area (CLPA) option at IPL to change modules in the
PLPA.
For performance reasons, an installation can choose to have some modules that are normally loaded in
the pageable link pack area (PLPA) loaded into the fixed link pack area (FLPA) .

Chapter 3. How it works: CICS storage 49

 System queue area (SQA) and extended system queue area (ESQA)
This area contains tables and queues relating to the entire system. Its contents are highly dependent on
configuration and job requirements at an installation.
The total amount of virtual storage, number of private virtual storage address spaces, and size of the
installation performance specification table are some of the factors that affect the system's use of SQA.
The size of the initial allocation of SQA is rounded up to a 64 KB boundary, though SQA may expand into
the common system area (CSA) in increments of 4 KB.
If the SQA is over-allocated, the virtual storage is permanently wasted. If it is under-allocated, it expands
into CSA, if required. In a storage constrained system, it is better to be slightly under-allocated. This
can be determined by looking at the amount of free storage. If the extended SQA is under-allocated, it
expands into the extended CSA. When both the extended SQA and extended CSA are used up, the system
allocates storage from SQA and CSA below the 16 MB line. The allocation of this storage could eventually
lead to a system failure, so it is better to over-allocate extended SQA and extended CSA.

Nucleus and extended nucleus

The nucleus and extended nucleus is a static area that contains the nucleus load module and extension
to the nucleus. Although its size is variable depending on the configuration of an installation, it cannot
change without a re-IPL of z/OS.
The nucleus area below 16 MB does not include page frame table entries, and the size of the nucleus area
is rounded up to a 4 KB boundary. In addition, the nucleus area is positioned at the top of the 16 MB map
while the extended nucleus is positioned just above 16 MB.

Prefixed storage area (PSA)

The PSA contains processor-dependent status information such as program status words (PSWs). There is
one PSA per processor; however, all of them map to virtual storage locations 0 KB to 4 KB as seen by that
particular processor.
z/OS treats this as a separate area; there is no PSA in the extended common area.

MVS private area

MVS storage is separated into common areas and private areas. There is a private area in each addressing
range. The private area in 31-bit storage is called the extended private area. The private area and
extended private area are further sub-divided into the high private area (and its equivalent in 31-bit
storage, the extended high private area) and low private area (and its equivalent in 31-bit storage, the
extended low private area).
For an illustration of the storage through all addressing ranges of the z/OS address space, see Virtual
storage map showing common areas and private areas.
The private area in 24-bit storage contains the following areas:
• A local system queue area (LSQA). See “Local system queue area (LSQA)” on page 51.
• A scheduler work area (SWA). See “Scheduler work area (SWA)” on page 51.
• Authorized user key area (AUK), including subpools 229 and 230 (the requestor protect key area). See
“Subpool 229” on page 52 and “Subpool 230” on page 52.
• A 16 KB system region area that is used by the initiator. There is no equivalent to this in the extended
private area.
• A user region for running programs and storing data. See “User region” on page 52.
The area within the private area below 16MB that contains the LSQA, SWA, and subpools 229 and 230 is
called the high private area. (Don't confuse this with the private areas that reside above 2GB which are
called high-virtual private areas.) See “High private area” on page 51. The area within the private area
below 16 MB that contains that system region and user region is called the low private area.

50 CICS TS for z/OS: Configuring CICS

The extended private area in 31-bit storage contains:
• A local system queue area (LSQA). See “Local system queue area (LSQA)” on page 51.
• A scheduler work area (SWA). See “Scheduler work area (SWA)” on page 51.
• Subpools 229 and 230 (the requestor protect key area). See “Subpool 229” on page 52 and “Subpool
230” on page 52.
• An extended user region for running programs and storing data. See “User region” on page 52.
For detailed information about these areas, see z/OS MVS Programming: Extended Addressability Guide
and z/OS MVS Programming: Assembler Services Guide.

High private area

This area is not specifically used by CICS, but contains information and control blocks that z/OS needs to
support the region and its requirements. It contains
• A local system queue area (LSQA). See “Local system queue area (LSQA)” on page 51.
• A scheduler work area (SWA). See “Scheduler work area (SWA)” on page 51.
• Authorized user key area (AUK), including subpools 229 and 230 (the requestor protect key area). See
“Subpool 229” on page 52 and “Subpool 230” on page 52.

Local system queue area (LSQA)

This area generally contains the control blocks for storage and contents supervision. Depending on the
release level of z/OS, it can contain subpools 233, 234, 235, 253, 254, and 255.
The total size of LSQA is difficult to calculate because it depends on the number of loaded programs,
tasks, and the number and size of the other subpools in the address space. As a guideline, the LSQA
usually runs between 40 KB and 170 KB, depending on the complexity of the rest of the CICS address
space but it can be much larger if the USS shared library region is enabled.
The storage control blocks define the storage subpools in the private area, describing the free and
allocated areas within those subpools. They can consist of such things as subpool queue elements
(SPQEs), descriptor queue elements (DQEs), and free queue elements (FQEs).
The contents management control blocks define the tasks and programs in the address space, such as
task control blocks (TCBs), the various forms of request blocks (RBs), contents directory elements (CDEs),
and many more.
CICS DBCTL requires LSQA storage for DBCTL threads. Allow 9 KB for every DBCTL thread, up to the
MAXTHRED value.
Environments based in USS, such as a JVM server or Node.js, potentially require large amounts of LSQA if
use of the shared library region is enabled. For information, see Tuning the z/OS shared library region.

Scheduler work area (SWA)

The scheduler work area (SWA) is made up of subpools 236 and 237, which contain information about
the job and step itself. Almost anything that appears in the job stream for the step creates some kind of
control block here.
Generally, this area can be considered to increase with an increase in the number of DD statements. The
distribution of storage in subpools 236 and 237 varies with the operating system release and whether
dynamic allocation is used. The total amount of storage in these subpools starts at 100 to 150 KB, and
increases by about 1 to 1.5 KB per allocated data set.
A subset of SWA control blocks can, optionally, reside above 16 MB. JES2 and JES3 have parameters that
control this. If this needs to be done on an individual job basis, use the z/OS SMF exit, IEFUJV.

Chapter 3. How it works: CICS storage 51

 Subpool 229
This subpool is used primarily for the staging of messages. JES uses this area for messages to be printed
on the system log and JCL messages as well as SYSIN/SYSOUT buffers.
Generally, a value of 40 KB to 100 KB is acceptable, depending on the number of SYSIN and SYSOUT data
sets and the number of messages in the system log.

Subpool 230
This subpool is used by the z/OS Communications Server for inbound message assembly for segmented
messages. Data management keeps data extent blocks (DEBs) here for any opened data set.
Generally, the size of subpool 230 increases as the number of opened data sets increases. Starting with
an initial value of 40 KB to 50 KB, allow 300 to 400 bytes per opened data set.
CICS DBCTL requires subpool 230 storage for DBCTL threads. Allow 3 KB for every DBCTL thread, up to
the MAXTHRED value.

User region
A portion of each private area is available to the user's application program and this is referred to as its
user region. (Note that this terminology is distinct from a CICS region, which is an instance of CICS within a
z/OS address space.)
The user region in 24-bit storage contains:
• CICS DSA
• TCB storage
• MVS common area
The extended user region in 31-bit storage contains:
• CICS Extended DSAs and control blocks
• JVM server LE enclave
• Other JVM storage
• Storage for other products, such as Db2 and IBM MQ.
The user region in 64-bit storage (High-Virtual User Region) contains:
• CICS GDSA
• 64-bit control blocks
• 64-bit GETMAINs
• 64-bit JVM storage
• CICS trace table
The private area user region, that is, the user region in 24-bit storage, can be any size up to the size of the
entire private area (from the top end of the prefixed storage area (PSA) to the beginning, or bottom end,
of the common service area (CSA)) minus the size of LSQA, SWA, subpools 229 and 230, and the system
region. This storage that is left between the top of the region and the bottom of the high private area is
sometimes referenced as MVS storage above region. The size of this area can vary significantly. As the high
private area grows, it extends down into this area, and the CICS region can extend up into this area up to
the value specified by the IEALIMIT user exit. It is recommended that the region is 420 KB less to allow
for recovery termination management (RTM) processing. (If this free storage is not enough for recovery
termination management (RTM) processing, the address space might be terminated with a S40D abend
that does not produce a dump.)
The segment sizes are one megabyte; therefore, CSA is rounded up to the nearest megabyte. The private
area is in increments of one megabyte.

52 CICS TS for z/OS: Configuring CICS

Where JVM storage is located
When a JVM is used in CICS, the CICS JVM server allocates some CICS control blocks, sets up a Language
Environment® (LE) enclave, requests storage from z/OS, and launches the JVM in the enclave. This
process ensures isolation between multiple JVMs that run in the same CICS region.
Depending on the function that is required, storage that is used by the JVM is manged either by the LE
enclave or allocated directly through MVS storage management services. The LE runtime options that are
used by the JVM server control both the initial size of the LE heap storage and native stack storage and
incremental additions to these storage areas. These storage areas can expand dynamically as the storage
requirements increase. For more information, see Language Environment enclave storage for JVMs.
The storage that is used for a JVM is predominantly MVS 64-bit storage that used by the Java heap,
the native thread stacks and the loaded Java classes. However, 31-bit storage is also required for other
components, including the JVM native libraries, the Java stack, the JCICS native component, and the
instantiated Java classes if using compressed reference. In addition, 24-bit storage is used to create
and manage the underlying threads and their TCBs. For more information about tuning storage, see
Calculating storage requirements for JVM servers .
Note that all the storage allocated by the JVM storage resides in the CICS address space but it is not
controlled by CICS so it is not included in the CICS dynamic storage areas (DSAs).

What CICS uses virtual storage for

Virtual storage is used by a CICS region for its own programs, for the resources that it installs, and for the
user applications that run under its control. Applications use it to store data that they create, and pass to
other transaction instances. Sections of storage that reside in 64-bit storage are used by some of the CICS
facilities.
For information about how CICS virtual storage is organized, see CICS virtual storage.

Chapter 3. How it works: CICS storage 53

 Storage for data in transactions
CICS provides a variety of ways to store data in and between transactions. These areas are all main
storage facilities whose source is the dynamic storage areas (DSAs), extended dynamic storage areas
(EDSAs), or above-the-bar dynamic storage areas (GDSAs). None of them is recoverable, and none can be
protected by resource security keys. For more information, see Storing data in a transaction.

CICS facilities that use 64-bit storage

The CICS facilities that use 64-bit storage and the amount of storage that each facility requires are listed.
You can use this information when you estimate a suitable MEMLIMIT value for your CICS region.
The following table lists CICS facilities that use 64-bit storage and the relevant CICS storage subpools,
and indicates the amount of storage that each facility requires. You can identify the facilities that you use
in your CICS region that require 64-bit storage. You can then examine the storage requirement for those
facilities and use this information to estimate a suitable value for the z/OS MEMLIMIT parameter.

Table 18. CICS facilities that use 64-bit storage

CICS facility Storage use CICS subpool for Notes
storage
Application context 220 bytes for each program PGPPTE64
data control blocks that is defined as an
application entry point.
Association data Approximately 1 KB for each MN_ADCS
control blocks active task.
CICS management For the details to estimate WU_64 The storage is used for retained
client interface storage requirements, results and metadata.
(CMCI) see Estimating storage
requirements for CMCI.
CICSPlex SM API The size of the result set CPSM_64 For information about result
result sets depends on the application. sets, see Working with result
sets.
Console queue 1 MB per subpool CQCQ_TR
processing CQCQ_XT

Containers and Limited to 5% of the PGCSDB The storage remains in use

channels MEMLIMIT value per
transaction.
Event processing
Internal trace table
Minimum 16 KB
Maximum 1 GB
Default 12288 KB (12 MB)
Controlled by the TRTABSZ
system initialization
parameter.
until the channel goes out
of scope, or an application
deletes the container or the
channel.
EP_64 The storage is used for control
blocks for items in event
capture queues.
MVS storage outside CICS allocates a Memory
the CICS DSAs Object of the maximum size
but defines the unused area as
Hidden storage.

54 CICS TS for z/OS: Configuring CICS

Table 18. CICS facilities that use 64-bit storage (continued)
CICS facility Storage use CICS subpool for Notes
storage
JVM servers Java heap (-Xmx), LE thread MVS storage outside The JIT Code Cache is stored
stack, JIT Data cache, JIT the CICS DSAs in 64-bit only if the system
Code Cache, Java shared is at V2R5 or later, and uses
classes (-Xscmx) Java 8 SR5 or later. The shared
class storage is allocated using
USS shared memory and is not
accounted for in the use of
MEMLIMIT.See Setting process
limits in z/OS UNIX.
Loader control blocks Variable The storage that is used
LD_APES
depends on the number of
LD_CPES
program load operations in the
LD_CSECT
CICS region.
Loader control 368 bytes for each IAE LD_IAES Each installed application
blocks for installed element represents a particular
application elements version of an application that is
(IAE) deployed on a platform.
Main temporary TSMAINLIMIT specifies the
Minimum 1 MB TSDTN
storage maximum storage that can be
Maximum 32 GB TSMAIN
used, and is limited to 25% of
Default 64 MB TSMN0064
the MEMLIMIT value. The CICS
TSMN0128
Controlled by the statistics show actual use.
TSMN0192
TSMAINLIMIT system TSMN0256
initialization parameter. TSMN0320
TSMN0384
TSMN0448
TSMN0512
TSMN0576
TSMN0640
TSMN0704
TSMN0768
TSMN0832
TSMN0896
TSMN0960
TSMN1024

TSQUEUE
TSTSI

Chapter 3. How it works: CICS storage 55

Table 18. CICS facilities that use 64-bit storage (continued)
CICS facility Storage use CICS subpool for Notes
storage
Managed Platform 1072 bytes for each user Storage in the DFHMPMDR and
DFHMPMDR
task DFHMPPMB subpools is used
DFHMPPMB
for control blocks for installed
DFHMPTAS
policies. It remains in use until
the bundle that defines the
policy is disabled.
Storage in the DFHMPTAS
subpool contains the policy
counters for a task. It is
allocated for every user task
if any polices are installed in
the CICS region. The storage is
freed at task end.

Message tables Minimum 3 MB for the MVS storage outside Message modules in English
message modules in English. the CICS DSAs are always loaded.
Add 1 MB if the user
message table is loaded.
Add 3 MB for each additional
language that is loaded.

Node.js applications Variable MVS storage outside

the CICS DSAs
Shared data tables DTCTL64 Used to store shared data
table control data (descriptors,
backout elements, and index
entries).
Sockets domain Stores the copy of the SOGNRL64 This storage subpool is used
HTTPS data being sent. The if the sockets domain needs
size of the storage depends to copy the HTTPS message
on the size of the HTTPS before it is sent.
message being sent.
Static data item Variable MPSTAT Used if a policy rule with an
control blocks event action defines static data
capture items.
Storage allocation Variable MVS storage outside Storage used depends on the
control blocks the CICS DSAs amount of storage allocation
activity in your system; for
example, more storage is
required for subpools that keep
an element chain and that have
many small records.
Transaction dump MVS storage outside CICS obtains this storage only
Minimum 16 KB
trace table the CICS DSAs when a transaction dump is
Maximum 1 GB
produced.
Default 1024 KB

Controlled by the TRTRANSZ

system initialization
parameter.

56 CICS TS for z/OS: Configuring CICS

Table 18. CICS facilities that use 64-bit storage (continued)
CICS facility Storage use CICS subpool for Notes
storage
Web domain Stores the HTTP body. The WB64GNRL Where possible, the web
size of the storage used domain holds the HTTP body
depends on the size of the in 64-bit storage by using this
HTTP body being processed. subpool.
Web domain Internal buffer storage for WBOUTB64 Used by the web domain
HTTP outbound messages. to obtain buffers and control
The size of the storage blocks from 64-bit storage.
depends on the size of the
HTTP message being sent.
z/OS XML System ML64GNRL A number of facilities, including
Services (XMLSS) CICS web services, use the
parser I/O buffers parser for XML parsing.

How you can protect storage

Many programs and users compete for use of CICS and its associated storage areas. So CICS provides
optional capabilities to preserve the integrity of each program or user's work.
• Storage protection is on by default.
• Transaction isolation is built on top of storage protection.
• Command storage protection and reentrant program storage protection act independently from storage
protection and transaction isolation.
• Instruction execution protection requires a level of hardware and operating system that supports IEP.
These facilities protect storage from user application code. They add no benefit to a CICS region where
no user code is executed; that is, a pure terminal-owning region (TOR) or a pure file-owning region (FOR)
(where no distributed program link (DPL) requests are function-shipped).
For information about configuring the storage protection facilities, see Setting up storage protection.

Storage protection
CICS storage protection allows you to separate the storage that is used to run your applications from the
storage that is used to run CICS and system programs. The storage areas are differentiated as CICS-key
storage and user-key storage (see Terms to understand about CICS storage). Corresponding execution
modes for the program - CICS key and user key - control the access that it has to a type of storage. Access
to a storage area is not permitted unless the access key matches the key for that storage area.
By default, applications execute in user key, with all their storage obtained in user-key storage. You should
use CICS key execution only for those programs where it is essential that they execute in CICS-key
storage, such as system programs that provide special function in support of user applications. Some
examples of such programs are described in CICS-key applications. If you choose to run a program in
CICS key, that is what you get. CICS storage protection does not prevent code and control blocks in
CICS-key storage from being overwritten by programs that you choose to run in CICS key.
Storage protection is optional. The STGPROT system initialization parameter controls whether CICS
storage protection is active. Then, you can select the storage key for different data areas and define
the execution key for the program.
To select the storage key for a data area, you use one of the following:
• System initialization parameters: for example, CWAKEY system initialization parameter and TCTUAKEY
system initialization parameter controls the key for the common work area (CWA) and for the terminal
control table user areas (TCTUAs).

Chapter 3. How it works: CICS storage 57

 • Resource definition option: for example, TASKDATAKEY on the TRANSACTION resource definition
controls the key for the storage that CICS acquires at transaction attach time, and for those elements of
storage directly related to the individual application programs in a transaction.
• Options on the GETMAIN commands: for example, USERDATAKEY and CICSDATAKEY options enable the
program to explicitly request user-key or CICS-key storage, regardless of the TASKDATAKEY option that
is specified on the associated TRANSACTION resource definition.
See Defining the storage key for applications for details.
To define the execution key for the program, you use the execution key parameter (EXECKEY) on the
PROGRAM resource definition. CICS passes control to the program in the key that you request. See
Selecting the execution and storage key for applications for details.
Figure 6 on page 58 shows CICS (executing in CICS key) with READ/WRITE access to CICS-key and
user-key storage and all CICS and user code and data areas. The user application (executing in user key)
has only READ access to CICS-key storage, code and control blocks, and has READ/WRITE access to
user-key storage and user application programs and data areas.

CICS
Executing in CICS key

READ/WRITE READ/WRITE

CICS-key storage User-key storage

CICS code and control blocks User applications and data aeas

READ only READ/WRITE

User application
Executing in user key

Figure 6. CICS-key and user-key storage

Transaction isolation
Transaction isolation uses z/OS subspaces to protect storage between transactions. This ensures that an
application program associated with one transaction cannot accidentally overwrite the data of another
transaction.
CICS transaction isolation ensures that programs that are defined to run in user key mode execute in
their own subspace, with appropriate access to any shared storage, or to CICS storage. It is as if the
user transaction is limited to its own view of the address space. Programs that are defined to run in CICS
key mode run in the base space. Transaction isolation does not protect user-key storage from CICS key
programs. For information about program execution modes, see “Storage protection” on page 57. For
information about subspaces, see “MVS subspaces ” on page 60.
Transaction isolation is built on top of storage protection. To use transaction isolation, you must set
storage protection on with the STGPROT system initialization parameter. Then, you can either control
transaction isolation for the whole region with the TRANISO system initialization parameter. Or you
can control transaction isolation for individual transactions and programs with the ISOLATE option
of the TRANSACTION resource definition. Transaction isolation uses the settings on EXECKEY, and
TASKDATAKEY to determine where a program runs.

58 CICS TS for z/OS: Configuring CICS

Transaction isolation does not apply to 64-bit storage and is not recommended for transactions that
are running in a Liberty JVM server. See TRANISO system initialization parameter for this and other
restrictions.
Some of the benefits of transaction isolation are:
Resilience
Prevention of accidental overwrites of transaction data overwrites significantly improves the reliability
and availability of CICS regions.
Protecting application data
If an application program overwrites CICS code or data, CICS can fail as a result. If an application
program overwrites another application program's code, that other application program is likely to
fail. Although this is a serious interruption, the effect is immediate and the program can generally
be recovered. However, if an application program of one transaction overwrites the data of another
transaction, the results often are not immediately apparent; the erroneous data can be written to a
database and the error might remain undetected until later, when it might be impossible to determine
the cause of the error. The consequences of a data overwrite are often much more serious than a code
overwrite.
Saving time in application development and testing
If an application tries to overwrite CICS or another application, or if it tries to pass a storage address it
does not own for CICS to write to, CICS immediately abends the task and reports the rogue program's
name and the area it tried to overwrite.

With transaction isolation on

If transaction isolation is active for the CICS region (TRANISO system initialization parameter) or for a
transaction (TRANSACTION resource definition), the effect is illustrated in Figure 7 on page 59.
An application that is started by transaction TXNA executes in user key. This application can read and
write to the task-lifetime, user-key storage of TXNA and to shared user-key storage. The application
started by TXNA has no access to the task-lifetime, user-key storage of transaction TXNB.
TXNA application
Executing in user key

READ only READ/WRITE READ/WRITE

CICS-key Shared user-key TXNA task-lifetime, TXNB task-lifetime,

storage storage user-key storage user-key storage

READ only READ/WRITE READ/WRITE

TXNB application
Executing in user key

Figure 7. Two transactions defined as ISOLATE(YES)

With transaction isolation off

If transaction isolation is not set for the CICS region (TRANISO system initialization parameter) or for a
transaction (TRANSACTION resource definition), the effect is illustrated in Figure 8 on page 60.

Chapter 3. How it works: CICS storage 59

 An application that is started by transaction TXNA executes in user key. This application can read and
write to the task-lifetime, user-key storage of TXNA, to shared user-key storage, and also to the task-
lifetime, user-key storage of all other transactions that are also defined with ISOLATE(NO): TXNB in this
example. It is protected from transactions that are defined as ISOLATE(YES).

TXNA application
Executing in user key

READ only READ/WRITE READ/WRITE READ/WRITE

Shared user-key TXNA task-lifetime, TXNB task-lifetime,

CICS-key storage
storage user-key storage user-key storage

READ only READ/WRITE READ/WRITE READ/WRITE

TXNB application
Executing in user key

Figure 8. Two transactions defined as ISOLATE(NO) with read/write access to each other's task lifetime
storage

MVS subspaces
z/OS provides subspaces to limit the application server address space that an application program
can reference. CICS uses subspaces to protect storage between transactions (transaction isolation). A
subspace is a specific range of storage in the private area of an address space, designed to limit the
storage a program can reference. A program that is associated with a subspace cannot reference some
of the private area storage outside of the subspace storage range; the storage is protected from the
program. An address space can have many subspaces. An address space that owns subspaces is called a
base space. Each subspace represents a different subset of the storage in the base space.
For more information, see What is a subspace? in the z/OS documentation.

Subspaces and base spaces for transactions

In general, transaction isolation ensures that transactions that run user-key programs are allocated to
their own subspaces, and have:
• Read and write access to the user-key task-lifetime storage of their own tasks, which is allocated from
one of the user dynamic storage areas
• Read and write access to shared storage; that is, storage obtained by GETMAIN commands with the
SHARED option
• Read access to the CICS-key task-lifetime storage of other tasks
• Read access to CICS code
• Read access to the contents of fields in CICS control blocks that are accessible by the CICS API
They do not have any access to user-key task-lifetime storage of other tasks.
The defaults for new transaction resource definition attributes specify that existing application programs
operate with transaction isolation (the default for the ISOLATE option is YES). Existing applications should
run unmodified provided they conform to transaction isolation requirements.
However, a minority of applications might need special definition if they do any of the following:
• Issue z/OS macros directly
• Modify CICS control blocks
• Have a legitimate need for one task to access, or share, another task's storage

60 CICS TS for z/OS: Configuring CICS

 Some existing transactions can share task-lifetime storage in various ways, and this sharing might prevent
them running isolated from each other. To allow such transactions to continue to execute, a single
common subspace is provided in which all such transactions can execute. They are then isolated from the
other transactions in the system that are running in their own subspaces, but able to share each other's
data within the common subspace.
CICS-key programs execute in the base space and so have read/write access to all CICS-key storage and
user-key storage.

The common subspace and shared storage

You might have some transactions where the application programs access one another's storage in a valid
way. One such case is when a task waits on one or more event control blocks (ECBs) that are later posted,
either by a z/OS POST or "hand posting" , by another task.
For example, a task can pass the address of a piece of its own storage to another task (by a temporary
storage queue or some other method) and then WAIT for the other task to post an ECB to say that it has
updated the storage. Clearly, if the original task is executing in a unique subspace, the posting task fails
when attempting the update and to post the ECB, unless the posting task is executing in CICS key.
CICS supports the following methods to ensure that transactions that must share storage can continue to
work in the subspace-group environment:
• You can specify that all the related transactions are to run in the common subspace. The common
subspace allows tasks that must share storage to coexist, while isolating them from other transactions
in the system. Transactions assigned to the common subspace have the following characteristics:
– They have read and write access to each other's task-lifetime storage.
– They have no access of any kind to storage of transactions that run in unique subspaces.
– They have read access only to CICS storage.
Any group of related transactions that work in user key in previous releases of CICS should work under
CICS Transaction Server for z/OS, Version 6 Release 1 if defined with ISOLATE(NO) to ensure that
they run in the common subspace. This provides support for upgrading, allowing the separation of
transactions into their own unique subspaces to be staged gradually after installing CICS and related
support.
• You can ensure that the common storage is in SHARED storage by obtaining the storage with the
SHARED option.
• You can ensure that the application programs of the transactions that are sharing storage are all defined
with EXECKEY(CICS). This ensures that their programs execute in base space, where they have read/
write access to all storage. However, this method is not recommended because it does not give any
storage protection.
You can use the CICS Interdependency Analyzer to help you identify transactions that include
the commands such as WAIT EVENT, WAITCICS, WAIT EXTERNAL, and z/OS POST. See CICS
Interdependency Analyzer for z/OS Overview for more information.

Command storage protection

CICS can protect itself against applications that pass invalid addresses that could result in CICS
causing storage violations. This protection acts independently of other storage protection and transaction
isolation capabilities.
Passing invalid addresses occurs when an application program issues an EXEC CICS command that
causes CICS to modify storage on the program's behalf, but the program does not own the storage. A
storage violation results when the command is executed.
With command address checking, CICS validates the start address of the storage and establishes that the
application program has write access to the storage that begins with that address, before it executes the
command. If a program passes an invalid address to CICS as an output field on the API, an AEYD abend
occurs.

Chapter 3. How it works: CICS storage 61

 You control command address checking with the CMDPROT system initialization parameter. There is no
dependency or interaction with storage protection and transaction isolation.

Reentrant program storage protection

CICS can protect the storage of reentrant user application programs from being overwritten by CICS
and other user-key applications by loading them into MVS key 0 read-only storage. This protection acts
independently of other storage protection capabilities.
If you enable reentrant program storage protection, CICS allocates the read-only DSAs from read-only
key-0 protected storage. For information about reentrant programs, see Multithreading: Reentrant, quasi-
reentrant, and threadsafe programs . For information about DSAs, see “CICS dynamic storage areas
(DSAs)” on page 21.
You control reentrant program storage protection with the RENTPGM system initialization parameter.
Reentrant program storage protection has no dependency or interaction with the system storage
protection capability that allows you to separate the storage that is used to run your applications from the
storage that is used to run CICS and system programs (see Storage protection).

Instruction execution protection

Instruction execution protection allows storage to be allocated in a non-executable state. This helps
to protect systems from errors such as stack overflow and malicious attacks. CICS can use instruction
execution protection to protect its dynamic storage areas (DSAs) from instruction execution.
Instruction Execution Protection (IEP) is an IBM Z hardware function that enables software to mark
certain storage areas as non-executable. To use instruction execution protection for DSAs, CICS must
run on a level of hardware and operating system that supports IEP. IEP is supported on z/OS 2.4 and
above. z/OS 2.4 and z/OS 2.5 requires APAR PH39134. If the hardware and operating system supports
instruction execution protection, message DFHSM0160I is issued during CICS initialization.
By default, protection for CICS DSAs is unavailable even if it is supported by the hardware and
operating system in use. You enable it by specifying a feature toggle com.ibm.cics.sm.iep=true
(see Specifying feature toggles). If IEP is available and the feature toggle specifies that DSA instruction
execution protection is required, message DFHSM0161I is issued during CICS initialization. All DSAs,
except those listed below, are protected from instruction execution.
It is still possible to request storage that is not protected from instruction execution, for example:
• Work areas for global user exits (GLUE) or task-related user exits (TRUE) by using ENABLE PROGRAM or
XPI DFHSMMCX GETMAIN calls. See ENABLE PROGRAM command or The GETMAIN call.
• Dynamic storage for assembler programs. See Extending dynamic storage for assembler language
programs.
To enable this, some DSAs are never protected from instruction execution. Depending on the attributes of
the program, CICS loads the program into one of these unprotected DSAs.
The following DSAs are always created but they are never protected from instruction execution:
• PCDSA
• PUDSA
• EPCDSA
• EPUDSA
• RDSA (read-only)
• ERDSA (read-only)
If an attempt is made to execute an instruction in a DSA that is protected from instruction execution (that
is, a DSA other than the ones listed above), an 0c4 program interrupt occurs and CICS issues abend AKES.
If the program interrupt is caused by application code, the AKES abend is converted into an ASRA abend
and presented to the application. Message DFHSR0623 is issued and an exception trace entry is made
to help identify the cause of the error. Fields in DSECT DFHTACB and the Program Error Program (PEP)

62 CICS TS for z/OS: Configuring CICS

 COMMAREA identify the 0c4 program interrupt as a result of instruction execution protection. Diagnostic
information, such as dumps of the Storage Manager, indicate whether instruction execution protection is
active and the execution protection status of the affected DSA.
Although the allocation of storage used by individual tasks running in the CICS region is not increased
by instruction execution protection, the distribution of that storage within the DSAs is changed and you
should expect an increase in DSA storage requirements.

How you can monitor CICS storage

CICS provides statistics and reports for you to monitor storage use. You can also set short-on-storage
thresholds that CICS can monitor.

Storage statistics
Some storage statistics can be accessed through the EXTRACT STATISTICS STORAGE system command.
See EXTRACT STATISTICS. Others are written to SMF for offline processing. For details on all the
statistics, see Storage manager statistics.

Storage reports
Storage reports provide information about the use of MVS™ and CICS® virtual storage. There are separate
reports for 24-bit storage (below 16 MB), 31-bit storage (above 16 MB but below 2 GB), 64-bit storage
(above 2 GB), CICS domain and task storage subpool allocations and use, and user region storage and
extended user region storage. The sample statistics program DFH0STAT can produce these reports.
For details on all the reports, see Storage reports.

Monitoring MVS short-on-storage thresholds

CICS can monitor the availability of MVS private area storage outside the CICS dynamic storage areas
(DSAs) and extended dynamic storage areas (EDSAs). The monitor system task uses 24-bit and 31-bit
storage (SOS) thresholds to determine whether CICS is in an SOS condition. The thresholds are the total
amount of unallocated storage and the amount of the largest unallocated contiguous storage that is
available within the 24-bit and 31-bit storage. When the unallocated 24-bit or 31-bit storage is equal
to or less than any of the thresholds, it is considered as SOS. When a CICS region is short on 24-bit or
31-bit MVS unallocated storage, the CICS storage manager domain notifies other CICS domains of the
MVS storage SOS event so that they can take actions in response.
For details on the thresholds that you can set, see How it works: CICS MVS storage monitoring.

Chapter 3. How it works: CICS storage 63

64 CICS TS for z/OS: Configuring CICS
Chapter 4. Setting up shared data sets, CSD and
SYSIN
The CICS system definition data set (CSD) and the SYSIN data set are typically shared between more
than one CICS region. The CSD stores resources definitions and the SYSIN data set contains start up
information for a region, such as system initialization parameter values. Use the supplied jobs to create
these data sets.

About this task

A CSD is required for most resource definitions. If you are creating a CSD for the first time, go through the
steps listed in “Planning your CSD configuration” on page 65. The remainder of this section describes
these steps in more detail.
If you are already using a CSD with a previous release of CICS, upgrade your CSD to include CICS resource
definitions that are new in CICS Transaction Server for z/OS, Version 6 Release 1. For information about
upgrading your CSD, see Defining resources with DFHCSDUP.
The SYSIN data set contains information that configures CICS during start up. You can create a data
set to share a standard set of start up parameters across your CICS regions, and override these values
as required on the start up job stream for particular CICS regions. CICS supplies the DFHCOMDS job to
create a SYSIN data set. For more information, see Creating the CICS data sets in Installing.

Planning your CSD configuration

Before you can create a CICS system definition data set (CSD), you must plan your configuration.

Procedure
1. Decide how much disk space you require.
2. Decide whether you want to use the CSD in RLS or non-RLS mode.
Having the CSD open in RLS mode allows more than one CICS region to update the CSD concurrently.
However, if your CSD is defined as a recoverable data set and you want to update it using the CSD
update batch utility program DFHCSDUP, you must quiesce the CSD in the CICS regions before running
DFHCSDUP.
If you decide to use RLS for the CSD, specify CSDRLS=YES as a system initialization parameter. See
“VSAM record-level sharing (RLS)” on page 128.
3. Decide what backup and recovery procedures you require for your CSD. The CSD can use backup-
while-open (BWO), which means that DFSMS components can back up the CSD while the data set is
open for update.
To use BWO, ensure that DFSMShsm and DFSMSdss components of DFSMS 1.2 or later are available.
The CSD must have an ICF catalog entry and be defined in SMS-managed storage.
• Define the recovery options for a CSD accessed in RLS mode:
– Specify BWO(TYPECICS) in the ICF catalog to make the data set eligible for backup-while open.
– Make the CSD a recoverable data set by specifying the appropriate LOG parameter in the ICF
catalog.
• Define the recovery options for a CSD accessed in non-RLS mode:
– Make the data set eligible for backup-while-open by either specifying BWO(TYPECICS) in the
catalog or setting the CSDBKUP system initialization parameter to DYNAMIC.
– Make the data set recoverable by setting the appropriate LOG parameter in the ICF catalog entry
or specifying the appropriate option on the CSDRECOV system initialization parameter.

© Copyright IBM Corp. 1974, 2022 65

 By default, the recovery options in the catalog override the attributes in the FILE resource. If no
recovery options are set in the catalog, CICS uses the attribute values of the FILE resource. You
can set the NONRLSRECOV system initialization parameter to FILEDEF, if you want CICS to always
use the recovery options on the FILE resource instead of the catalog.
4. Define and initialize the CSD.
5. Decide what CICS file processing attributes you want for your CSD.
Although the CSD is a CICS file-control-managed data set, you define file control resource definitions
for the CSD by specifying CSDxxxxx system initialization parameters (see “Defining CSD attributes” on
page 69).
6. Decide if you want to use command logs for RDO.
See “Logging RDO commands” on page 80 for details of the CADL, CAIL, CRDI, CSDL, CSFL, CSKL,
CSPL, and CSRL destinations that CICS uses for RDO command logs.
7. Make the CSD available to CICS, either by using dynamic allocation or by including the necessary DD
statement in the CICS startup job stream.
For dynamic allocation of the CSD, you name the fully qualified data set name, and the disposition, on
the CSDDSN and the CSDDISP system initialization parameters respectively.
When you have started CICS, test the RDO transactions CEDA, CEDB, and CEDC.

Calculating CSD disk space

Before you can create the CICS system definition data set (CSD), you must calculate the amount of space
you need in your CSD for definition records.

Procedure
1. In your calculation, allow for approximately 1800 CICS-supplied resource definitions of various types,
which are loaded into the CSD when you initialize the CSD with the CSD update batch utility program
DFHCSDUP. You need to consider:
a) Each resource definition (for example each program, transaction and terminal) needs one record.
The sizes of these definition records are:

Resource Definition record size (maximum)

ATOMSERVICE 720 bytes
BUNDLE 698 bytes
CONNECTION 260 bytes
CORBASERVER 1375 bytes
DB2CONN 308 bytes
DB2ENTRY 236 bytes
DB2TRAN 198 bytes
DJAR 445 bytes
DOCTEMPLATE 567 bytes
ENQMODEL 447 bytes
FILE 369 bytes
IPCONN 468 bytes
JOURNALMODEL 222 bytes
JVMSERVER 208 bytes
LIBRARY 925 bytes

66 CICS TS for z/OS: Configuring CICS

 Resource Definition record size (maximum)
LSRPOOL 425 bytes
MAPSET 190 bytes
MQCONN 240 bytes
PARTITIONSET 190 bytes
PARTNER 408 bytes
PIPELINE 959 bytes
PROCESSTYPE 206 bytes
PROFILE 231 bytes
PROGRAM 499 bytes
REQUESTMODEL 1211 bytes
SESSION 296 bytes
TCPIPSERVICE 571 bytes
TDQUEUE 331 bytes
TERMINAL 327 bytes
TRANCLASS 192 bytes
TRANSACTION 545 bytes
TSMODEL 308 bytes
TYPETERM 402 bytes
URIMAP 1443 bytes
WEBSERVICE 708 bytes
b) Each group requires two 122-byte records
c) Each group list requires two 122-byte records
d) Each group name within a list requires one 68-byte record
2. Add a suitable contingency (approximately 25%) to the size that you have calculated so far.

What to do next
Use your final figure when you define the VSAM cluster for the CSD. (See the sample job in “Initializing the
CSD” on page 67.)

Initializing the CSD

The INITIALIZE command initializes your CICS system definition file (CSD) with definitions of the
resources that are supplied by CICS. After initialization, you can migrate resource definitions from your
CICS control tables and begin defining your resources. You use the INITIALIZE command only once in
the lifetime of the CSD.

About this task

Before you can use the CSD, you must define it as a VSAM KSDS data set and initialize it using the CSD
update batch utility program DFHCSDUP. Use the sample job to define and initialize the CSD.

Procedure
1. Code the KEYS parameter as shown in the sample job.

Chapter 4. Setting up shared data sets, CSD and SYSIN 67

 The key length is 22 bytes.
2. Calculate the CSD disk space that is required:
• The RECORDS parameter defines how many records will be allocated to the CSD. The parameter
takes two values: n1 is the primary extent, and n2 is the secondary extent, which will only be used if
the allocated number of records defined by n1 is exceeded. For guidance on setting this parameter,
see “Calculating CSD disk space” on page 66.
• The RECORDSIZE parameter defines the average record size, in bytes, as well as the maximum
record size. The average record size is 200 bytes for a CSD that contains only the supplied
resource definitions (generated by the INITIALIZE and UPGRADE commands). If you create a larger
proportion of terminal resource definition entries than are defined in the initial CSD, then the average
record size will be higher. The maximum record size is 2000, as shown in the sample job.
3. Code the SHAREOPTIONS parameter as shown in the sample job.
4. Optional: You can specify the recovery attributes for the CSD in the ICF catalog instead of using the
CSD system initialization parameters.
If you decide to use the CSD in RLS mode, you must define the recovery attributes in the ICF catalog:
• LOG(NONE) (Nonrecoverable data set)
• LOG(UNDO) (For backout only)
• LOG(ALL) (For both backout and forward recovery)
If you specify LOG(ALL), you must also specify LOGSTREAMID to define the 26-character name of the
MVS log stream to be used as the forward recovery log. If you specify recovery attributes in the ICF
catalog, and also want to use BWO, specify LOG(ALL) and BWO(TYPECICS).
5. You must specify the DDNAME for the CSD as DFHCSD.

Example

//DEFINIT JOB accounting information

//DEFCSD EXEC PGM=IDCAMS
//SYSPRINT DD SYSOUT=A
//AMSDUMP DD SYSOUT=A
//SYSIN DD *
DEFINE CLUSTER -
(NAME(CICSTS61.CICS.applid.DFHCSD) -
VOLUMES(volid) -
KEYS(22 0) - 1
INDEXED -
RECORDS(n1 n2) -
RECORDSIZE(200 2000) - 2
FREESPACE(10 10) -
SHAREOPTIONS(2) - 3
LOG(ALL) - 4
LOGSTREAMID(CICSTS61.CICS.CSD.FWDRECOV) - 4
BWO(NO)) - 4

DATA -
(NAME(CICSTS61.CICS.applid.DFHCSD.DATA) -
CONTROLINTERVALSIZE(8192)) -
INDEX -
(NAME(CICSTS61.CICS.applid.DFHCSD.INDEX))
/*
//INIT EXEC PGM=DFHCSDUP,REGION=300K
//STEPLIB DD DSN=CICSTS61.CICS.SDFHLOAD,DISP=SHR
//DFHCSD DD DSN=CICSTS61.CICS.applid.DFHCSD,DISP=SHR 5
//SYSPRINT DD SYSOUT=A
//SYSUDUMP DD SYSOUT=A
//SYSIN DD *
INITIALIZE
LIST ALL OBJECTS
/*
//

Figure 9. Sample job to define and initialize the CSD

68 CICS TS for z/OS: Configuring CICS

 What to do next
The command LIST ALL OBJECTS lists the CICS-supplied resources that are now in the CSD.

Creating a larger CSD

To avoid the CICS system definition data set (CSD) filling while CICS is running, ensure that you define the
data set with primary and secondary space parameters, and that there is sufficient DASD space available
for secondary extents.
If your CSD fills up while you are running a CEDA transaction (or the offline utility), define a larger data
set and use an AMS command, such as REPRO, to recover the contents of the CSD. If your CSD was
dynamically allocated, you can close it, delete it, and redefine it as a larger data set. If your CSD was not
dynamically allocated, you must shut down CICS to create a larger data set.
For a description of the commands that you can use for copying files, see z/OS DFSMS Access Method
Services Commands .

Defining CSD attributes

File processing attributes for the CICS system definition file (CSD) are defined in a number of system
initialization parameters.

About this task

Define suitable definitions for the following system initialization parameters:

Procedure
1. Define the type of access that is allowed using the CSDACC parameter.
2. Define whether the CSD is eligible for BWO using the CSDBKUP parameter.
This parameter is ignored if you specify CSDRLS=YES. CICS uses the BWO parameter in the ICF
catalog instead. By default, CICS also uses the BWO parameter in the ICF catalog for non-RLS
mode CSDs if the LOG parameter in the ICF catalog specifies either UNDO or ALL. You can set
the NONRLSRECOV system initialization parameter to FILEDEF if you want CICS to always use the
CSDBKUP parameter over the BWO attribute.
3. Define the number of buffers for CSD data using the CSDBUFND parameter.
This parameter is ignored if you specify CSDRLS=YES.
4. Define the number of buffers for the CSD index using the CSDBUFNI parameter.
This parameter is ignored if you specify CSDRLS=YES.
5. Define the disposition of the CSD data set using the CSDDISP parameter.
6. Define the JCL data set name (DSNAME) of the CSD using the CSDDSN parameter.
7. Define a forward recovery journal identifier using the CSDFRLOG parameter.
This parameter is ignored if you specify CSDRLS=YES, or if the recovery attributes are defined in the
ICF catalog on the LOG parameter, in which case LOGSTREAMID from the ICF catalog is used instead.
You can set the NONRLSRECOV system initialization parameter to FILEDEF if you want CICS to always
use the CSDFRLOG parameter over the LOGSTREAMID attribute.
8. Define the level of read integrity for a CSD accessed in RLS mode using the CSDINTEG parameter.
9. Define an identifier for automatic journaling using the CSDJID parameter.
10. Define the VSAM local shared resource pool using the CSDLSRNO parameter.
This value is ignored if you specify CSDRLS=YES.
11. Define whether or not the CSD is recoverable using the CSDRECOV parameter.
This parameter is ignored if you specify CSDRLS=YES and CICS uses the LOG parameter from the ICF
catalog instead. If LOG is “undefined”, any attempt to open the CSD in RLS mode fails.

Chapter 4. Setting up shared data sets, CSD and SYSIN 69

 If CSDRLS=NO, this parameter is used only if LOG in the ICF catalog is “undefined.” By default, if LOG
in the ICF catalog specifies NONE, UNDO, or ALL, the LOG parameter overrides the CSDRECOV value.
You can set the NONRLSRECOV system initialization parameter to FILEDEF if you want CICS to always
use the CSDRECOV parameter over the LOG attribute.
12. Define whether the CSD is accessed in RLS or non-RLS mode using the CSDRLS parameter.
13. Define the number of strings for concurrent requests using the CSDSTRNO parameter.
This value is ignored and a value of 1024 is assumed if you specify CSDRLS=YES.

What to do next
These parameters are described in greater detail in “Specifying CICS system initialization parameters” on
page 146.

Shared user access from the same CICS region

Several users in a CICS region can access the CICS system definition file (CSD) at the same time.
If you have specified read/write access for the CSD, all the CEDA users in a CICS region can perform read
and write functions. CICS file control manages concurrent access for multiple users within a region, using
the attributes specified in the CSDACC system initialization parameter.
For more information, see “Multiple users of the CSD within a CICS region (non-RLS)” on page 71.

Sharing user access from several CICS regions

Several users in different CICS regions can access the CICS system definition file (CSD) at the same time.
1. Give one CICS region read and write access to the CSD (CSDACC=READWRITE system initialization
parameter). That CICS region should be at the latest level, to ensure that obsolete resource attributes
from earlier release can still be updated safely. Other CICS regions should be given only read access
to the CSD (CSDACC=READONLY system initialization parameter). This ensures that the CSD integrity is
preserved for CICS regions in the same MVS image or different MVS images.
2. If you update your shared CSD from one region only, and use CEDA in all the other regions just to
install into the required region, specify read/write access for the updating region and read-only for all
other regions.
3. If you want to update the CSD from several CICS regions, you can use the CICS transaction routing
facility, and MRO or ISC, to enable read-only CICS regions to update the CSD. The procedure to follow
is:
a. Select one region that is to own the CSD (the CSD-owning region), and only in this region specify
read/write access for the CSD.
b. Define the CSD as read-only to other CICS regions.
c. For all regions other than the CSD-owning region:
i) Redefine the CEDB transaction as a remote transaction (to be run in the CSD-owning region).
ii) Install the definition and add the group to your group list for these regions.
You may then use the CEDB transaction from any region to change the contents of the CSD, and use
CEDA to INSTALL into the invoking region. You cannot use CEDA to change the CSD in region(s) that
do not own the CSD.
If the CSD-owning region fails, the CSD is not available through the CEDB transaction until
emergency restart of the CSD-owning region has completed (when any backout processing on the
CSD is done). If you try to install a CSD GROUP or LIST that is the target of backout processing,
before emergency restart, you are warned that the GROUP or LIST is internally locked to another
user. Do not run an offline VERIFY in this situation, because backout processing removes the
internal lock when emergency restart is invoked in the CSD-owning region.

70 CICS TS for z/OS: Configuring CICS

 If you do not want to use the above method, but still want the CSD to be defined as a recoverable
resource, then integrity of the CSD cannot be guaranteed. In this case, you must not specify
CSDBKUP=DYNAMIC, because the CSD would not be suitable for BWO.
4. You can define several CICS regions with read/write access to the CSD, but this should only be
considered if the CICS regions run in the same MVS image, and all are at the latest CICS level.
5. If you give several CICS regions read/write access to the same CSD, and those regions are in the
same MVS image, integrity of the CSD is maintained by the SHAREOPTIONS(2) operand of the VSAM
definition, as shown in the Figure 9 on page 68.
6. If you give several CICS regions read/write access to the same CSD, and those regions are in different
MVS images, the VSAM SHAREOPTIONS(2) operand does not provide CSD integrity, because the
VSAMs for those MVS images do not know about each other.

Shared access from CICS regions and DFHCSDUP

If you want to use the CSD update batch utility program DFHCSDUP in read/write mode to update the
CICS system definition file (CSD), you must ensure that no CICS users are using any of the CEDA, CEDB, or
CEDC transactions.
For information about other factors that can restrict access to a CSD, see “Other factors restricting CSD
access” on page 74.
For information about the system initialization parameters for controlling access to the CSD, see “Defining
CSD attributes” on page 69.

Multiple users of the CSD within a CICS region (non-RLS)

If you have specified read/write access for the CICS system definition data set (CSD), all the CEDA users
in a CICS region can perform read and write functions. CICS file control manages concurrent access
for multiple users within a region, using the attributes specified in the CSDACC system initialization
parameter.
CICS protects individual resource definitions against concurrent updates by a series of internal locks on
the CSD. CICS applies these locks at the group level. While CICS is executing a command that updates
any element in a group, it uses the internal lock to prevent other RDO transactions within the region
from updating the same group. CICS removes the lock record when the updating command completes
execution. Operations on lists are also protected in this way.
The number of concurrent requests that may be processed against the CSD is defined by the CSDSTRNO
system initialization parameter. Each user of CEDA (or CEDB or CEDC) requires two strings, so calculate
the CSDSTRNO value by first estimating the number of users that may require concurrent access to the
CSD, and then multiply the number by two.
CEDA issues a diagnostic message if the CSDSTRNO value is too small to satisfy the instantaneous
demand on the CSD for concurrent requests. A subsequent attempt to reissue the command succeeds if
the conflict has disappeared. If conflicts continue to occur, increase the CSDSTRNO value.

Sharing a CSD by CICS regions within a single MVS image (non-

RLS)
The CICS system definition data set (CSD) may be shared by a number of CICS regions within the same
MVS image.
You can maintain the integrity of the CSD in this situation by coding SHAREOPTIONS(2) on the VSAM
definition, as shown in the Figure 9 on page 68. The CICS attributes of the CSD, as viewed by a given
region, are defined in the system initialization parameters for that region.
You should consider defining:
• One CICS region with read/write access (CSDACC=READWRITE) to the CSD. That region can use all the
functions of CEDA, CEDB, and CEDC.

Chapter 4. Setting up shared data sets, CSD and SYSIN 71

 • Other CICS regions with only read access (CSDACC=READONLY) to the CSD. Such CICS regions can use
the CEDC transaction, and those functions of CEDA and CEDB that do not require write access to the
CSD (for example, they can use INSTALL, EXPAND, and VIEW, but not DEFINE). You can enable such
CICS regions to update the CSD, by using the procedure described in “Sharing user access from several
CICS regions” on page 70.
Note: Read integrity is not guaranteed in a CICS region that has read-only access to a shared CSD. For
example, if one CICS region that has full read/write access updates a shared CSD with new or changed
definitions, another CICS region with read-only access might not obtain the updated information. This
could happen if a control interval (CI) already held by a read-only region (before an update by a
read/write region) is the same CI needed by the read-only region to obtain the updated definitions. In
this situation, VSAM does not reread the data set, because it already holds the CI. However, you can
minimize this VSAM restriction by specifying CSDLSRNO=NONE, and the minimum values for CSDBUFNI
and CSDBUFND, but at the expense of degraded performance. See “Specifying read integrity for the
CSD” on page 75 for information about read integrity in a data set accessed in RLS mode.
If you define several CICS regions with read/write access to the CSD, those regions should all be at the
latest level. Only one CICS region with read/write access can use a CEDA, CEDB, or CEDC transaction to
access the CSD, because the VSAM SHAREOPTIONS(2) definition prevents other regions from opening the
CSD.
If you are running CICS with the CSD defined as a recoverable resource (CSDRECOV=ALL), see “Planning
for backup and recovery” on page 76 for some special considerations.
You can use CEMT to change the file access attributes of the CSD, or you can use the EXEC CICS SET
FILE command in an application program. However, ensure that the resulting attributes are at least
equivalent to those defined either by CSDACC=READWRITE or CSDACC=READONLY. These parameters
allow the following operations on the CSD:
READONLY
Read and browse.
READWRITE
Add, delete, update, read and browse.

Sharing a CSD in a multi-MVS environment (non-RLS)

If you need to share a CICS system definition data set (CSD) between CICS regions that are running in
different MVS images, you should ensure that only one region has read/write access.
The VSAM SHAREOPTIONS(2) offers no integrity, because the VSAMs running in a multi-MVS environment
do not know of each other.
Because of these limitations, active and alternate CICS regions running in different MVS images must not
share the CSD with other CICS regions, unless you are using some form of global enqueuing (for example,
with global resource serialization (GRS)).
These multi-MVS restrictions also apply to running the CSD update batch utility program DFHCSDUP.

Multiple users of one CSD across CICS or batch regions (non-RLS)

There are four types of activity that require access to the CICS system definition data set (CSD).
The types of access needed in the four situations where the CSD are used are shown in Table 19 on page
72.

Table 19. CSD access

Type of activity Access
1 CICS region performing initialization (cold or Read-only
initial start)

72 CICS TS for z/OS: Configuring CICS

 Table 19. CSD access (continued)
Type of activity Access
2 CICS region running one or more CEDA, CEDB, Read/write or read-only (as specified in the
or CEDC transactions CSDACC parameter)
3 Batch region running utility program Read/write or read only, depending on PARM
DFHCSDUP parameter
4 CICS regions performing emergency restart, Read/write
and CSD file backout is required

Note the following limitations when the activities listed in Table 19 on page 72 are attempted
concurrently:
1. You cannot run DFHCSDUP in read/write mode in a batch region if any CICS region using the same CSD
is running one of the CEDA, CEDB, or CEDC transactions. (The exception is when the CEDx transactions
accessing the CSD are in a region (or regions) for which the CSD is defined as read-only.)
2. None of the CEDx transactions runs if the CSD to be used is being accessed by the DFHCSDUP utility
program in read/write mode. (This restriction does not apply if the transaction is run in a region for
which the CSD is defined as read-only.)
3. None of the CEDx transactions runs in a CICS region whose CSD is defined for read-write access if any
of the RDO transactions are running in another CICS region that has the CSD defined for read-write
access.
A CICS region starting with an initial or cold start opens the CSD for read access only during initialization,
regardless of the CSDACC operand. This enables a CICS region to be initialized even if a user on another
region or the DFHCSDUP utility program is updating the CSD at the same time. After the group lists are
installed, CICS leaves the CSD in a closed state.
On a warm or emergency start, the CSD is not opened at all during CICS initialization if CSDRECOV=NONE
is coded as a system initialization parameter. However, if CSDRECOV=ALL is coded, and backout
processing is pending on the CSD, the CSD is opened during CICS initialization on an emergency start.

Sharing the CSD between different releases of CICS

You can share the CICS system definition file (CSD) between different releases of CICS so that common
resource definitions are shared. When you update resource definitions, you must update the CSD from
the highest release level, and you must consider the effect on obsolete resource attributes. Resource
attributes become obsolete when they are not relevant to a new release of CICS.
You can find out changes to resource definitions, including in which release resource attributes are made
obsolete, across in-service CICS TS releases in Changes to resource definitions.
You can also find out obsolete resource attributes on CEDx panels. Such attributes are displayed on CEDx
panels as protected fields, which indicates that they are not supported by this release.
When you update resource definitions by using the CEDx ALTER command, any obsolete attributes on
definitions are kept, so you can update resource definitions by using the current release without affecting
obsolete attributes.
If you are sharing the CSD with CICS regions that are at an earlier release, you can update the obsolete
attributes by removing the protection from the protected fields when in ALTER mode. To do this, use
the F2 function key, which is the compatibility key (COM) on the CEDA or CEDB display panels. The F2
function key converts protected fields to unprotected fields that you can modify. If you want to use this
protection removal facility to share common resource definitions between different release levels of CICS,
you must update the CSD from the highest release level.
For information about using the CEDA and CEDB ALTER commands to update resource definitions in
compatibility mode, see Resource management transaction CEDA commands.

Chapter 4. Setting up shared data sets, CSD and SYSIN 73

 You can also use the CSD update batch utility program DFHCSDUP to update resources that specify
obsolete attributes. You must specify the compatibility option, COMPAT or NOCOMPAT, on the PARM
parameter of the EXEC PGM=DFHCSDUP statement. The default is NOCOMPAT, which means that the
program does not update obsolete attributes. For more information, see Entry parameters for DFHCSDUP.

Sharing the CSD between CICS regions that use Db2

If you share your CICS system definition data set (CSD) between different releases of CICS that use Db2,
you must use the Db2 resource definitions appropriate for each release of CICS.
With those releases of CICS that supply the CICS Db2 attachment facility, you must use the CICS-supplied
group called DFHDB2. This group is included in the CICS-supplied startup list, DFHLIST, and specifies
different program names from the attachment facility provided by Db2.

CICS-supplied compatibility groups

If you share the CICS system definition file (CSD) between CICS Transaction Server for z/OS, Version 6
Release 1 and an earlier release of CICS, you must ensure that the group list you specify on the GRPLIST
system initialization parameter contains all the CICS-required standard definitions.
When you upgrade the CSD to the CICS TS for z/OS, Version 6.1 level, some IBM groups that are
referenced by your group list are deleted and the contents are transferred to one of the compatibility
groups, DFHCOMPx. To ensure that these groups continue to be available to your CICS regions at earlier
releases, add the compatibility groups after all the other CICS-supplied definitions.
For information about upgrading your CSD, and about the compatibility groups in CICS TS for z/OS,
Version 6.1, see CSD compatibility between different CICS releases in Upgrading.

Other factors restricting CSD access

Access to the CICS system definition file (CSD) may also be restricted if it is left open after abnormal
termination of a CEDA, CEDB, or CEDC transaction.
If the CSD file is left open with write access, this prevents other address spaces from subsequently
opening it for write access. This situation can be remedied by using CEMT to correct the status of the CSD.
Access to the CSD is not released until the RDO transaction using it is ended, so users of CEDA, CEDB,
and CEDC should ensure that a terminal running any of these transactions is not left unattended. Always
end the transaction with PF3 as soon as possible. Otherwise, users in other regions are unable to open the
CSD.
There may be times when you cannot create definitions in a group or list. This situation arises if an
internal lock record exists for the group or list you are trying to update. If you are running the CSD
update batch utility program DFHCSDUP (or a CEDA transaction) when this occurs, CICS issues a message
indicating that the group or list is locked. As described under “Multiple users of the CSD within a CICS
region (non-RLS)” on page 71, this is normally a transient situation while another user within the same
region is updating the same group or list. However, if a failure occurs, preventing a CEDA transaction
from completing successfully, and CSDRECOV=NONE is coded, the internal lock is not removed and is
left in force. (If CSDRECOV=ALL is coded, the CSD is recoverable and file backout occurs and frees the
lock.) This could happen, for example, if a system failure occurs while a CEDA transaction is running; it
could also happen if the CSD becomes full. You can remedy this situation by running DFHCSDUP with the
VERIFY command.
However, if you have coded CSDRECOV=ALL, make sure no backout processing is pending on the CSD
before you run an offline VERIFY. The effect of coding CSDRECOV=ALL is discussed more fully under
“Planning for backup and recovery” on page 76.

74 CICS TS for z/OS: Configuring CICS

Differences in CSD management between RLS and non-RLS access
Although a CICS system definition data set (CSD) accessed in RLS mode is protected by VSAM RLS
locking, this operates at the CICS file control level. It does not change the way the CEDA and CEDB
transactions manage the integrity of CSD groups.
The CEDx transactions protect resource definitions in the same way for RLS mode and non-RLS mode
CSDs. They protect individual resource definitions against concurrent updates by a series of internal locks
on the CSD. The RDO transactions apply these locks at the group level. While RDO transactions are
executing a command that updates any element in a group, they use the internal lock to prevent other
RDO transactions within a CICS region from updating the same group. The locks are freed only when the
updating command completes execution. Operations on lists are protected in the same way. However, in
an RLS environment, these internal locks affect all CICS regions that open the CSD in RLS mode. In the
non-RLS case they apply only to the CICS region that has the data set open for update (which can only be
a single region).
The use of a single buffer pool by the SMSVSAM server removes some of the problems of sharing data that
you get with a non-RLS CSD.
Some other points to note are:
• If a CSD is defined with CSDACC=READWRITE and CSDRLS=YES, more than one CICS region can open
the CSD concurrently. However, file control closes the CSD opened in RLS mode at termination of each
CEDx transaction, in the same way as for a non-RLS CSD. CSDACC=READONLY is not necessary for a
CSD accessed in RLS mode.
• The number of concurrent requests that can be processed against the CSD, is always 1024 for RLS.
Diagnostic messages about CSDSTRNO value do not occur for RLS-mode CSDs.
• The VSAM cluster definition SHAREOPTIONS parameter is ignored by SMSVSAM when an application,
such as CICS, opens a data set in RLS mode.
• A CSD accessed in RLS mode could give rise to RDO transaction failures that do not occur for a non-RLS
mode CSD: For example:
– An RDO transaction could be holding an RLS exclusive lock while it updates a record, which causes
another RDO transaction to time out.
– If the CSD is recoverable and CICS or MVS fails, update locks of failed-inflight RDO transactions are
converted into retained locks. This could result an RDO transaction receiving a LOCKED response
from VSAM which, in turn, would cause the RDO transaction to fail.

Specifying read integrity for the CSD

You can specify that you want read integrity for a CICS system definition file (CSD) opened in RLS mode.
This ensures that CEDx INSTALL command always installs the latest version of a resource definition. The
CEDA INSTALL command has to wait for a lock on any CSD record that it is trying to install if another CEDx
transaction is updating the record. The installation completes only when the updating task has finished
updating the record and released its exclusive lock.
Although the CSDINTEG system initialization parameter supports both consistent and repeatable read
integrity, consistent read integrity should provide all the benefit you need for your RDO operations.

Specifying file control attributes for the CSD

You specify file control attributes for the CICS system definition file (CSD) using the CSDxxxxx system
initialization parameters, with a few exceptions.
These exceptions are as follows:
CSDBKUP
You specify backup-while-open support for the CSD using the VSAM BWO parameter in the ICF catalog.

Chapter 4. Setting up shared data sets, CSD and SYSIN 75

 CSDBUFND
Ignored.
CSDBUFNI
Ignored.
CSDFRLOG
You specify the forward recovery log stream for the CSD using the VSAM LOGSTREAMID parameter in
the ICF catalog.
CSDINTEG
You specify read integrity for RDO transactions (CEDx) using this system initialization parameter.
CSDLSRNO
Ignored.
CSDRECOV
You specify the recovery attributes for the CSD using the VSAM LOG parameter in the ICF catalog. If
LOG is “undefined”, any attempt to open the CSD in RLS mode will fail.
CSDSTRNO
For RLS, the number of strings defaults to 1024.

Effect of RLS on the DFHCSDUP utility

You can use the CSD update batch utility program DFHCSDUP to update a non-recoverable CSD in RLS
mode while CICS also has the CSD open for update in RLS mode.
To enable DFHCSDUP to update the CSD in RLS mode, specify RLS=NRI or RLS=CR in the DD statement
for the CSD in the DFHCSDUP JCL. Generally, DFHCSDUP does not perform as well in RLS mode as in
non-RLS mode.
You cannot run DFHCSDUP while CICS regions have the CSD open in RLS mode if the CSD is defined as
recoverable. This is because a non-CICS job, such as DFHCSDUP, is not allowed to open a recoverable
data set for output in non-RLS mode while it is already open in RLS mode. Therefore, before you can run
DFHCSDUP, you must quiesce the CSD by issuing an EXEC CICS SET DSNAME(…) QUIESCED command
or its equivalent CEMT command.
A recoverable CSD is unavailable to all CICS regions while DFHCSDUP is running until it is unquiesced,
which makes it available again in RLS mode. To unquiesce the CSD at the end of the DFHCSDUP run, issue
an EXEC CICS, DSNAME(…) UNQUIESCED command or its equivalent CEMT command.
For a recoverable CSD, the main factor to consider when planning whether to use RLS is how much you
use DFHCSDUP compared with the CEDx transactions. If you use DFHCSDUP frequently to update your
production CSD, you may decide that it is better to use the CSD in non-RLS mode. On the other hand, if
you use DFHCSDUP only occasionally, and you want the ability to update the CSD online from any CICS
region, use RLS.

Planning for backup and recovery

To guard against system failures that affect your CICS system definition data set (CSD), take a backup of
the CSD at regular intervals. Then, if the CSD is corrupted for any reason, you can restore it to its state at
the last backup.

About this task

To keep the backup of the CSD as up-to-date as possible, make an image copy of your CSD before
each period of update activity, either by an RDO transaction or by the CSD update batch utility program
DFHCSDUP.
Alternatively, because the CSD is open for update whenever RDO work is taking place, it is a good
candidate for eligibility for BWO. If the CSD is specified as eligible for BWO, and the data set is corrupted,
you can restore a BWO image of the CSD using DFSMSdss, then run forward recovery to the point of
corruption using a forward recovery utility.

76 CICS TS for z/OS: Configuring CICS

 For a CSD opened in RLS mode, the recovery attributes must be defined in the ICF catalog entry for the
CSD, and CICS uses the forward recovery log's log stream name (LSN) from the ICF catalog.
For a CSD opened in non-RLS mode, the recovery attributes can be defined in the ICF catalog entry for
the CSD, or on the CSD system initialization parameters. The forward recovery log stream name (LSN) is
retrieved from either CSDFRLOG or the ICF catalog. If LOG is defined in the catalog, the forward recovery
log stream specified in the catalog is used. If LOG is not defined, the CSDFRLOG journal ID is used to
determine the log stream name. If the NONRLSRECOV system initialization parameter is set to FILEDEF,
the CSDFRLOG journal ID is always used to determine the log stream name. Any recovery attributes
specified on the ICF catalog are ignored.
For a CSD opened in non-RLS mode, you can use the system initialization parameter
CSDBKUP=DYNAMIC|STATIC to indicate whether the CSD is eligible for BWO. Specify
CSDBKUP=DYNAMIC for BWO support, or STATIC (the default) for a "normal" quiesced backup. If you
specify BWO support for the CSD you must also define it as forward recoverable. For more information
about BWO, see “Defining backup while open (BWO) for VSAM files” on page 89.
For a CSD opened in RLS mode, you must specify all recovery attributes, which includes backup, in the ICF
catalog. BWO backup eligibility is specified using BWO(TYPECICS).
If you specify forward recovery for the CSD, changes (after images) made by CICS to the CSD are logged
in the forward recovery log stream. Using the latest backup, and the after images from forward recovery
log stream, you can recover all the changes made by running a recovery program, such as the CICS VSAM
forward recovery utility. After performing forward recovery, you must reenter any CEDA transactions that
were running at the time of failure, as these are effectively backed out by the forward recovery process.
You can find details of these in the CSDL transient data destination, which is the log for copies of all CEDA
commands. See “Logging RDO commands” on page 80 for more information.
Recoverability, forward recovery log stream names, and BWO eligibility can be defined optionally in the
ICF catalog for a non-RLS accessed CSD, but must be defined the ICF catalog if the CSD is accessed in
RLS mode.
The CSDBKUP, CSDRECOV, and CSDFRLOG system initialization parameters interact according to how
they are specified. Table 20 on page 77 and Table 21 on page 78 summarize their effects when the SIT
is assembled and during CICS override processing, respectively.

Table 20. CSDBKUP and related parameters at SIT assembly time for CSDRLS=NO
CSDRECOV CSDFRLOG CSDBKUP Result
ALL FRLOG from 01 Either DYNAMIC or OK
through 99. STATIC
ALL NO Either DYNAMIC or SIT assembly fails with MNOTE
STATIC stating that CSDRECOV=ALL implies
that the CSDFRLOG option must be
specified.
BACKOUTONLY or FRLOG from 01 DYNAMIC SIT assembly fails with
NONE through 99. assembler MNOTES stating
that CSDBKUP=DYNAMIC
requires CSDRECOV=ALL and
that CSDFRLOG requires
CSDRECOV=ALL.
BACKOUTONLY or NO DYNAMIC SIT assembly fails with an
NONE assembler MNOTE stating that
CSDBKUP=DYNAMIC requires
CSDRECOV=ALL.
BACKOUTONLY or NO STATIC OK
NONE

Chapter 4. Setting up shared data sets, CSD and SYSIN 77

Table 20. CSDBKUP and related parameters at SIT assembly time for CSDRLS=NO (continued)
CSDRECOV CSDFRLOG CSDBKUP Result
BACKOUTONLY or FRLOG from 01 STATIC SIT assembly warning MNOTE
NONE through 99. stating that CSDFRLOG is ignored
unless CSDRECOV=ALL.

Note:
1. When CSDBKUP=DYNAMIC, the CSD is eligible for BWO.
2. Backup and recovery attributes must be specified in the ICF catalog for a CSD opened in RLS mode
(CSDRLS=YES).
3. Backup and recovery attributes can optionally be specified in the ICF catalog for a CSD opened in
non-RLS mode (CSDRLS=NO), but you must still have a consistent set of parameters as defined in the
table above.

Table 21. CSDBKUP and related system initialization parameters during CICS override processing (CSDRLS=NO)
CSDRECOV CSDFRLOG CSDBKUP (see Notes) Result
ALL FRLOG from 01 through Either DYNAMIC or OK
99. STATIC.
ALL NO Either DYNAMIC or Message DFHPA1944
STATIC. is issued stating that
CSDRECOV=ALL cannot
be specified without a
CSDFRLOG if CSDRLS=NO.
CICS initialization is
terminated.
BACKOUTONLY or NONE FRLOG from 01 through DYNAMIC Processing continues and
99. messages DFHPA1929,
stating that CSDBKUP
has defaulted to STATIC,
and DFHPA1930, stating
that CSDFRLOG has been
ignored, are issued.
BACKOUTONLY or NONE NO DYNAMIC Processing continues and
message DFHPA1929
is issued, stating that
CSDBKUP has defaulted
to STATIC.
BACKOUTONLY or NONE NO STATIC OK
BACKOUTONLY or NONE FRLOG from 01 through STATIC Processing continues and
99. message DFHPA1930
stating that CSDFRLOG
has been ignored is
issued.

Note:
1. When CSDBKUP=DYNAMIC, the CSD is eligible for BWO.
2. Backup and recovery attributes must be specified in the ICF catalog for a CSD opened in RLS mode
(CSDRLS=YES).

78 CICS TS for z/OS: Configuring CICS

 3. Backup and recovery attributes can optionally be specified in the ICF catalog for a CSD opened in
non-RLS mode (CSDRLS=NO), but you must still have a consistent set of parameters as defined in the
table above.
Write and test procedures for backing up and recovering your CSD before beginning to operate a
production CICS region.
Forward recovery of the CSD is not possible if CSD updates are made outside CICS. To enable recovery of
the updates made outside CICS, you need to use an image copy. If you update the CSD from outside CICS,
do not use CEDA to update the CSD until an image copy has been made.

Transaction backout during emergency restart

If you define the CSD as a recoverable resource, by coding the CSDRECOV system initialization parameter,
the same rules apply to the CICS system definition file (CSD) as to any other CICS recoverable resource.
If you code CSDRECOV=ALL (or BACKOUTONLY) as a system initialization parameter, and have to perform
an emergency restart following a failure, CICS backs out any incomplete RDO transactions that were
in-flight at the time of failure.

Dynamic backout for transactions

CICS performs dynamic transaction backout for any RDO transaction abends.
You cannot decide whether you want dynamic transaction backout by coding an attribute on transaction
definitions in the CICS system definition file (CSD); CICS assumes this requirement for all transactions.
(Defining the CSD as non-recoverable has the effect of preventing backout, but this is not recommended.)

Other recovery considerations

When you are deciding what recoverability options to specify, you must consider a number of factors.
These factors are as follows:
• CEDA command syncpoint criteria
• Sharing the CICS system definition file (CSD) with another CICS region
• Accessing the CSD by the CSD update batch utility program DFHCSDUP
For information about CEDA command syncpoint criteria, see “CEDA command syncpoint criteria” on
page 79. For information about sharing the CSD between CICS regions, see Sharing user access from
several CICS regions. For information about using the DFHCSDUP utility to access the CSD, see “Accessing
the CSD by DFHCSDUP” on page 80.

CEDA command syncpoint criteria

You can issue a CEDA command on the command line, or issue the command as a series of single
commands from an EXPAND or DISPLAY panel.
Commands that change the contents of the CSD commit or back out changes at the single command
level. The exception to this rule is a generic ALTER command. A generic ALTER command is committed or
backed out at the single resource level.
The replacement of an existing resource definition by an INSTALL command only occurs if the resource is
not in use. If any of the resources in the group being installed are in use, the installation will fail.
Changes made to the following resource definitions by an INSTALL command are committed at the
resource level and are not backed out if the installation fails:
• AUTOINSTALL MODEL,FILE, LSRPOOL, MAPSET, PARTITIONSET, PARTNER, PROFILE, PROGRAM,
TDQUEUE, and TRANSACTION,
Changes made to the following resource definitions by an INSTALL command are committed at the group
level and are backed out if the installation fails:

Chapter 4. Setting up shared data sets, CSD and SYSIN 79

 • CONNECTION, SESSION, TERMINAL, and TYPETERM

Accessing the CSD by DFHCSDUP

Changes made to the CICS system definition file (CSD) by the CSD update batch utility program
DFHCSDUP are not recoverable.
Also consider the effects of using commands provided by this program, before emergency restart of a
failing CICS region, that:
1. Change the contents of lists or groups that are the target of backout processing.
2. Remove internal locks (by using VERIFY, for example).
These situations are analogous to the problems met when using multiple read/write regions, and are
discussed above.

Logging RDO commands

If you want to record RDO commands, use the sample job to create definitions for the extrapartition
queues CADL, CAIL, CRDI, CSDL, CSFL, CSKL, CSLB, CSPL, and CSRL.

About this task

These queues are used as follows:
CADL
Logs z/OS Communications Server resources installed in the active CICS region. CICS records in
this log all z/OS Communications Server resources installed, z/OS Communications Server resources
deleted, and dynamically installed z/OS Communications Server resources that are discarded. This
log includes autoinstalled terminal definitions, terminal definitions installed explicitly by the CEDA
INSTALL command, and terminal definitions installed from a group list during system initialization.
CAIL
Logs the dynamic installation and deletion of autoinstall terminal models.
CRDI
Logs installed resource definitions, such as programs, transactions, mapsets, profiles, partition sets,
files, and LSR pools.
CSDL
Logs RDO commands that affect the CSD.
CSFL
Logs file resources installed in the active CICS region. That is, all file resource definitions that are
installed or deleted, dynamically installed file resource definitions that are discarded, and messages
from dynamic allocation of data sets and from loading CICS data tables.
CSKL
Logs transaction and profile resources installed in the active CICS region. That is, all transaction and
profile resource definitions that are installed or deleted, and dynamically installed transaction and
profile resource definitions that are discarded.
CSLB
Logs changes to the dynamic LIBRARY resources installed in the active CICS region. That is, install
and discard changes, and any changes to the enablement, ranking or critical status of the LIBRARY. If
no dynamic LIBRARY resources are installed, no audit logging will take place.
CSPL
Logs program resources installed in the active CICS region. That is, all program resource definitions
that are installed or deleted, and dynamically installed program resource definitions that are
discarded.
CSRL
Logs changes to the set of partner resources installed in the active CICS region. That is, all operations
that install or discard partner resources.

80 CICS TS for z/OS: Configuring CICS

 If you want these RDO command logs sent to the same destination (CSSL) as the messages, you can use
the definitions shown in Figure 10 on page 81. If you like, you can direct these logs to any other transient
data queue, or define them as extrapartition data sets.

Note: VTAM is now z/OS Communications Server.

*
DEFINE TDQUEUE (CSSL) GROUP(DFHDCTG)
DESCRIPTION(USED FOR MESSAGES)
TYPE(EXTRA) TYPEFILE(OUTPUT)
RECORDSIZE(132) BLOCKSIZE(136)
RECORDFORMAT(VARIABLE) BLOCKFORMAT(UNBLOCKED)
DDNAME(MSGUSR)
*
DEFINE TDQUEUE (CADL) GROUP(DFHDCTG)
DESCRIPTION(CEDA VTAM RESOURCE LOGGING)
TYPE(INDIRECT) INDIRECTNAME(CSSL)
*
DEFINE TDQUEUE (CAIL) GROUP(DFHDCTG)
DESCRIPTION(AITM MESSAGES)
TYPE(INDIRECT) INDIRECTNAME(CSSL)
*
DEFINE TDQUEUE (CRDI) GROUP(DFHDCTG)
DESCRIPTION(RDO INSTALL LOG)
TYPE(INDIRECT) INDIRECTNAME(CSSL)
*
DEFINE TDQUEUE (CSLB) GROUP(DFHDCTG)
DESCRIPTION(CICS LD Domain LIBRARY Audit Trail)
TYPE(INDIRECT) INDIRECTNAME(CSSL)
*
DEFINE TDQUEUE (CSDL) GROUP(DFHDCTG)
DESCRIPTION(CEDA COMMAND LOGGING)
TYPE(INDIRECT) INDIRECTNAME(CSSL)
*
DEFINE TDQUEUE (CSFL) GROUP(DFHDCTG)
DESCRIPTION(FILE ALLOCATION MESSAGES)
TYPE(INDIRECT) INDIRECTNAME(CSSL)
*
DEFINE TDQUEUE (CSKL) GROUP(DFHDCTG)
DESCRIPTION(TRANSACTION MANAGER MESSAGES)
TYPE(INDIRECT) INDIRECTNAME(CSSL)
*
DEFINE TDQUEUE (CSPL) GROUP(DFHDCTG)
DESCRIPTION(PROGRAM MANAGER MESSAGES)
TYPE(INDIRECT) INDIRECTNAME(CSSL)
*
DEFINE TDQUEUE (CSRL) GROUP(DFHDCTG)
DESCRIPTION(PARTNER RESOURCE MANAGER)
TYPE(INDIRECT) INDIRECTNAME(CSSL)

Figure 10. Definitions for RDO command logs sent to CSSL

Logging SPI commands

System programming interface commands are audited to aid system administration and auditing.

About this task

Auditing system programming interface commands generates messages which are directed to the CADS
transient data queue. The messages are written in a human readable form and can be redirected to
another queue to aid problem determination. You can also redirect them to a separate queue if the
volume of messages is high. See Auditing SPI commands.
The CADS queue is defined in the DFHDCTG group which is part of DFHLIST. CADS is defined as an
indirect queue and redirected to the CSSL queue by default. The definitions are shown in Figure 11 on
page 82. However, you can redirect CADS to an extrapartition queue specially defined for the purpose.
For example, you can define an extrapartition queue named "SPIAUDIT" as shown in Figure 12 on page
82

Chapter 4. Setting up shared data sets, CSD and SYSIN 81

 *
DEFINE TDQUEUE (CSSL) GROUP(DFHDCTG)
DESCRIPTION(USED FOR MESSAGES)
TYPE(EXTRA) TYPEFILE(OUTPUT)
RECORDSIZE(132) BLOCKSIZE(136)
RECORDFORMAT(VARIABLE) BLOCKFORMAT(UNBLOCKED)
DDNAME(MSGUSR)
*
DEFINE TDQUEUE (CADS) GROUP(DFHDCTG)
DESCRIPTION(SPI AUDIT MESSAGES)
TYPE(INDIRECT) INDIRECTNAME(CSSL)
*

Figure 11. Definitions for SPI audit messages redirected to CSSL

*
DEFINE TDQUEUE (SPIA) GROUP(DFHDCTG)
DESCRIPTION(USED FOR MESSAGES)
TYPE(EXTRA) TYPEFILE(OUTPUT)
RECORDSIZE(132) BLOCKSIZE(136)
RECORDFORMAT(VARIABLE) BLOCKFORMAT(UNBLOCKED)
DDNAME(SPIAUDIT)
*
DEFINE TDQUEUE (CADS) GROUP(DFHDCTG)
DESCRIPTION(SPI AUDIT MESSAGES)
TYPE(INDIRECT) INDIRECTNAME(SPIA)
*

Figure 12. Definitions for SPI audit messages redirected to extrapartition queue

Making the CSD available to CICS

To make your CICS system definition file (CSD) available to CICS, you can either include a DD statement in
the CICS startup job or use dynamic allocation.

About this task

Procedure
1. Include the following DD statement in your CICS startup job stream:

//DFHCSD DD DSN=CICSTS61.CICS.applid.DFHCSD,DISP=SHR

You usually need the CSD DD statement to include DISP=SHR. (See Sharing user access from several
CICS regions.)
If you include a DD statement for the CSD in the CICS startup job, the CSD is allocated at the time of
CICS job step initiation and remains allocated for the duration of the CICS job step.
2. To dynamically allocate the CSD, specify the data set name (DSNAME) and disposition (DISP) of the
CSD, using one of the following methods:
• The CSDDSN and CSDDISP system initialization parameters
• The CEMT SET FILE command
• The EXEC CICS SET FILE command
Do not provide a DD statement for the CSD in the startup job stream. If there is a CSD DD statement, it
is used instead of dynamic allocation.
CICS uses the full data set name (DSNAME) to allocate the CSD as part of OPEN processing. The CSD is
automatically deallocated when the last entry associated with it is closed.

82 CICS TS for z/OS: Configuring CICS

 What to do next
For more information about OPEN processing, see “Defining user files” on page 125. For information
about the parameters that you can code for the CSD in the SIT, see “Specifying CICS system initialization
parameters” on page 146.

Installing the RDO transactions

The RDO transactions, CEDA, CEDB, and CEDC are defined in the CICS-supplied group, DFHSPI.
This group is also included in DFHLIST, the CICS group list. Ensure that a copy of DFHSPI is included
in the group list that you use for your CICS startup. You specify the group list on the GRPLIST system
initialization parameter.
For information about the CEDA, CEDB, and CEDC transactions, see CEDA - resource definition online.

Installing definitions for the Japanese language feature

If you have the Japanese language feature, install the definitions for the feature in the CICS system
definition file (CSD), by running the CSD update batch utility program DFHCSDUP.
When you run DFHCSDUP, specify the following option:

UPGRADE USING(DFHRDJPN)

If you previously used a language-specific mapset for sign on (DFHSNLK), this is no longer supported as
part of the DFHRDJPN group. Instead, you can modify the CESL and CESN maps that are supplied in the
sample library SDFHSAMP. For details, see CESL - sign-on long and CESN - sign-on.
If you already have a customized mapset DFHSNLK that you have used in previous releases, you can
rename it to DFHSNLE to avoid having to recode and regenerate the module.
For information about DFHCSDUP and its commands, see Defining resources with DFHCSDUP.

Chapter 4. Setting up shared data sets, CSD and SYSIN 83

84 CICS TS for z/OS: Configuring CICS
Chapter 5. Setting up a CICS region
To set up a CICS region, create the data sets for the CICS region, edit the JCL to configure the services
that the CICS region can use, and start the CICS region.

Defining data sets

CICS system data sets are used by a number of CICS processes including temporary storage, transient
data, transaction dump and trace. Some data sets are optional, others are required for running CICS. If a
data set needs pre-formatting, a job that you can use for this purpose is shown.

Setting up CICS data sets

You must define a number of data sets to run CICS. Some data sets are mandatory, whereas others
are needed only if you are using the corresponding facilities. You might also need to provide data
set definitions for user files, DL/I databases, and terminals other than z/OS Communications Server
terminals.

Procedure
1. Plan what CICS data sets you require.
a) Review the CICS facilities that you want in your CICS regions and their data set requirements.
b) Define a naming convention for your data sets.
c) Calculate the space to allocate to the data sets and the data definition statements to define them to
the running CICS region.
2. Define and catalog the data sets that are used by CICS.
3. If required, initialize or preformat the data sets that are used by CICS.
4. Protect the data sets with RACF®, to suit your security requirements.
5. Define the DD statements for the required data sets in the CICS startup job stream.
You do not have to define DD statements for the following data sets:
• User files for which you are using CICS dynamic allocation facilities
• CICS system data sets that are managed by CICS file control and for which you are using CICS
dynamic allocation facilities
• DL/I databases you are accessing through CICS remote DL/I support or DBCTL
For more information about user file definitions, see “Defining user files” on page 125.

What to do next
When you have defined the CICS data sets, you can use CICS utility programs to perform postprocessing
on the data sets. These utilities are described in CICS utility programs.

Reviewing the CICS data sets

Review the list of mandatory and optional data sets to select which ones to create in your CICS regions.

About this task

As you plan which CICS data sets to define, also consider whether to use data set encryption for any data
sets for which z/OS data set encryption is supported. See “Planning for data set encryption” on page 144.

Procedure
1. You must define the following CICS data sets:

© Copyright IBM Corp. 1974, 2022 85

Data set DDNAME Block or CI size Record format Data set
(bytes) organization
Auxiliary trace (See Setting up DFHAUXT 4096 F Sequential
and using auxiliary trace data DFHBUXT
sets)
BTS local request queue. (See DFHLRQ 1024 and 2560 VB VSAM KSDS
Local request queue data set)
Catalogs (See Setting up and DFHGCD DFHLCD 8192 & 2048 VB VSAM KSDS
using catalog data sets)
CSD (See Setting up the CICS DFHCSD 8192 VB VSAM KSDS
system definition data set)
Dump (See Defining dump data DFHDMPA 32 760 (tape) or V Sequential
sets) DFHDMPB 1 track (DASD)
Messages and codes (See DFHCMACD — V VSAM KSDS
Defining the CMAC messages
data set)
Temporary storage (See Setting DFHTEMP See Control N/A VSAM ESDS
up the temporary storage data interval size of
set) temporary data
set
Transient data extrapartition From the From the From the Sequential
(See “Defining extrapartition DDNAME option BLOCKSIZE RECORD FORMAT
data sets” on page 97) in the resource option in option in
definition the resource the resource
definition definition
Transient data intrapartition DFHINTRA See “Size of the N/A VSAM ESDS
(See “Defining the intrapartition intrapartition data
data set” on page 95) set” on page 96

Temporary storage and transient data intrapartition data sets use control interval (CI) processing and
therefore the record format is not relevant.
2. You must define the following CICS data sets if you plan to use the equivalent functions:

Data set DDNAME More information

CDBM group command DFHDBFK Defining the CDBM GROUP command data
set
CICSPlex SM WUI server HTML DFHHTML Specifying the WUI customizable view and
template data set menu help data set
Debugging profiles data sets DFHDPFMB, DFHDPFMP, Setting up the debugging profiles data sets
DFHDPFMX
Link3270 bridge DFHBRNSF Defining DFHBRNSF
Sample file FILEA for sample FILEA The FILEA sample application programs
application programs
WS-AT directory data set DFHPIDIR Defining the WS-AT data set

86 CICS TS for z/OS: Configuring CICS

Defining a data set naming convention
There are no restrictions on the data set names you choose for CICS data sets, other than MVS
constraints. In this information, CICSTS61.CICS is used as the high-level qualifier, and the DD name
as the lowest level. If you are running multiple CICS regions, you can use the CICS APPLID as a second
level qualifier.

About this task

If the data set is shared between an active CICS region and an alternate CICS region, use the generic
APPLID, but if the data set is unique to either the active or the alternate CICS region, use the specific
APPLID.

Procedure
• For 4-character names, use the CTGI naming convention, based on the 4-character CTGI symbol,
where:
– C identifies an entire CICSplex
– T identifies the type of region
– G identifies a group of regions
– I identifies iterations of regions within a group
• For 8-character names, as for CICS APPLIDs, use the letters CICS for the first four characters,
particularly for production regions.
For example, if CICSHTH1 is the APPLID, the data set name for the CSD would be:

DFHCSD DD DSN=CICSTS61.CICS.CICSHTH1.DFHCSD,DISP=SHR

Defining data sets with multiple extents and volumes

You can define a temporary storage data set or a transient data destination data set, as a single extent
defined on a single volume. That data set must be big enough to hold all your data. However, to cater
for exceptional cases in which the data set size might have to be much larger than your average, you can
define data sets with multiple extents and volumes.
For example, you can define:
• Multiple extents on one volume
• One extent on each of multiple volumes
• Multiple extents on multiple volumes
When you define more than one extent, CICS uses the extra extents only when the primary extent
is full. You could make your primary extent large enough to meet average demand, and then have
smaller secondary extents for overflow. In this way, you save space until it is needed. When each extra
extent becomes full, VSAM creates another. VSAM continues to create extra extents, as needed, up to a
maximum of 123 extents. The use of multiple volumes has no effect on this limit.
To allocate additional extents in the same volume, code a secondary extent operand on the RECORDS
parameter:

RECORDS(primary,secondary)

To use single extents on multiple volumes, code:

RECORDS(primary) -
VOLUMES(volume1,volume2,volume3,.....)

For multiple extents on multiple volumes, combine both primary and secondary RECORDS operands with
multiple VOLUMES operands:

Chapter 5. Setting up a CICS region 87

 RECORDS(primary,secondary) -
VOLUMES(volume1,volume2,volume3,.....)

If a particular volume causes performance bottlenecks, try single extents on multiple volumes.
Use multiple extents over multiple volumes if there is a probability that a volume will exhaust its free
space before VSAM reaches its limit on extra extents. If this occurs, VSAM continues to create extra
extents on the next volume in the list.

Creating the CICS data sets

You can use CICS-supplied jobs to create the CICS data sets.

About this task

When you ran the DFHISTAR job as part of the CICS installation, these jobs were tailored to your
environment and stored in the library that you specified on the LIB parameter of the DFHISTAR job.
The default is CICSTS61.XDFHINST).
You can generate several copies of these jobs by rerunning the DFHISTAR job, selecting the jobs that
you want to copy. To generate new copies of these jobs, edit the DFHISTAR job to specify new values
for the DSINFO and SELECT parameters. Only those jobs that you name by the SELECT parameter are
regenerated.

Procedure
1. Run the DFHCOMDS job to create the CICS region definition data set, DFHCSD, and the SYSIN data set.
2. Run the DFHDEFDS job to create data sets used only by one CICS region.
You must run a separate copy of this job to create the data sets for each CICS region. This job creates
the following data sets:

Table 22. Data sets created by DFHDEFDS

Data set Description
DFHAUXT Non-VSAM auxiliary trace (A) data set
DFHBRNSF Bridge
DFHBUXT Non-VSAM auxiliary trace (B) data set
DFHDMPA Non-VSAM dump (A) data set
DFHDMPB Non-VSAM dump (B) data set
DFHDPFMB The debugging profiles base data set
DFHDPFMP The debugging profiles path data set
DFHDPFMX The debugging profiles path data set
DFHGCD CICS global catalog
DFHHTML HTML template data set
DFHINTRA Intrapartition transient data set
DFHLCD CICS local catalog
DFHLRQ BTS local request queue
DFHPIDIR WS-AT directory data set
DFHTEMP Temporary storage data set
FILEA Sample program file

88 CICS TS for z/OS: Configuring CICS

3. Run the DFHCMACI job to create the CICS messages data set, DFHCMACD, and load it with the data
from the CICS-supplied file, DFHCMACD, in the CICSTS61.CICS.SDFHMSGS target library.

Sizing the MVS system data sets

Besides its own system data sets, CICS also uses some MVS data sets.

About this task

These data sets are:

Data set Owned or used by Other comments

SDUMP data sets MVS SDUMP macro Used by CICS for system dumps
through the MVS SDUMP macro.
SMF data sets System management facility Used by CICS monitoring and
statistics domains for monitoring
and statistics records.
GTF data sets Generalized trace facility Used by CICS trace domain for
CICS trace entries.

Procedure
1. Recalculate the size of these system data sets, taking into account the increased volumes of data that
CICS generates.
For example, for an SDUMP data set you must have at least 25 cylinders of a 3380 device, or the
equivalent. For guidance information about calculating the size of SDUMP data sets, see the z/OS MVS
Initialization and Tuning Guide.
2. To prevent the SDUMP data sets from becoming full of unwanted SDUMPs, suppress the SDUMPs as
described in “Suppressing system dumps that precede ASRx abends” on page 121.
SDUMPs can precede ASRA, ASRB, and ASRD abends after the message DFHAP0001.
3. If you are collecting CICS interval statistics frequently, or the volume of statistics at each interval is
high, then you must take this into account when sizing your SMF data sets.
CICS can write records to SMF of up to 32 756 bytes, resulting in SMF writing spanned records to the
SMF data sets. For more efficient use of DASD, you should consider creating the SMF data sets to be
used by CICS with a control interval size of either 16 384 bytes (16 KB) or 8192 bytes (8 KB). If you
use other control interval sizes you must consider the trade-off between efficient use of DASD, SMF
data set I/O performance, and the possibility of data being lost due to insufficient SMF buffers.
4. If you are collecting CICS monitoring data, you must size the amount of data that is written when the
monitoring classes are active.
For background information about SMF, and about other SMF data set considerations, see z/OS MVS
System Management Facilities (SMF).
5. If you are running CICS with GTF trace on, make allowance for CICS trace entries in the GTF data sets.
For background information about GTF, see z/OS MVS Diagnosis: Tools and Service Aids .

Defining backup while open (BWO) for VSAM files

CICS supports the backup while open (BWO) facility provided by DFSMSdss and DFSMShsm. This support
enables some types of VSAM data sets to be backed up by DFSMSdss while CICS is currently updating
these data sets.
At the same time, CICS logs forward recovery images of any changes to these data sets on a forward
recovery journal. At a later date the backup of the data set can be restored using DSMShsm and brought
to a point of consistency by applying the forward recovery logs using a forward recovery utility such as
CICS VSAM Recovery.

Chapter 5. Setting up a CICS region 89

 Before you begin
BWO is available only for data sets accessed by CICS file control, which includes the CICS system
definition data set (CSD). You must decide which VSAM user data sets are eligible for BWO, subject to the
restrictions detailed in “Restrictions on BWO” on page 91 that are applicable to heavily-updated KSDS
data sets.
VSAM data sets that are to use this facility must reside on SMS-managed DASD, and must have an ICF
catalog structure. Only VSAM ESDS, RRDS (both fixed and variable), and KSDS data sets are supported.
BWO requires a number of storage management facilities. See “Storage management facilities required
by BWO” on page 90.

About this task

For DFSMS 1.3, there are two ways of defining BWO:

Procedure
• Define the cluster with parameter BWO=TYPECICS.
This value means that the cluster is eligible for BWO in a CICS region. The file resource definition is
ignored, even if it conflicts.
Clusters with data sets that are to be opened in RLS mode must have BWO specified in the cluster
definition.
• If the BWO parameter is not defined, it defaults to UNDEFINED. In this case, CICS looks at the file
resource definition.
CICS defines a data set as eligible for BWO when a file is defined using RDO. If
BACKUPTYPE=DYNAMIC is specified for a VSAM file, the file is defined as eligible for BWO when
the data set is opened.
If DFSMSdss is to back up a data set that is specified with BACKUPTYPE=STATIC, all CICS files
currently open for update against that data set must be closed before the backup can start.

Results
CICS records the fact that a VSAM base cluster data set is eligible for BWO in its base cluster block.
This is remembered when all files have closed against the VSAM base cluster and across CICS warm and
emergency restarts. It is not remembered across CICS cold or initial starts.

What to do next
You must put appropriate procedures into place for BWO and for forward recovery. These procedures
must include:
• Restoring the BWO backup and running the forward recovery utility to bring the data set to a point of
consistency. The restore requires that users do not have access to the file during the recovery process.
• Restoring and forward recovery of data sets that might have been damaged while allocated to CICS.
This operation might require backout of partially committed units of work, by CICS emergency restart.

Storage management facilities required by BWO

The backup while open (BWO) facility requires a number of storage management facilities.
These storage management facilities are:
Storage management subsystem (SMS), part of MVS/DFP Version 3 Release 2 or later, product
number 5665-XA3
SMS is the approach to DASD storage management in which CICS, by means of the storage
management subsystem, determines data placement. In addition, an automatic data manager
handles data backup, movement, space, and security.

90 CICS TS for z/OS: Configuring CICS

 This is sometimes referred to as DFSMS and complements functions of MVS/DFP and other
individual products of the Data Facility product family. For more details about SMS, see the following
publications:
• z/OS DFSMSdfp Storage Administration describes storage administrator applications.
• z/OS DFSMS Introduction gives an overview of MVS/DFP and its requirements and describes
concepts of SMS-managed storage.
Important: If you use DFHSMS to manage your VSAM data sets, you should consider carefully the
period after which your CICS VSAM data sets are migrated to primary or auxiliary storage.
If a migrated data set has to be recalled for CICS, it can take several minutes from primary storage,
or longer from auxiliary storage. While the recall is taking place, the user is locked out, and no other
opens or closes on that data set can be performed until the data set has been recalled.
If a migrated data set has to be recalled, CICS issues message DFHFC0989 to the system console,
to notify the user that a recall is taking place, and to indicate whether it is from primary or auxiliary
storage.
Data facility hierarchical storage manager (DFHSM), product number 5665-329
DFHSM is an IBM-licensed program to manage volumes and data sets. For more details about DFHSM,
see z/OS DFSMS product documentation.
Data facility data set services (DFDSS), product number 5665-327
DFDSS is an IBM-licensed program used to copy, move, dump, and restore data sets and volumes. For
more details about DFDSS, see z/OS DFSMSdss Storage Administration Guide.

Effect of disabling activity keypointing

If you disable activity keypointing in your CICS region by specifying the system initialization parameter
AKPFREQ=0, there is a serious effect on BWO support for non-RLS activities.
When activity keypointing is disabled, no tie-up records (TURs) are written to the forward recovery logs
and the data set recovery point is not updated. Therefore, forward recovery of a BWO backup must take
place from the time that the data set was first opened for update. This requires that all forward recovery
logs are kept since that time so that forward recovery can take place. If there are many inserts or records
that change length, a lot of forward recovery could be required. If, however, a record is just updated and
the length is unchanged, there is no CI split.
For information about TURs and recovery points, see BWO and concurrent copy .

Restrictions on BWO
The following restrictions apply to VSAM KSDS data set types only.
If a VSAM control interval or control area split occurs while a BWO is in progress, the backup is unreliable
and is discarded by DFHSM and DFDSS. During such a split, certain portions of the data set may be
duplicated or not represented at all in the backup as DFDSS copies sequentially. MVS/DFP 3.2 indicates
that a split has occurred in the ICF catalog. At the end of the backup, DFHSM and DFDSS check the ICF
catalog, and if a split has occurred, or is still in progress, discard the backup. For this reason, certain
heavily-updated VSAM KSDS data sets may not be eligible for BWO, or might be eligible only during
periods of reduced activity (for example, overnight). For a KSDS data set to be eligible for BWO, the typical
time between control interval or control area splits must be greater than the time taken for DFHSM and
DFDSS to take a backup of the data set.

Using a path over a base as an alias for VSAM data sets

For the CICS VSAM data sets, a VSAM path can be used as a means of providing an alias dsname for the
base dsname. Note that it must be a path directly over a base cluster and must not be a path over an
alternate index to the base cluster.

About this task

CICS TS supports PATH aliases for the following data sets:

Chapter 5. Setting up a CICS region 91

 • KSDS data sets DFHCSD, DFHGCD, and DFHLCD
• ESDS data sets DFHINTRA and DFHTEMP
• CICSPlex SM data set EYUDREP

Example
It is possible to define a path with a dsname of CICSTS.applid.DFHCSD associated with base cluster
CICSTS.release.applid.DFHCSD. The path dsname can be used in the JCL. In this way, the JCL does
not need to be changed when you migrate to a new release of CICS TS.

Setting up temporary storage data sets

Each CICS region uses an area of 64-bit (above the bar) or 31-bit (above the line) storage in the CICS
region as main temporary storage. You can define some auxiliary temporary storage for the CICS region in
a nonindexed VSAM data set. Applications in a CICS region can also use shared temporary storage pools
in a z/OS coupling facility.

About this task

For an overview of the different temporary storage locations and the features available for temporary
storage queues in each location, see CICS temporary storage: overview in Improving performance.
Compared to main temporary storage, auxiliary temporary storage is typically used by applications that
store data for longer periods, or access the data less frequently. Temporary storage queues in auxiliary
storage can also be defined as recoverable, which enables you to maintain data from one CICS run to the
next. Temporary storage queues in main storage cannot be defined as recoverable.
Shared temporary storage pools in a coupling facility require temporary storage servers, typically one
server in each z/OS image in the sysplex. However, they do not use any storage in the CICS region. Access
to temporary storage queues in shared temporary storage pools is quicker than access to temporary
storage queues held by a remote CICS region (queue-owning region). Shared temporary storage pools
do not cause inter-transaction affinities. For more information, see “Defining temporary storage pools for
temporary storage data sharing” on page 205.

Defining the auxiliary temporary storage data set

You can either define a VSAM data set for auxiliary temporary storage as a single extent data set on a
single volume using the sample job described here, or use the CICS-supplied job DFHDEFDS. DFHDEFDS
creates the DFHTEMP data set as one of the data sets for a CICS region.

About this task

You must not define any extra associations for a temporary storage data set. For example, do not define a
PATH. Doing so causes CICS startup to fail. Do not allocate the DFHTEMP data set from an SMS data class
using extended addressability because CICS does not support this.

Procedure
1. Consider adding multiple extents and multiple volumes for the data set.
The sample job produces a single-extent data set defined on a single volume, but you might
experience channel and arm contention if auxiliary temporary storage is used heavily.
To use DASD space more efficiently, you could define the DFHTEMP data set with a primary extent
large enough for normal activity, and with secondary extents for exceptional circumstances, such as
unexpected peaks in activity.
For instructions to define further extents or volumes, see “Defining data sets with multiple extents and
volumes” on page 87.
2. Optional: If you want to encrypt the data set, see “Encrypting data sets” on page 143.
3. Specify a RECORDSIZE value that is 7 bytes less than the CONTROLINTERVALSIZE.

92 CICS TS for z/OS: Configuring CICS

 You must specify the amount of space for temporary storage in two values:
a. The control interval size. See “Control interval size for auxiliary temporary storage” on page 93 for
information about how to calculate the space.
b. The number of control intervals in the data set. See “Number of control intervals for auxiliary
temporary storage” on page 94 for information about how to set the correct number of control
intervals.
4. Add a data definition statement for the DFHTEMP data set to the startup job stream.
The temporary storage data set is a passively shared data set, owned by the active CICS region, but
allocated to both the active and alternate CICS regions. Although the alternate CICS region does not
open this data set before takeover, it is allocated at job step initiation, so you must specify DISP=SHR
on the DD statement to enable the alternate CICS region to start.

//DFHTEMP DD DSN=CICSTS61.CICS.applid.DFHTEMP,DISP=SHR

Example

//DEFTS JOB accounting info,name

//AUXTEMP EXEC PGM=IDCAMS
//SYSPRINT DD SYSOUT=A
//SYSIN DD *
DEFINE CLUSTER(NAME(CICSTS61.CICS.CNTL.CICSqualifier.DFHTEMP)-
RECORDSIZE(4089,4089) -
RECORDS(200) -
NONINDEXED -
CONTROLINTERVALSIZE(4096) -
SHAREOPTIONS(2 3) -
VOLUMES(volid)) -
DATA(NAME(CICSTS61.CICS.CNTL.CICSqualifier.DFHTEMP.DATA) -
UNIQUE)
/*

Figure 13. Sample job defining an auxiliary temporary storage data set

What to do next
Use the TS system initialization parameter to specify an appropriate number of VSAM buffers and strings
for auxiliary temporary storage. CICS uses each VSAM buffer to make a control interval from DFHTEMP
available in CICS storage, and uses a VSAM string for each VSAM I/O request between a buffer and
DFHTEMP. Typically, the default setting of three buffers and three strings is sufficient. For information
about the performance considerations, see Auxiliary temporary storage: monitoring and tuning.

Control interval size for auxiliary temporary storage

You specify the control interval size for the auxiliary temporary storage data set with the
CONTROLINTERVALSIZE parameter in the VSAM CLUSTER definition. Because a control interval contains
one or more temporary storage records, take the temporary storage record size into account when
choosing the control interval size.
A temporary storage record is a single numbered item in a temporary storage queue, which might be
written by CICS or an application. A temporary storage record must have the following space:
• 36-bytes for the temporary storage header.
• The length of the data in the temporary storage record (the item in the temporary storage queue). If you
are using BMS with 3270 support, the data length of the record is at least as large as the 3270 buffer
size. For 3270 terminals with the alternate screen size facility, the data length is the larger of the two
sizes. Make sure that you allow sufficient space for the data length used by large-screen devices.
The total number of bytes allocated for a temporary storage record (including the 36-byte header) must
be rounded up to a multiple of 64 for control interval sizes less than, or equal to, 16 KB (16 384-bytes), or
a multiple of 128 for larger control interval sizes.

Chapter 5. Setting up a CICS region 93

 CICS can process temporary storage records that exceed the control interval size, but performance might
degrade in this situation. Choose a control interval size large enough to hold at least one instance of the
largest normally occurring temporary storage record, together with the VSAM control information for the
control interval.
Typically, a control interval contains more than one temporary storage record, and the records might
be of different sizes. The control interval size affects transfer efficiency: a smaller size can improve
performance if access to temporary storage is random, and a larger size can improve performance if
applications tend to use items in temporary storage in a sequential way. In general, the larger the queues
and write to read ratio, the more sequential the usage tends to be.
Select your exact control interval size following these rules:
• The maximum control interval size is 32 KB.
• A control interval size less than, or equal to, 16 KB (16 384-bytes) must include space for 64-bytes of
VSAM control information in addition to the space allowed for temporary storage records.
• A control interval size greater than 16 KB (16 384-bytes) must include space for 128-bytes of VSAM
control information in addition to the space allowed for temporary storage records.
• A control interval size smaller than 8 KB must be a multiple of 512-bytes.
• A control interval size equal to or larger than 8 KB must be a multiple of 2 KB.

Example
If you use BMS to write a 24 x 80 character screen to temporary storage, the data written occupies
1920-bytes. You require 36-bytes for the CICS temporary storage header, giving a total of 1956-bytes.
Rounding this up to a multiple of 64 gives 1984-bytes. Finally, adding a further 64-bytes of VSAM control
information gives a control interval size of 2048-bytes to hold a single record. You can select a control
interval size larger than 2048-bytes to hold several records that might differ in size.

Number of control intervals for auxiliary temporary storage

VSAM uses the RECORDS and RECORDSIZE operands to allocate enough space for the data set to hold
the number of records of the specified size.
You must code the same value for the two operands of the RECORDSIZE parameter (the average and
maximum record sizes), and this value must be 7 bytes less than the CONTROLINTERVALSIZE. In
this way, the specified number of VSAM records matches the number of control intervals available
to temporary storage management. You thus specify, indirectly, the number of control intervals in the
temporary storage data set. (Note that the RECORDS and RECORDSIZE parameters do not correspond to
the temporary storage records as seen at the CICS temporary storage interface.)
The number of control intervals to be allocated depends on user and system requirements for temporary
storage, up to the maximum number permitted of 65 535.

Setting up data sets for transient data

Data sets that are used for transient data queues can be intrapartition or extrapartition. The transient data
intrapartition data set is a VSAM entry-sequenced data set (ESDS) that is used for queuing messages and
data within the CICS region. Transient data extrapartition data sets are sequential files, normally on disk
or tape; you can use the queue to send and receive data outside the CICS region.

About this task

Messages or other data are addressed to a symbolic queue that you define as either intrapartition or
extrapartition using the CEDA transaction. The queues can be used as indirect destinations to route
messages or data to other queues. System messages that CICS produces are commonly sent to transient
data queues, either intrapartition or extrapartition.

94 CICS TS for z/OS: Configuring CICS

Procedure
1. Define all of the queues that CICS uses in your CICS region.
Although the omission of any of the queues does not cause a CICS failure, you lose important
information about your CICS region if CICS cannot write its data to the required queue.
a) Use the sample definitions in group DFHDCTG to define the required queues.
See TDQUEUE resources for a summary.
b) Take a backup copy of the changes that you made to DFHDCTG.
When maintenance is applied, the DFHDCTG group might be refreshed, overwriting your changes.
Taking a backup avoids this problem.
2. Define the intrapartition data set using job control statements.
See “Defining the intrapartition data set” on page 95 for details on how to do this step.
3. Define the extrapartition data sets using job control statements.
See “Defining extrapartition data sets” on page 97 for details on how to do this step.
4. To print CICS system messages on a local printer as they occur, use the transient data write-to-
terminal sample program, DFH$TDWT.
This sample program is supplied with the CICS in CICSTS61.CICS.SDFHLOAD and the assembler
source is in CICSTS61.CICS.SDFHSAMP.

Defining the intrapartition data set

You can either use the sample job described here to define the transient data intrapartition data set, or
you can use the CICS-supplied job, DFHDEFDS. DFHDEFDS creates the DFHINTRA data set as one of the
data sets for a CICS region

About this task

The intrapartition data set must be big enough to hold all the data for intrapartition queues. If you are
using the sample job to define the transient data intrapartition data set, perform the following steps:

Procedure
1. Decide if a single extent data set on a single volume is appropriate.
If you define one extent on one volume, you might require a much larger data set than your average
requirements to cater for exceptional cases. You can define multiple extents or multiple volumes or
both for the data set. For details, see “Using multiple extents and multiple volumes” on page 96.
2. Optional: If you want to encrypt the data set, see “Encrypting data sets” on page 143.
3. Specify a CONTROLINTERVALSIZE parameter that is large enough to hold the longest data record, in
addition to the 32 bytes that CICS requires for its own purposes. The maximum control interval size is
32 KB.
Space is allocated to queues in units of a control interval (CI). The first CI is reserved for CICS use; the
remaining CIs are available to hold data. Data records are stored in CIs according to VSAM standards.
4. If you allocate space in records, rather than tracks or cylinders, you must specify a RECORDSIZE value.
The value must be 7 bytes less than the CONTROLINTERVALSIZE.
5. Add the data definition statement for the intrapartition data set to the CICS startup job stream.
The DD name for the intrapartition data set is DFHINTRA, and the DSN operand must be the name of
the VSAM entry-sequenced data set. For example, you could specify:

//DFHINTRA DD DSNAME=CICSTS61.CICS.applid.DFHINTRA,DISP={OLD|SHR}

Chapter 5. Setting up a CICS region 95

 Example

//DEFDS JOB accounting info,name,MSGCLASS=A

//TDINTRA EXEC PGM=IDCAMS
//SYSPRINT DD SYSOUT=A
//SYSIN DD *
DEFINE CLUSTER -
( NAME(CICSTS61.CICS.applid.DFHINTRA) -
RECORDSIZE(1529,1529) -
RECORDS(100) -
NONINDEXED -
CONTROLINTERVALSIZE(1536) -
VOL(volid)) -
DATA -
( NAME(CICSTS61.CICS.applid.DATA.DFHINTRA))
/*
//

Figure 14. Sample job to define a transient data intrapartition data set

What to do next
Use the TD system initialization parameter to specify an appropriate number of VSAM buffers and strings
for the transient data intrapartition data set. CICS uses buffers to make control intervals from the data
set available in CICS storage, and uses strings for VSAM I/O requests between a buffer and the data set.
Typically, the default setting of three buffers and three strings is sufficient.

What happens if the intrapartition data set fails to open

The DFHINTRA data set is opened during CICS initialization, regardless of the presence or absence of any
intrapartition queue definitions that might become active during GRPLIST installation.
If DFHINTRA fails to open during an initial or cold start of CICS, a message is issued informing you of this,
and asks if you want to continue or if you want to cancel CICS.
If DFHINTRA opened successfully during a previous startup but fails to open during a subsequent warm
or emergency restart, CICS is terminated.
If CICS initializes without a DFHINTRA data set, any attempts to install intrapartition data destinations for
that run of CICS fails and appropriate error messages are issued.

Using multiple extents and multiple volumes

Instead of defining one data set, which might have to be much larger than your average needs to cater for
exceptional cases, you can define multiple extents and multiple volumes.
The job control statements in Figure 14 on page 96 are for a single extent data set defined on a single
volume. That data set must be big enough to hold all your data. For more information about defining
these, see “Defining data sets with multiple extents and volumes” on page 87.

Size of the intrapartition data set

If all available control intervals are currently allocated to queues, further EXEC CICS WRITEQ TD requests
receive a NOSPACE response until control intervals are released by READQ TD or DELETEQ TD requests.
The intrapartition data set should hold at least two control intervals. When a logically recoverable queue
is read until a QZERO condition is returned, and the request is committed, CICS retains the last CI used
by the queue (unless there is no further space between the end of the last record and the end of the CI).
Retaining the final CI used by the queue, means that subsequent requests to write to the queue can be
accommodated in the remaining space within the CI if they can fit there. This avoids the need to acquire
a new CI whenever the first request is made to write to the queue following a QZERO condition, which
benefits performance on subsequent write requests. However, the CI is left allocated to the queue, and so
increases the usage of the data set, and the possibility of a NOSPACE condition being returned by CICS.

96 CICS TS for z/OS: Configuring CICS

Intrapartition data set restrictions
An intrapartition data set used as a transient data queue must be associated with only one CICS region.
CICS stores the relative byte addresses (RBAs) of records written to an intrapartition data set used as a
transient data queue, and you must take care to preserve the RBAs during any VSAM export or import
operation on the data set.
Data can be corrupted or lost if you start CICS with the wrong intrapartition data set; that is, a data set
that contains data from another CICS region.
Data can be corrupted or lost if you use VSAM export or import services to increase the available space by
compressing the data set, or to increase the control interval size.
Do not use the extended addressing entry-sequenced data set (ESDS) format for an intrapartition data
set.

Defining extrapartition data sets

You can define each extrapartition data set for either input only or output only, but not for both.

About this task

Define transient data extrapartition data sets used as queues for CICS messages with a record length
of 132 bytes and a record format of V or VB. If you use the FREE=CLOSE parameter for an input
extrapartition entry, be aware that it will be usable only once in the CICS session. Any attempt to read the
queue after it has been CLOSEd and OPENed again will result in the IOERR condition being raised.
Should you decide to specify VBS for the extrapartition data set, be aware that BFTEK=A should be
specified on the definition in the JCL. When variable-length spanned records are processed without the
extended logical record interface (XLRI), and a record area is provided for a logical record interface
(LRI) (BFTEK=A has been specified in the data control clock), QSAM will provide an area large enough
to contain the maximum record size (up to 32756 bytes). Failure to specify BFTEK=A on such data set
definitions can result in run time errors such as abend 002 returned from the access method.
If you want to encrypt the data sets, see “Encrypting data sets” on page 143.

Example

//LOGUSR DD DSN=CICSTS61.CICS.applid.LOGUSR,DISP=(NEW,KEEP),
// DCB=(DSORG=PS,RECFM=V,BLKSIZE=136),
// VOL=SER=volid,UNIT=3380,SPACE=(CYL,2)
//MSGUSR DD SYSOUT=A

Figure 15. Sample JCL to define transient data extrapartition data sets

The DFHCXRF data set

Besides any extrapartition data sets that you might define, there is a special extrapartition queue that
CICS creates dynamically. This queue has the identifier CXRF and is created by CICS early in the
initialization process.
The DD name for this extrapartition data set is DFHCXRF. You cannot define CXRF or DFHCXRF. If you
code DFHCXRF as a DSCNAME, or code CXRF as a destination identifier, an error message is issued. If you
create a definition for CXRF in the CSD, CICS does not install the definition. This is because the CICS entry
is hardcoded and cannot be removed or replaced.
If an attempt is made to write to a CICS-defined transient data queue before CICS is fully initialized, a
message is written to CXRF.
If, on an initial or cold start, a request is received to write a record to a queue that has not yet been
installed as part of GRPLIST, the record is written to CXRF.

Chapter 5. Setting up a CICS region 97

 If an attempt is made to write to an intrapartition queue after the warm keypoint has been taken, the
record is written to CXRF.

Active CICS regions

CICS uses the CXRF queue during CICS initialization as some CICS components might need to write to
transient data queues.
If the queues are not available at initialization time, the request to write to these queues is redirected to
CXRF. Any requests from CICS components to write to transient data before the CXRF queue definition
has been installed fails with a QIDERR condition.
Any requests to write to an intrapartition transient data queue after the warm keypoint has been taken
during a normal shutdown are routed to CXRF.
If you want to take advantage of the special CXRF queue, you must include a DD statement for DFHCXRF.
If you omit the DD statement, transient data write requests redirected to CXRF fail with a NOTOPEN
condition.

DFHCXRF DD statements
You can define the DFHCXRF data set to MVS in the same way as other transient data extrapartition data
sets, either to a SYSOUT data set or a sequential data set on disk (or tape). For example, you could use
either of the DD statements shown in the following example in a startup job stream for a CICS region:

//DFHCXRF DD SYSOUT=*

or

//DFHCXRF DD DSN=CICSTS61.CICS.applid.DFHCXRF,DISP=(NEW,KEEP),
// DCB=(DSORG=PS,RECFM=V,BLKSIZE=136),
// VOL=SER=volid,UNIT=3380,SPACE=(TRK,5)

Figure 16. Sample DD statements for DFHCXRF

Setting up CICS log streams

Create CICS log streams to use the MVS system logger to record journaling and logging information.

About this task

CICS log manager supports:
• The CICS system log, which is also used for dynamic transaction backout.
• User journals, forward recovery logs, and auto-journals. These are general logs.

Defining CICS system logs

Each CICS region requires its own system log. The system log is implemented as two MVS system logger
log streams - a primary and a secondary - but, together, they form a single logical log stream.

About this task

The system log is used for recovery purposes - for example, during dynamic transaction backout, or
during emergency restart, and is not meant to be used for any other purpose.
CICS connects to its system log automatically during initialization (unless you specify a journal model
definition that defines the system log as type DUMMY).

98 CICS TS for z/OS: Configuring CICS

You must define a system log if you want to preserve data integrity in the event of unit of work failures and
CICS failures. CICS needs a system log in order to perform:
• The backout of recoverable resources changed by failed units of work.
• Cold starts when CICS needs to recover conversation state data with remote partners.
• Warm restarts, when CICS needs to restore the region to its pre-shutdown state.
• Emergency restarts, when CICS needs to restore the region to its pre-shutdown state as well as
recovering transactions to perform the backout of recoverable resources changed by units of work that
were in-flight at the time of shutdown.
For information on how to define CICS system log streams, see Coupling facility log streams and DASD-
only log streams.

Planning your CICS system log streams

A CICS system log (which comprises two physical log streams) is unique to the region and must not be
used by any other CICS region. The default log stream names region_userid.applid.DFHLOG and
region_userid.applid.DFHSHUNT are designed to ensure unique names.

Effects of the AKPFREQ parameter

Review the activity keypoint frequency (AKPFREQ) defined for each CICS region. The larger the value, the
more coupling facility space you need for the system logs, but you should not set AKPFREQ too low so
that transactions last longer than an activity keypoint interval.

Using JOURNALMODELs to define the system log

You might want to use journal models for system logs if the CICS region userid changes between runs (for
example, where a test CICS region is shared between application developers).
It would be wasteful to create log streams with a different high level qualifier for each user. Using the
same system log stream regardless of the which programmer starts up the CICS region keeps the number
of log streams to a minimum. The following example uses a specific JOURNALNAME, with symbols in the
STREAMNAME, making this an explicit model for the primary log stream.

DEFINE GROUP(TEST) DESC('System logs for test CICS regions')

JOURNALMODEL(DFHLOG) JOURNALNAME(DFHLOG) TYPE(MVS)
STREAMNAME(TESTCICS.&APPLID..&JNAME.)

If you define JOURNALMODEL resource definitions to define log stream names for DFHLOG and
DFHSHUNT, ensure that the resulting log stream names are unique. If you have some CICS regions that
use the same applid, you must use some other qualifier in the log stream name to ensure uniqueness.
If you use JOURNALMODEL resource definitions for the system log, these resource definitions must be
defined and added to the appropriate group list (using the CSD update batch utility program DFHCSDUP)
before INITIAL-starting CICS.
System logs cannot be TYPE(SMF).
DFHLOG can be TYPE(DUMMY), but you can use this only if you always INITIAL start your CICS regions
and there are no recoverable resources requiring transaction backout. CICS cannot perform a cold start,
or warm or emergency restart if TYPE(DUMMY) is specified on the JOURNALMODEL definition.
If you do not want to use a system log, perhaps in a test or development region, define a JOURNALMODEL
for DFHLOG with type DUMMY, as shown in the following example:

DEFINE JOURNALMODEL(DFHLOG) GROUP(CICSLOGS)

JOURNALNAME(DFHLOG)
TYPE(DUMMY)

To start a CICS region without a system log, you must ensure that a JOURNALMODEL definition, such
as the one shown above, is included in the start-up group list. Use DFHCSDUP to define the required
JOURNALMODEL and to add the group to the group list.

Chapter 5. Setting up a CICS region 99

 DFHSHUNT can be TYPE(DUMMY). This is not recommended, however, because it impairs the ability of
CICS to manage the system log.

Defining CICS general logs

Journals on general log streams comprise user journals, forward recovery logs, and autojournals.

Planning log streams for use by your user journals and autojournals
General logs are identified as such by their MVS log stream names, which are differentiated from system
log streams in that their names do not end with DFHLOG or DFHSHUNT.

Planning log streams for use by your forward recovery logs

CICS performs the logging for RLS and non-RLS data sets.
You can share a forward recovery log stream between multiple data sets - you do not need to define a
log stream for each forward-recoverable data set. Your decision is a balance of transaction performance,
rapid recovery, and the work involved in managing a large number of log streams.
For a data set open in RLS mode, the MVS logger merges all the forward recovery log records from the
various CICS systems on to the shared forward recovery log.
Some points to consider are:
• All data sets used by one transaction should use the same log stream (to reduce the number of log
streams written to at syncpoint).
• A good starting point is to use the same forward recovery log ID that you use in an earlier CICS release.
• Share a forward recovery log stream between data sets that:
– Have similar security requirements
– Have similar backup frequency
– Are likely to need restoring in their entirety at the same time
• Log stream names should relate to the data sets. For example, PAYROLL.data_sets could be mapped to
a forward recovery log named PAYROLL.FWDRECOV.PAYLOG.
• The last qualifier of the stream name is used as the CICS resource name for dispatcher waits. Therefore,
if it is self-explanatory, it can be helpful when interpreting monitoring information and CICS trace
entries.
• Don't mix high update frequency data sets with low update frequency data sets, because this causes a
disproportionate amount of unwanted log data to be read during recovery of low frequency data sets.
• Don't put all high update frequency data sets on a single log stream because you could exceed the
throughput capacity of the stream.
• If you define too many data sets to a single log stream, you could experience frequent structure-full
events when the log stream can't keep up with data flow.
• Redundant data should be deleted from log streams periodically. On OS/390® Release 2 or earlier,
this is a user responsibility, and must be done before the system logger inventory entry exceeds the
limit of 168 data sets per log stream. On OS/390 Release 3 or later, you can specify that redundant
data is to be deleted automatically from general log streams, by defining them with AUTODELETE(YES)
RETPD(dddd). For information about the AUTODELETE and RETPD MVS parameters, see Definitions
required for VSAM RLS support>.
Typically, for a forward recovery log, deletion of old data is related to the data backup frequency. For
example, you might keep the 4 most recent generations of backup, and when you delete a redundant
backup generation you should also delete the corresponding redundant forward recovery log records.
These are the records older than the redundant backup because they are no longer needed for forward
recovery.
For information about IBM CICS VSAM Recovery, see CICS VSAM Recovery for z/OS.

100 CICS TS for z/OS: Configuring CICS

Planning log streams for use by your log of logs (DFHLGLOG)
The log of logs is written by CICS to provide information to forward recovery programs such as CICS VSAM
Recovery.
The log of logs is a form of user journal containing copies of the tie-up records written to forward recovery
logs. Thus it provides a summary of which recoverable VSAM data sets CICS has used, when they were
used, and to which log stream the forward recovery log records were written.
If you have a forward recovery product that can utilize the log of logs, you should ensure that all CICS
regions sharing the recoverable data sets write to the same log of logs log stream.

DEFINE GROUP(JRNL) DESC('Merge log of logs')

JOURNALMODEL(DFHLGLOG) JOURNALNAME(DFHLGLOG) TYPE(MVS)
STREAMNAME(&USERID..CICSVR.DFHLGLOG)

Note: Note that this definition is supplied in group DFHLGMOD in DFHLIST.

If you don't have a forward recovery product that can utilize the log of logs you can use a dummy log
stream:

DEFINE GROUP(JRNL) DESC('Dummy log of logs')

JOURNALMODEL(DFHLGLOG) JOURNALNAME(DFHLGLOG) TYPE(DUMMY)

In addition to forward recovery, the log of logs is also used for recording log stream errors. When a log
stream failure occurs, CICS tries to update the log of logs with the error and diagnostic information,
unless DFHLGLOG is defined as TYPE(DUMMY).
Do not share the log of logs between test and production CICS regions, because it could be misused to
compromise the contents of production data sets during a restore.

Using JOURNALMODELs to define general logs

If you are running multiple cloned copies of your application-owning regions (AORs), it is probable that
the logged data is common and that you would want to merge the data from all of the AORs to the same
log stream.
The following JOURNALMODEL resource definition maps CICS journals of the same journal identifier to a
shared log stream:

DEFINE GROUP(MERGE) DESC('Merge journals across cloned CICS regions')

JOURNALMODEL(JRNLS) JOURNALNAME(DFHJ*) TYPE(MVS)
STREAMNAME(&USERID..SHARED.&JNAME.)

In this example, the literal SHARED is used in place of the default CICS applid, which would require a
unique log stream for each region.
You might want to use JOURNALMODELs to map journals to log streams if the CICS region userid changes
between runs. This could be the case, for example, where CICS test regions are shared between groups
of developers. It would be wasteful to create log streams with a different high level qualifier for each
user and you might prefer to use the same log streams regardless of which developer starts up a CICS
region. For example, the following generic JOURNALMODEL definition maps all journals not defined by
more explicit definitions to the same log stream

DEFINE GROUP (TEST) DESC('Journals for test CICS regions')

JOURNALMODEL(JRNLS) JOURNALNAME(*) TYPE(MVS)
STREAMNAME(TESTCICS.&APPLID..&JNAME.)

You might want to merge data written by CICS regions using different journal names to a single log
stream.

DEFINE GROUP (TEST) DESC('Merging journals 10 to 19')

JOURNALMODEL(J10TO19) JOURNALNAME(DFHJ1*) TYPE(MVS)
STREAMNAME(&USERID..MERGED.JNLS)
DEFINE GROUP (TEST) DESC('Merging journalnames JNLxxxxx')
JOURNALMODEL(JNLXXXXX) JOURNALNAME(JNL*) TYPE(MVS)
STREAMNAME(&USERID..MERGED.JNLS)

Chapter 5. Setting up a CICS region 101

 The last qualifier of the stream name is used as the CICS resource name for dispatcher waits. Therefore, if
it is self-explanatory, it can be helpful when interpreting monitoring information and CICS trace entries.

Naming conventions of CICS journals

The journals have the following naming conventions.

System logs
DFHLOG and DFHSHUNT are the journal names for the CICS system log.
CICS automatically creates journal table entries for DFHLOG and DFHSHUNT during initialization as
shown in Table 23 on page 102.

Table 23. Journal name entry for the CICS primary system log
Journal table entry - CICS system Created during system initialization
log
Name: DFHLOG Always DFHLOG for the primary log
Status: Enabled Set when journal entry created
Type: MVS The default, but it can be defined as DUMMY on JOURNALMODEL
definition (DUMMY = no output)
LSN: log_stream_name By default, log_stream_name resolves to &reguserid..&applid..DFHLOG,
but this can be user-defined on a JOURNALMODEL definition

Forward recovery logs

For non-RLS data sets that have not specified their recovery attributes in the VSAM catalog, forward
recovery log names are of the form DFHJnn where nn is a number in the range 1–99.
You define the name of the forward recovery log in the forward recovery log id (FWDRECOVLOG) in the
FILE resource definition.
User applications can use a forward recovery log through a user journal name that maps on to the same
log stream name. In this case, the user records are merged on to the forward recovery log. See Table 24
on page 102 for an example of this.

Table 24. Example of journal name entry for non-RLS mode forward recovery log
Journal table entry - forward Entry created during file-open processing
recovery log
Name: DFHJ01 Name derived from FWDRECOVLOG identifier. For example,
FWDRECOVLOG(01) = DFHJ01, thus FWDRECOVLOG(nn) = DFHJnn
Status: Enabled Set when journal entry created
Type: MVS The default, but it can be defined as DUMMY on JOURNALMODEL
definition (DUMMY = no output)
LSN: log_stream_name By default, log_stream_name resolves to
&reguserid..&applid..DFHJ01, but this can be user-defined on a
JOURNALMODEL definition

Note: There is no journal table entry for the forward recovery log of an RLS file. The recovery attributes
and LSN are obtained directly from the VSAM catalog, and the LSN is referenced directly by CICS file
control. Therefore there is no need for indirect mapping through a journal name.
You can also choose to specify the recovery attributes and LSN for a non-RLS file in the VSAM catalog.

102 CICS TS for z/OS: Configuring CICS

User journals
CICS user journals are identified by their journal names (or number, in the case of DFHJnn names), which
map on to MVS log streams.
You name your user journals using any 1-8 characters that conform to the rules of a data set qualifier
name. Apart from the user journal names that begin with the letters DFHJ, followed by two numeric
characters, you should avoid using names that begin with DFH. User journal names of the form DFHJnn
are supported for compatibility with earlier CICS releases.
Although 8-character journal names offer considerable flexibility compared with the DFHJnn name format
of previous releases, you are recommended not to create large numbers of journals (for example, by using
the terminal name or userid as part of a program-generated name).
Journal name DFHLOG (on an EXEC CICS WRITE JOURNALNAME command) indicates that you want to
write to the CICS system log.
When used in FILE and PROFILE resource definitions, the journal numbers 1 through 99 map on to
the user journal names DFHJ01–99. You can map these journal names to specific MVS log stream
names by specifying JOURNALMODEL resource definitions, or allow them to default. If you do not
specify matching JOURNALMODEL definitions, by default user journals are mapped to LSNs of the form
userid.applid.DFHJnn.
Table 25 on page 103 shows an example of a user journal name table entry.

Table 25. Example of a user journal name entry for output to MVS
Journal table entry - user Entry created on first reference
journals
Name: JRNL001 Name derived from API WRITE JOURNALNAME command
Status: Enabled Set when journal entry created
Type: MVS This journal is defined for MVS output by a JOURNALMODEL that
references the JRNL001 name
LSN: log_stream_name By default, log_stream_name resolves to
&reguserid..&applid..JRNL001, but this can be user-defined on a
JOURNALMODEL definition

Note: The journal control table of earlier releases is obsolete, and is replaced by a journal names table
that CICS creates dynamically.
The CICS log manager needs the name of the log stream that corresponds to a CICS system log or general
log, and the type - whether it is MVS, SMF, or a dummy. Except for VSAM forward recovery log stream
names taken directly from the ICF catalog, CICS maintains this information in the journal names table,
together with the corresponding log stream token that is returned by the MVS system logger when CICS
successfully connects to the log stream.

How CICS uses JOURNALMODEL definitions to resolve log stream names

CICS uses JOURNALMODEL definitions to resolve log stream names.
CICS resolves log stream names at the following times:
System log
During initialization, on an initial start only.
On a cold, warm or emergency restart, CICS retrieves the log stream name from the CICS global
catalog.
General logs
When a journal name is first referenced after the start of CICS, or when it is first referenced again
after its log stream has been disconnected. Log stream disconnection, requiring further reference to a
matching JOURNALMODEL resource definition, occurs as follows:

Chapter 5. Setting up a CICS region 103

 User journals
As soon as you issue a DISCARD JOURNALNAME command.
Any further references to the discarded journal name means that CICS must again resolve the log
stream name by looking for a matching JOURNALMODEL resource definition. You can change the
log stream name for a user journal by installing a modified JOURNALMODEL definition.
Auto journals for files
All files that are using the log stream for autojournaling are closed.
Forward recovery logs
All files that are using the log stream for forward recovery logging are closed.
A JOURNALMODEL definition generally specifies a generic journal name, thereby mapping to the same
MVS log stream any journal names that match on the generic name. JOURNALMODEL definitions can
also be specific models and, using JOURNALMODEL definitions, you can map many journals or forward
recovery logs to the same MVS log stream, or assign them to SMF (see Figure 17 on page 104). CICS
searches the Table of installed journal models to find the log stream name that corresponds to the journal
name, using a "best-match" algorithm.

User application
program

Write request to
journal name DFHJ06

Table of installed journal models

CICS log manager Journal Type Log stream name

DFH* MVS
DFHJ06 not known
DFHJ* MVS
Create journal DFHJ0* MVS CICSHT##.CICSHTA1.DFHJ0X
entry for DFHJ06
DFHJ10 SMF
Search journal DFHJ20 DUMMY
models for LSN

Best match is DFHJ0*

Use specifed LSN

Figure 17. Looking for a journal model that matches a journal name

Mapping log streams

Except for VSAM RLS forward recovery log stream names, which are obtained directly from the VSAM
catalog, CICS maps the system log name or journal name to a corresponding log stream name.

About this task

CICS does this either by using a user-defined JOURNALMODEL resource definition (if one exists), or by
using default names created by resolving symbolic names.

104 CICS TS for z/OS: Configuring CICS

Mapping of the system log stream
On a cold start, or warm or emergency restart, CICS retrieves the system log stream name from the CICS
global catalog.
CICS uses the default log stream names unless you provide a JOURNALMODEL resource definition for the
system log.
If there are JOURNALMODEL definitions for your system logs (CICS finds JOURNALMODEL definitions
with JOURNALNAME(DFHLOG) and JOURNALNAME(DFHSHUNT)), it attempts to connect to the system
log streams named in these definitions. System log stream names must be unique to the CICS region.
If you define JOURNALMODEL resource definitions for your system logs, ensure that:
• The log streams named in the definition are defined to the MVS system logger, or
• Suitable model log streams are defined so that they can be created dynamically.
If there are no suitable JOURNALMODEL definitions, CICS attempts to connect to system log streams,
using the following default names:
• userid.applid.DFHLOG
• userid.applid.DFHSHUNT
where 'userid' is the RACF userid under which the CICS address space is running, and 'applid' is the
region's z/OS Communications Server APPL name. The CSD group DFHLGMOD holds the CICS-supplied
JOURNALMODEL definitions for the default DFHLOG and DFHSHUNT log streams.
Before you try to use these default log stream names, ensure that
• The default log streams are defined explicitly to the MVS system logger, or
• Suitable model log streams are defined so that they can be created dynamically.
If these log streams are not available (perhaps they have not been defined to MVS) or the definitions are
not found (perhaps they have not been installed), CICS attempts to create system log streams using a
model log stream named &sysname.LSN_last_qualifier.MODEL, where:
• &sysname is the MVS symbol that resolves to the system name of the MVS image
• LSN_last_qualifier is the last qualifier of the log stream name as specified on the JOURNALMODEL
resource definition.
If you do not provide a JOURNALMODEL resource definition for DFHLOG and DFHSHUNT, or if you use the
CICS definitions supplied in group DFHLGMOD, the model names default to &sysname.DFHLOG.MODEL
and &sysname.DFHSHUNT.MODEL. Once these log streams have been created, CICS then connects to
them.
Figure 18 on page 106 shows a graphical representation of the system log mapping process during an
INITIAL start.

Chapter 5. Setting up a CICS region 105

 Initial start CICS region
Establish mapping of CICS system
log to MVS log stream
CICS log manager

Find JOURNAL MODEL DFHLOG JOURNAL MODEL DFHLOG

(or best match) defnition to not defned
identify log stream name (LSN)

Use default log stream name

&userid ..&applid .. DFHLOG to
defne system log name

1 2

Log stream name (derived either

Connect to named log stream
from path 1 or 2) does not exist

Use CICS default model log stream

&sysname .. DFHLOG.MODEL to
create the log stream dynamically
using MVS defne log stream
service (can invoke XLGSTRM exit)

Issue defne log stream request to

MVS system logger

Create log stream fails

ABEND xxx

CICS Global Catalog

DFHLOG/log stream

MVS System Logger

1 Log stream name from JOURNAL MODEL defnition

2 Resolution of &USERID ..&APPLID ..DFHLOG

MVS Log Stream

Log stream name as resolved by above process

Figure 18. How CICS maps the system log (DFHLOG) to a log stream name (LSN) during an INITIAL start

106 CICS TS for z/OS: Configuring CICS

Mapping of general log streams
CICS uses the default log stream names unless you provide a JOURNALMODEL resource definition for the
journal or log.
If there is a JOURNALMODEL definition for the log, CICS attempts to connect to the log stream named in
the definition.
If you define JOURNALMODEL resource definitions for your system logs, ensure that:
• The log streams named in the definition are defined to the MVS system logger, or
• Suitable model log streams are defined so that they can be created dynamically.
If CICS cannot connect to the log stream named in the JOURNALMODEL definition, it attempts to connect
to a log stream, using the default name:

userid.applid.journalname

Before you try to use this default log stream name, ensure that
• The default log stream is defined explicitly to the MVS system logger, or
• A suitable model log stream is defined so that it can be created dynamically.
If the log stream is not available (perhaps it has not been defined to MVS) or the definition is not found
(perhaps it has not been installed), CICS attempts to create a log stream using the default name:

LSN_QUALIFIER1.LSN_QUALIFIER2.MODEL

where the qualifier fields are based on the JOURNALMODEL definition streamname attribute, as follows:
• If the log stream being created has a qualified name consisting of only two names (qualifier1.qualifier2)
or has an unqualified name, CICS constructs the model name as qualifier1.MODEL or name.MODEL.
• If the log stream being created has a qualified name consisting of 3 or more names
(qualifier1.qualifier2....qualifier_n), CICS constructs the model name as qualifier1.qualifier2.MODEL.
Once the log stream has been created, CICS connects to it.
Figure 19 on page 108 shows a graphical representation of the mapping process for general logs.

Chapter 5. Setting up a CICS region 107

 Application programs
EXEC CICS WRITE JOURNALNAME (02) . . . .
or
EXEC CICS WRITE JOURNALNUM (02) . . . .

CICS resource managers

CICS fle control writes
autojournal records to DFHJ02
CICS log manager

1 First reference?
Create entry in journal names table for DFHJ02 as follows:
fnd log stream name (LSN) and type for DFHJ02 from
installed JOURNALMODEL defnition.
If not found, use defaults for LSN:
&USERID . . &APPLID . . DFHJ02 (TYPE MVS)

2 Log stream already connected?

Use the existing log stream token

3 Log stream not connected If connection succeeds, store the log

so issue a connect to LSN stream token for use with this journal

4 Connection failed - LSN not known.

Prepare call for dynamic create for LSN using
default log stream model named:
&LSN QUALIFIER1 . . &LSN QUALIFIER2 . . MODEL

5 Issue a defne log stream to MVS system logger If the defne fails, CICS returns
an exception condition to the task

6 If connection succeeds, store the log

Issue a connect to LSN
stream token for use with this journal

MVS system logger

Log stream denoted by its LSN

Figure 19. How a CICS journal is mapped to its log stream name (LSN)

Printing or copying data on MVS system logger log streams

You can use the CICS-supplied journal utility program DFHJUP to select, print, or copy data held on MVS
system logger log streams. Alternatively, you can use your own utility.

About this task

The journal utility program DFHJUP uses the SUBSYS=(LOGR... facility. If you want to your own utility,
your utility should use the SUBSYS=(LOGR... facility.
For information about running DFHJUP, and the SUBSYS=(LOGR.. , facility, see Reading log streams using
batch jobs (DFHJUP).

108 CICS TS for z/OS: Configuring CICS

Setting up the catalog data sets
You must define and initialize new CICS catalogs for CICS Transaction Server for z/OS, Version 6 Release
1.

About this task

You must define the CICS global catalog data set and the CICS local catalog data set, which CICS requires
to catalog CICS system information. Throughout the documentation, these data sets are referred to as
the global catalog and the local catalog. The CICS catalog data sets are not connected with MVS system
catalogs and contain data that is unique to CICS.
For information on how CICS uses the catalogs, including startup and restart, see “The role of the CICS
catalogs” on page 169
To estimate the amount of space needed in your global catalog, see “Space calculations” on page 111
To set up the catalog data sets:

Procedure
1. Define the global catalog.
2. Define the local catalog.

Defining the global catalog

The global catalog is a VSAM key-sequenced data set (KSDS) is used to store start type information,
location of the CICS system log, resource definitions, terminal control information and profiles.

About this task

CICS uses the global catalog to perform the following activities:
• To record information that governs the possible types of start and the location of the CICS system log.
• During the running of CICS, to hold the resource definitions that are installed during initialization when
CICS installs the group list, by the RDO CEDA INSTALL command or by the EXEC CICS CREATE
command.
• During a normal shutdown, to record terminal control information and profiles. All other warm keypoint
information is written to the CICS system log.
You must ensure that the REGION parameter on your CICS jobs is high enough to cope with the increase
in buffer storage used for the global catalog, because this storage comes out of region storage not EDSA.
You can define and initialize the CICS global catalog in two ways. You can use the sample job as described
below, or you can use the CICS-supplied job, DFHDEFDS.
Edit the sample job:

Procedure
1. Edit the data set name in the CLUSTER definition to be the same as the DSN parameter in the DD
statement for the global catalog in the CICS startup job stream.
2. The primary and secondary extent sizes are shown as n1 and n2 cylinders. Calculate the size required
to meet your installation requirements, and substitute your values for n1 and n2.
Whichever IDCAMS parameter you use for the global catalog data set space allocation (CYLINDERS,
TRACKS, or RECORDS), make sure that you specify a secondary extent. CICS abends if your global
catalog data set fills and VSAM cannot create a secondary extent. For information about record sizes,
see Table 26 on page 111
3. Specify the REUSE option on the DEFINE CLUSTER command.

Chapter 5. Setting up a CICS region 109

 This option enables the global catalog to be opened repeatedly as a reusable cluster. Also specify
REUSE if you intend to use the COLD_COPY input parameter of the DFHRMUTL utility.
4. Edit the CONTROLINTERVALSIZE values for the VSAM definition if required.
This job does not specify a minimum or maximum buffer size explicitly, but accepts the default that is
set by VSAM. You can code an explicit value if you want to define buffers of a specific size. See “Buffer
space sizings” on page 113 for more information.
5. Use the recovery manager utility program, DFHRMUTL, to initialize the data set. Specify this utility in
the job step INITGCD.
DFHRMUTL writes a record to the data set, specifying that on its next run using this global catalog,
if START=AUTO is specified, CICS is to perform an initial start and not prompt the operator for
confirmation. This record is called the autostart override record.
6. Add a job step to run the DFHCCUTL utility.
Adding this step means that the global and local catalogs do not get out of step.
7. Define the data definition statement for CICS as:

//DFHGCD DD DSN=CICSTS61.CICS.applid.DFHGCD,DISP=OLD

This example shows the minimum specification for a global catalog for use by a single CICS region.
8. Add the relevant AMP subparameters to the DD statement to help improve restart and shutdown time.
The AMP parameter is described in z/OS MVS JCL Reference and an example is shown in the CICS
startup job stream in “CICS startup” on page 180.

Example

//GLOCAT JOB accounting info,,CLASS=A

//DEFGCD EXEC PGM=IDCAMS
//SYSPRINT DD SYSOUT=*
//SYSIN DD *
DEFINE CLUSTER -
(NAME(CICSTS61.CICS.applid.DFHGCD) -
INDEXED -
CYLINDERS(n1 n2) -
FREESPACE(10 10) -
SHAREOPTIONS(2) -
RECORDSIZE(4089 32760) -
REUSE -
VOLUMES(volid)) -
DATA -
(NAME(CICSTS61.CICS.applid.DFHGCD.DATA) -
CONTROLINTERVALSIZE(32768) -
KEYS(52 0)) -
INDEX -
(NAME(CICSTS61.CICS.applid.DFHGCD.INDEX) )
/*
//INITGCD EXEC PGM=DFHRMUTL,REGION=1M
//STEPLIB DD DSNAME=CICSTS61.CICS.SDFHLOAD,DISP=SHR
//SYSPRINT DD SYSOUT=A
//DFHGCD DD DSNAME=CICSTS61.CICS.applid.DFHGCD,DISP=OLD
//SYSIN DD *
SET_AUTO_START=AUTOINIT
/*

Figure 20. Example job to define and initialize the global catalog

110 CICS TS for z/OS: Configuring CICS

Space calculations
Estimate the amount of space needed in your global catalog to keypoint installed resource definitions,
table entries, and control blocks. Each global catalog record has a 52-byte key. Each entry is one VSAM
record, and the records for each type of table have different keys.
You must regularly review your space usage to ensure that extents are not running too close to the limit
for your environment. Use the sizes specified in Table 26 on page 111 to estimate the amount of space
needed in your global catalog.
The space requirements for a VSAM KSDS such as DFHGCD can vary for different CICS cold starts. They
can vary when no changes have been made to the CICS definitions that are going to be stored on the
VSAM KSDS, because VSAM uses the space in the data set differently depending on whether the data set
has just initialized or has data from a previous run of CICS. CICS calls VSAM to perform sequential writes.
VSAM honors the freespacevalue specified on the data set's definition if the keys of the records being
added sequentially are higher than the highest existing key. However, if the data set contains existing
records with a higher key than the ones being inserted, the freespace value is only honored after a CI
split has occurred.
The size of the index portion of the data set can also vary depending on the number of CI and CA splits
that have occurred. The size affects the index sequence set.
When you are initializing the global catalog, you can use the COLD_COPY parameter; for example,
SET_AUTO_START=AUTOCOLD,COLD_COPY. The cold copy creates a reduced copy of the global catalog
data set, which improves the performance of the cold start. The CI splits cease after the first cold start
and the data set will not expand into additional extents. Alternatively, you can reorganize or reinitialize the
data set from time to time.
Note: In Table 1, the Number of bytes per entry column includes the 52-byte key length.

Table 26. Sizes for entries in the global catalog

Installed definition, table entry, or control block Number of bytes per Size in previous release
entry if different
Installed ATOMSERVICE definition 660 bytes
Installed BUNDLE definition 1 300 bytes up to 800
bytes approximately
Installed CONNECTION definition 528 bytes 440 bytes
Installed CORBASERVER definition 1304 bytes 1216 bytes
Installed DB2CONN definition 1548 bytes 1460 bytes
Installed DB2ENTRY definition 332 bytes 244 bytes
Installed DB2TRAN definition 160 bytes 62 bytes
Installed DJAR definition 432 bytes 344 bytes
Installed DOCTEMPLATE definition 284 bytes 196 bytes
Installed ENQMODEL definition 152 bytes 64 bytes
Installed EVENTBINDING and CAPTURESPEC 4000 bytes
definitions 2 approximately
Installed extrapartition queue definition 392 bytes 296 bytes
Installed FILE definition 588 bytes 500 bytes
Installed indirect queue definition 180 bytes 92 bytes
Installed intrapartition queues definition 328 bytes 240 bytes
Installed IPCONN definition 402 bytes 312 bytes
Installed JOURNALMODEL definition 168 bytes 80 bytes

Chapter 5. Setting up a CICS region 111

 Table 26. Sizes for entries in the global catalog (continued)
Installed definition, table entry, or control block Number of bytes per Size in previous release
entry if different
Installed JVM Program definition 168 bytes up to 307 80 bytes up to 219 bytes
bytes
Installed JVMSERVER definition 146 bytes
Installed LIBRARY definition 852 bytes 764 bytes
Installed MQCONN definition 620 bytes
Installed MQINI definition 212 bytes
Installed PARTNER definition 148 bytes 124 bytes
Installed PIPELINE definition 1500 bytes 1412 bytes
Installed PROCESSTYPE definition 148 bytes 60 bytes
Installed PROFILE definition 158 bytes 70 bytes
Installed PROGRAM definition 168 bytes 44 bytes
Installed REQUESTMODEL definition 226 bytes 138 bytes
Installed remote queue definition 172 bytes 84 bytes
Installed TCPIPSERVICE definition 924 bytes 580 bytes
Installed model TERMINAL definitions 3 634 bytes 610 bytes
Installed TRANCLASS definitions 124 bytes 36 bytes
Installed TRANSACTION definitions (without 244 bytes 140 bytes
TPNAME)
Installed TRANSACTION definitions (with TPNAME 388 bytes 204 bytes
or XTPNAME)
Installed TSMODEL definition 236 bytes 148 bytes
Installed TYPETERM definitions 3 634 bytes 610 bytes
Installed VSAM file (or data table) definition 312 bytes 288 bytes
Installed URIMAP definition 1316 bytes 1220 bytes
Installed WEBSERVICE definition 1040 bytes 936 bytes
BDAM file control table entry (FCT) 284 bytes 146 bytes
BDAM data control blocks 156 bytes 132 bytes
VSAM LSR share control blocks 4 1224 bytes 1184 bytes
Data set names (JCL or dynamically allocated) 5 96 bytes 72 bytes
Data set name blocks 194 bytes 170 bytes
Eventprocess status 89 bytes
File control recovery blocks 6 149 bytes 125 bytes
Terminal control table entry (TCT) 1552 bytes 1500 bytes
approximately approximately
Dump table entry 100 bytes 76 bytes
Interval control element (ICE) 120 bytes 96 bytes
Automatic initiator descriptor (AID) 120 bytes 96 bytes

112 CICS TS for z/OS: Configuring CICS

Table 26. Sizes for entries in the global catalog (continued)
Installed definition, table entry, or control block Number of bytes per Size in previous release
entry if different
Deferred work element (DWE) 7 132 bytes 108 bytes
Installed journal 111 bytes 88 bytes
Recovery manager remote names 158 bytes 134 bytes
Transient data destination record 70 bytes 46 bytes
Transient data destination auxiliary record 58 bytes 34 bytes
Loader program definitions 68 bytes 44 bytes
Session TCTTEs 918 bytes 894 bytes
Log streams 112 bytes 88 bytes
Uri virtual hosts 180 bytes 156 bytes

Notes
1. The size of a bundle catalog record depends on the number of parts that are included in the bundle,
the size of the bundle directory, and the length of the scope. The minimum size for a bundle with no
scope and small directory is approximately 300 bytes. However, with a scope and large directory, the
number of bytes can increase to 800. For each bundle part, the size can also range from 300 to 800
bytes.
2. The size of an event binding catalog record depends on the number of capture specifications in
the event binding and the number of filters and capture data items in each capture specification. If
required, you might have multiple catalog records for each event binding.
3. The TYPETERM and model TERMINAL definitions are present if you are using autoinstall. They are
stored directly in the global catalog when the definitions are installed, either by a CEDA transaction, or
as members of a group installed through a group list. For example, if you start CICS with the startup
parameter GRPLIST=DFHLIST, the CICS-supplied TYPETERM and model terminal definitions, defined
in the groups DFHTERM and DFHTYPE, are recorded in the global catalog. Allocate space in your
calculations for all autoinstall resources installed in your CICS region.
4. One for each LSR pool; that is, 8.
5. If you open a VSAM path, you get two of these; for BDAM or VSAM base data sets you get one.
6. You will have these if you use the VSAM RLS SHCDS option NONRLSUPDATEPERMITTED. In this case,
for each data set for which you have specified NONRLSUPDATEPERMITTED, you can have an upper
limit. This limit is the number of different file names through which you access the data set multiplied
by the number of tasks that update the data set. You will typically have only a few, if any, of these
control blocks.
7. The value given is for a DWE chained off an LU6.1 session or an APPC session.

Buffer space sizings

Use the buffer space parameters to define buffers of a specific size in the VSAM definition for the global
catalog data set.
You must ensure that the REGION parameter on your CICS jobs is high enough to cope with the increase
in buffer storage used for the global catalog, because this storage comes out of region storage not EDSA.
By default, VSAM uses a buffer space equal to twice the control interval size of the data component and
the control interval size of the index. In the sample job, this calculation gives a default of 69632 bytes. A
larger minimum buffer size can improve cold start and warm restart times, and might significantly reduce
CICS shutdown times.

Chapter 5. Setting up a CICS region 113

 You can use two parameters to control the buffer size. The BUFFERSPACE parameter defines the
minimum buffer space size that is allowed. The BUFSP parameter defines the maximum buffer size. You
can add either parameter to the sample job to set an appropriate buffer size.
For performance reasons, CICS defines a STRNO (number of strings) value of 32. Based on the sample
job, the minimum value of BUFSP is calculated as follows:

BUFND = (STRNO + 1)
BUFNI = STRNO
BUFSP = 33 * 32768 (BUFND * CI size) + 32 * 1024 (BUFNI * CI size) =
1114112 bytes

Another way to define buffer space for the global catalog data set is to use the AMP parameter on the DD
statement in the CICS startup job stream, which you can use to override the default or defined value. If
the AMP BUFSP specifies fewer bytes than the BUFFERSPACE parameter of the access method services
DEFINE command, the BUFFERSPACE number overrides the BUFSP number.

Reusing the global catalog to perform a cold start

If you need to perform a cold start, do not delete and redefine the global catalog data set.
If you were to delete and redefine the global catalog, CICS would perform an initial start, and all recovery
information for remote systems would be lost. When remote systems reconnected, CICS would inform
them that it had lost any information that they needed to resynchronize their units of work, and messages
would be produced to record the fact, on both the local and the remote systems.
Instead, to specify that the next start should be cold, use the DFHRMUTL utility with the
SET_AUTO_START=AUTOCOLD option. This has the following advantages:
• You do not have to reset the START system initialization parameter from AUTO to COLD, and back again.
• Because sufficient information is preserved on the global catalog and the system log, CICS is able to
recover information for remote systems from the log, and to reply to remote systems in a way that
enables them to resynchronize their units of work.
You can speed up a cold start by using the DFHRMUTL COLD_COPY option to copy only those records that
are needed for the cold start to another catalog data set. If the return code set by DFHRMUTL indicates
that the copy was successful, a subsequent job-step can copy the new (largely empty) catalog back to the
original catalog data set. The performance gain occurs because, at startup, CICS does not have to spend
time deleting all the definitional records from the catalog. This technique will also speed up initial starts,
for the same reason. Figure 21 on page 115 is an example of this technique.
Note: Before you use COLD_COPY, you should be certain that you want to perform a cold or initial start.
As a safeguard, make a backup copy of the original global catalog before you copy the new catalog output
by DFHRMUTL over it. For more information about the use of the global catalog in a cold start of CICS, see
“Controlling start and restart” on page 169.

114 CICS TS for z/OS: Configuring CICS

 //RMUTL EXEC PGM=DFHRMUTL,REGION=1M
//STEPLIB DD DSNAME=CICSTS61.CICS.SDFHLOAD,DISP=SHR
//SYSPRINT DD SYSOUT=A
//DFHGCD DD DSNAME=CICSTS61.CICS.applid.DFHGCD,DISP=OLD
//NEWGCD DD DSNAME=CICSTS61.CICS.applid.COPY.DFHGCD,DISP=OLD
//SYSIN DD *
SET_AUTO_START=AUTOCOLD,COLD_COPY
/*
// IF (RMUTL.RC<16) THEN
//* Steps to be performed if RMUTL was a success
//COPY EXEC PGM=IDCAMS
//SYSPRINT DD SYSOUT=A
//DFHGCD DD DSNAME=CICSTS61.CICS.applid.DFHGCD,DISP=OLD
//NEWGCD DD DSNAME=CICSTS61.CICS.applid.COPY.DFHGCD,DISP=OLD
//SYSIN DD *
REPRO INFILE(NEWGCD) OUTFILE(DFHGCD) REUSE
/*
//* End of steps to be performed if RMUTL was a success
// ENDIF

Figure 21. DFHRMUTL example—setting the global catalog for a cold start

Defining the local catalog

The local catalog is a VSAM key-sequenced data set (KSDS). The local catalog is not shared by any other
CICS region.

Before you begin

Unlike the global catalog, which must be defined with enough space to cope with any increase in installed
resource definitions, the size of the local catalog is relatively static. The following section describes the
information held on the local catalog.
CICS Transaction Server for z/OS is divided into functional areas (or components) known as domains.
These domains communicate through a central component, the CICS kernel, and their initialization and
termination is controlled by the domain manager. All the domains require an individual domain parameter
record, and these are stored in the local catalog. The CICS domains use the local catalog to save some
of their information between CICS runs and to preserve this information across a cold start. For further
guidance information about what is written to the local catalog, and about how CICS uses the local
catalog for startup and restart, see “Controlling start and restart” on page 169.

About this task

You can define and initialize the CICS local catalog in two ways. You can use the sample job as described
below or you can use the CICS-supplied job, DFHDEFDS, to create a local catalog for an active CICS
region.
Edit the sample job as follows:

Procedure
1. If you are defining local catalogs for multiple CICS regions, identify the clusters uniquely by making the
specific APPLID of each CICS one of the data set qualifiers.
For example, you might use the following names for the clusters of active and alternate CICS regions,
where DBDCCIC1 and DBDCCIC2 are the specific APPLIDs:

DEFINE CLUSTER -
(NAME( CICSTS61.CICS.DBDCCIC1.DFHLCD)

DEFINE CLUSTER -
(NAME( CICSTS61.CICS.DBDCCIC2.DFHLCD)

Chapter 5. Setting up a CICS region 115

 2. Space for 200 records is probably adequate for the local catalog. However, specify space for secondary
extents as a contingency allowance.
3. The local catalog records are small in comparison with the global catalog. Use the record sizes shown,
which, with the number of records specified, ensure enough space for the data set.
4. Define the data definition statement for the local catalog as follows:

//DFHLCD DD DSN=CICSTS61.CICS.applid.DFHLCD,DISP=OLD

Example

//LOCAT JOB accounting info,,CLASS=A

//DEFLCD EXEC PGM=IDCAMS
//SYSPRINT DD SYSOUT=*
//SYSIN DD *
DEFINE CLUSTER -
(NAME( CICSTS61.CICS.applid.DFHLCD) - 1
INDEXED -
RECORDS( 200 10 ) - 2
FREESPACE(10 10) -
SHAREOPTIONS( 2 ) -
REUSE -
VOLUMES( volid )) -
DATA -
(NAME( CICSTS61.CICS.applid.DFHLCD.DATA ) -
KEYS( 52 0 ) -
RECORDSIZE( 70 2041 ) - 3
CONTROLINTERVALSIZE( 2048 )) -
INDEX (NAME( CICSTS61.CICS.applid.DFHLCD.INDEX ) )
/*
//*****************************************************************
//INITLCD EXEC PGM=DFHCCUTL
//*
//* INITIALIZE THE CICS LOCAL CATALOG
//*
//STEPLIB DD DSN=CICSTS61.CICS.SDFHLOAD,DISP=SHR
//SYSPRINT DD SYSOUT=*
//SYSUDUMP DD SYSOUT=*
//DFHLCD DD DSN=CICSTS61.CICS.applid.DFHLCD,DISP=SHR
//*
//

Figure 22. Sample job to define and initialize the local catalog

Initializing the local catalog

Before the local catalog can be used to start a CICS region, you must initialize it with data from the
domain manager parameter records and three loader domain parameter records.

About this task

The domain manager parameter records contain information relating to the CICS domains and are
identified by their domain names. See Table 27 on page 117 for a complete list.
The three loader domain parameter records contain information relating to these resources:
• DFHDMP, the CSD file manager
• DFHEITSP, the RDO language definition table
• DFHPUP, the CSD parameter utility program

Procedure
1. To enable you to initialize the local catalog correctly, with all the records in the correct sequence, run
the CICS-supplied utility DFHCCUTL immediately after you have defined the VSAM data set.
This utility writes the necessary data to the local catalog from the CICS domains.

116 CICS TS for z/OS: Configuring CICS

2. The loader domain also writes a program definition record for each CICS nucleus module. The number
of records varies depending on the level of function that you have included in your CICS region. Allow
for at least 75 of these loader-domain records.
3. Use the CICS-supplied utility DFHSMUTL to add records to the local catalog to enable the CICS
self-tuning mechanism for storage manager domain subpools.

Example

Table 27. List of domain names

Domain name in catalog Description
DFHAP Application domain
DFHAS Asynchronous services domain
DFHBA Business application manager
DFHCC CICS local catalog domain
DFHDD Directory manager domain
DFHDH Document handler domain
DFHDM Domain manager domain
DFHDP Debugging profiles domain
DFHDS Dispatcher domain
DFHDU Dump domain
DFHEJ Enterprise Java domain
DFHEM Event manager domain
DFHEP Event processing domain
DFHGC CICS global catalog domain
DFHIE ECI over TCP/IP domain
DFHKE Kernel domain
DFHLD Loader domain
DFHLG Log manager domain
DFHLM Lock manager domain
DFHME Message domain
DFHML XML services domain
DFHMN Monitoring domain
DFHNQ Enqueue manager domain
DFHOT Object transaction domain
DFHPA System initialization parameter domain
DFHPG Program manager domain
DFHPI Pipeline manager domain
DFHPT Partner management domain
DFHRL Resource life-cycle domain

Chapter 5. Setting up a CICS region 117

 Table 27. List of domain names (continued)
Domain name in catalog Description
DFHRM Recovery manager domain
DFHRS Region status domain
DFHRX RRMS domain
DFHRZ Request streams domain
DFHSH Scheduler services domain
DFHSJ JVM domain
DFHSM Storage manager domain
DFHSO Sockets domain
DFHST Statistics domain
DFHTI Timer domain
DFHTR Trace domain
DFHTS Temporary storage domain
DFHUS User domain
DFHWB Web domain
DFHW2 Web 2.0 domain
DFHXM Transaction manager domain
DFHXS Security domain

Domains that write to the local catalog

Some domains write a domain status record to the local catalog, for use in a warm or emergency restart.
For example, in the case of the dump domain, the status record indicates which transaction dump data
set was in use during the previous run.
The domains that write to the local catalog are:
• Dispatcher domain
• Dump domain
• Loader domain
• Message domain
• Parameter manager domain
• Storage manager domain
• Transient data

Setting up auxiliary trace data sets

CICS trace entries can be directed to auxiliary trace data sets, which are CICS-owned BSAM data sets. If
you want to use auxiliary trace, you must create the data sets before you start CICS; you cannot define
them while CICS is running.

About this task

You can choose from a number of destinations for trace data that is handled by the CICS trace domain.
Any combination of these destinations can be active at any time:

118 CICS TS for z/OS: Configuring CICS

• The internal trace table, in main storage in the CICS address space.
• The auxiliary trace data sets, defined as BSAM data sets on disk or tape.
• The z/OS generalized trace facility (GTF) data sets.
• The JVM server trace file in z/OS Unix System Services
Auxiliary trace has the following advantages:
• You can collect large amounts of trace data, if you initially define large enough trace data sets. For
example, you might want to do this to trace system activity over a long period of time, perhaps to solve
an unpredictable storage violation problem.
• You can use the auxiliary switch (AUXTRSW system initialization parameter) to specify that auxiliary
trace data cannot be overwritten by subsequent trace data. With the internal trace table, when the
end of the table is reached subsequent entries overwrite those at the start of the table, and diagnostic
information is lost.
• Auxiliary trace can be particularly useful if you are using CICS trace during startup, because of the high
volume of trace entries that are written when CICS is initializing.
Auxiliary trace is held in one or two sequential data sets, on either disk or tape. The DD names of the
auxiliary trace data sets are defined by CICS as DFHAUXT and DFHBUXT. If you define a single data set
only, its DD name must be DFHAUXT.
Trace entries are of variable length, but the physical record length (block size) of the data that is written
to the auxiliary trace data sets is fixed at 4096 bytes. As a rough guide, each block contains an average
of 40 trace entries, although the actual number of trace entries depends on the processing that is being
performed.

Procedure
1. Decide whether to define one or two sequential data sets for auxiliary trace.
If you want to specify automatic switching for your auxiliary trace data sets, you must define two data
sets. If you specify automatic switching for auxiliary trace, but define only one data set, auxiliary trace
is stopped and a system dump is generated.
2. Decide on the location of the auxiliary trace data sets.
If you use tape for recording auxiliary trace output, use unlabeled tape. Using standard-labeled tape,
whether on a single tape drive or on two tape drives, stops you processing the contents of any of the
volumes with the DFHTU740 utility until after the CICS step has been completed. If you have to use
standard-labeled tape, make sure all the output produced in the CICS run fits on the one (or two)
volumes mounted.
You cannot catalog data sets that are on unlabeled tapes.
3. If you are defining auxiliary trace data sets on disk, allocate and catalog the auxiliary trace data sets
before you start CICS. Use one of the following methods:
• Use the sample job shown in “Sample job to allocate auxiliary trace data sets” on page 120 to
allocate and catalog the data sets.
• Use the supplied job DFHDEFDS to create the auxiliary trace data sets. For more information, see
Creating the CICS data sets in Installing.
4. If you are using tape for the auxiliary data sets, and you want auxiliary trace to be active from CICS
startup, assign tape units and mount the tapes before you start CICS.
If you plan to start auxiliary trace by entering a command when CICS is running, ensure the tapes are
mounted before you enter the command.
5. Optional: If you want to encrypt the data sets, see “Encrypting data sets” on page 143.
6. Define the auxiliary trace data sets to CICS in the startup job stream.
a) For auxiliary trace data sets on disk, use the following DD statements:

//DFHAUXT DD DSN=CICSTS61.CICS.applid.DFHAUXT,DCB=BUFNO=n,DISP=SHR
//DFHBUXT DD DSN=CICSTS61.CICS.applid.DFHBUXT,DCB=BUFNO=n,DISP=SHR

Chapter 5. Setting up a CICS region 119

 If you specify BUFNO greater than 1, you can reduce the I/O overhead involved in writing auxiliary
trace records. A value between 4 and 10 can greatly reduce the I/O overhead when running with
auxiliary trace on. DISP=SHR allows the simultaneous processing of a data set by the DFHTU740
offline utility program after a switch to the other data set has taken place.
b) For auxiliary trace data sets on unlabeled tapes, use the following sample DD statements:

//DFHAUXT DD DSN=CICSTS61.CICS.applid.DFHAUXT,UNIT=3400,VOL=SER=volid,
// DISP=(NEW,KEEP),LABEL=(,NL)
//DFHBUXT DD DSN=CICSTS61.CICS.applid.DFHBUXT,UNIT=3400,VOL=SER=volid,
// DISP=(NEW,KEEP),LABEL=(,NL)

Sample job to allocate auxiliary trace data sets

If you are defining auxiliary trace data sets on disk, you can use this sample job to allocate and catalog
them before you run CICS.

Procedure
1. The DCB subparameters shown in this sample job specify the required DCB attributes for the CICS
auxiliary trace data sets. As an alternative to this job, you can specify (NEW,CATLG) on the DD
statements in the CICS startup job stream, omit the DCB parameter, and let CICS open the data
sets with the same default values.
2. Change the space allocations in this sample job stream to suit your installation's needs.

Example

//DEFTRCDS JOB (accounting information),

// MSGCLASS=A,MSGLEVEL=(1,1),
// CLASS=A,NOTIFY=userid
//*********************************************************************
//* Create auxiliary trace data sets
//*********************************************************************
//ALLOCDS EXEC PGM=IEFBR14
//DFHAUXT DD DSN=CICSTS61.CICS.applid.DFHAUXT,UNIT=3380,VOL=SER=volid,
// DISP=(NEW,CATLG),DCB=(BLKSIZE=4096,RECFM=F,LRECL=4096), 1
// SPACE=(CYL,(25)) 2
//DFHBUXT DD DSN=CICSTS61.CICS.applid.DFHBUXT,UNIT=3380,VOL=SER=volid,
// DISP=(NEW,CATLG),DCB=(BLKSIZE=4096,RECFM=F,LRECL=4096), 1
// SPACE=(CYL,(25)) 2
//

Figure 23. Sample job to define auxiliary trace data sets on disk

Defining dump data sets

CICS uses the dump data sets for recording dumps as a consequence of a failure that is detected when
CICS is running, or upon explicit request.

About this task

You must define two types of dump data sets:
1. MVS system dump data sets, for recording system dumps that CICS requests using the MVS SDUMP
macro.
2. CICS transaction dump data sets, for recording transaction dumps.

Procedure
1. For the initial installation of CICS, define a dump data set of between 5 and 10 MB.
When normal operations begin, you can adjust this to suit your own installation's requirements.

120 CICS TS for z/OS: Configuring CICS

2. Change the SDUMP options using the MVS CHNGDUMP command.
You must thoroughly review your use of the CHNGDUMP command when setting up your CICS region.
a) Use the MERGE function to ensure that the areas selected by CICS to dump are included in the MVS
dump data set output.
b) Use the ADD option to replace any options specified by CICS when issuing the SDUMP.
This can result in partial dumps being taken to the MVS dump data set.
3. Define the CICS transaction dump data sets, as described in “Defining the transaction dump data sets”
on page 123.

Results
When you start CICS for the first time, CICS uses system default values for the dump table options, and
continues to use the system default values until you modify them.
CICS has a dump table facility that enables you to control dumps. The dump table lets you:
• Specify the type of dump, or dumps, you want CICS to record.
• Suppress dumping entirely.
• Specify the maximum number of dumps to be taken during a CICS run.
• Control whether CICS is to terminate as a result of a failure that results in a dump.

System dumps
CICS produces a system dump using the MVS SDUMP macro.
The MVS SDUMP dump results from CICS issuing an MVS SDUMP macro. It includes almost the entire
CICS address space, that is, the MVS nucleus and other common areas, as well as the CICS private
storage areas. The SDUMP dump is written to an MVS dump data set, which you can process using the
interactive problem control system (IPCS), either online under TSO, or by submitting a batch job to print
it. IPCS is described in the z/OS MVS IPCS User's Guide. For information about the IPCS VERBEXIT
parameters that you use with the CICS IPCS dump exit, see Using IPCS to format and analyze CICS
dumps: Overview. For information about the SDUMP macro, and the associated MVS dump data sets, see
z/OS MVS Diagnosis: Tools and Service Aids.
The SDUMP macros issued by CICS normally contain the QUIESCE=NO parameter. They might not if
the SDUMP is taken because of an abend in CICS SVC code or when altering MRO control blocks. This
parameter allows the MVS system to remain dispatchable while the SDUMP is being taken, thus reducing
the impact on the system. However if QUIESCE=YES is specified as an MVS system default it will override
that specified by CICS. These defaults can be altered by using the MVS CHNGDUMP command.

Suppressing system dumps that precede ASRx abends

The MVS system dump data sets can become full with unwanted SDUMPs that precede ASRA, ASRB, and
ASRD abends (after message DFHAP0001 or DFHSR0001).
If CICS storage protection is active, you can suppress the system dumps caused by errors in application
programs (after message DFHSR0001), while retaining the dumps caused by errors in CICS code (after
message DFHAP0001). To do this, use a CEMT SET SYDUMPCODE ADD command, or an EXEC CICS
SET SYSDUMPCODE ADD command to suppress system dumps for system dump code SR0001. For
example:

CEMT SET SYDUMPCODE(SR0001) ADD NOSYSDUMP

Alternatively, define a system DUMPCODE resource using CEDA and install it. For example:

CEDA DEFINE DUMPCODE(SR0001) TYPE(SYSTEM) DUMPACTION(NONE) GROUP(DCODES)

CEDA INSTALL GROUP(DCODES)

Chapter 5. Setting up a CICS region 121

 CICS uses dump code SR0001 if an application program was executing in user-key at the time of the
program check or MVS abend. This is possible only if storage protection is active. If the program was
executing in CICS-key, dump code AP0001 is used instead.
When storage protection is not active, you can suppress system dumps for system dump code AP0001.
However, this suppresses dumps for errors in both application and CICS programs. The XDUREQ global
user exit can be used to distinguish between AP0001 situations in application and CICS programs.
For more information about the storage protection facilities available in CICS, see How you can protect
CICS storage.
If you want SDUMPs for one of these transaction abends but not the other, select the one you want by
using either a CEMT TRDUMPCODE or an EXEC CICS TRANDUMPCODE command. This specifies, on an
entry in the dump table, that SDUMPs are taken for ASRA, ASRB, or ASRD abends. For example, to add an
entry to the dump table and ensure that SDUMPs are taken for ASRB abends.specify the following:

CEMT SET TRDUMPCODE(ASRB) ADD SYSDUMP

However, in this case, the SDUMPs are taken at a later point than SDUMPs usually taken for system dump
code AP0001 and SR0001.
For information about the DFHAP0001 and DFHSR0001 messages, see CICS messages and Finding
where a program check occurred.
Related information
DUMPCODE resources

The CICS transaction dump data sets

You can optionally specify DCB parameters for dump data sets if you want to copy the data sets to tape or
disk. When CICS opens the dump data set, it issues an MVS DEVTYPE macro. This macro returns the track
size for direct access devices, or 32760 for magnetic tape.
The maximum block size used for a transaction dump is the lesser of the values returned from the
DEVTYPE macro and 4096. As this usually results in a block size of 4096 (because devices generally have
a track size greater than this), CICS writes multiple blocks per track. After writing each block, MVS returns
the amount of space remaining on the current track. If the space remaining is 256 bytes or more, then the
size of the next block written is the lesser of the values returned by MVS and 4096.
If the space remaining is less than 256 bytes, the next block is written to the next track.
There are four global user exits that you can use with the transaction dump data sets:
1. XDUCLSE, after the dump domain has closed a transaction dump data set
2. XDUREQ, before the dump domain takes a transaction dump
3. XDUREQC, after the dump domain takes a transaction dump
4. XDUOUT, before the dump domain writes a record to the transaction dump data set

Printing the transaction dump data sets

With two data sets, you can print transaction dumps from one data set while CICS is running.

About this task

You can either print transaction dumps explicitly or use automatic switching.

Procedure
• To print transaction dumps explicitly:
a) Use the command CEMT SET DUMP SWITCH to switch the data sets.
CICS closes the current data set after any transaction dump being recorded has been completed,
and opens the other data set.

122 CICS TS for z/OS: Configuring CICS

 b) Print the completed data set using the DFHDU740 dump utility program.
For information about the DFHDU740 dump utility program, see Dump utilities (DFHDUnnn and
DFHPDnnn).
• To print transaction dumps using automatic switching:
a) Use the command CEMT SET DUMP AUTO to cause automatic switching when the current data set
becomes full.
This command permits one switch only.
When a transaction dump data set is full, CICS closes the data set and issues console messages as
follows:

DFHDU0303I applid Transaction Dump Data set data set closed.

DFHDU0304I applid Transaction Dump Data set data set opened.
DFHDU0305I applid Transaction Dump Data set switched to ddname.

b) If you specified DISP=SHR for the dump data set, you can print the completed data set with the
DFHDU740 utility program and then reissue the CEMT SET DUMP AUTO command.
This again switches data sets automatically (once only) when the current data set is full.

Defining the transaction dump data sets

You must define the data sets in the CICS startup job stream with the DD names DFHDMPA and
DFHDMPB. If you define a single data set only, its DD name must be DFHDMPA.

About this task

You can either define DFHDMPA and DFHDMPB as temporary data sets for each CICS run, or allocate and
catalog the data sets in advance to reuse them repeatedly.

Procedure
1. Code the DUMPDS system initialization parameter to specify which transaction dump data set is to be
opened during CICS initialization.
If you specify DUMPDS=AUTO, CICS opens, on a warm or emergency start, the data set that was not in
use when CICS was last terminated. This lets you restart CICS after an abnormal termination without
waiting to print the dump data set that was in use at termination.
2. Optional: If you want to encrypt the data sets, see “Encrypting data sets” on page 143.
3. Allocate the dump data sets. You can do this in one of two ways:
• Use the sample data definition statements to allocate and catalog dump data sets on disk.
• Use the CICS-supplied job DFHDEFDS to allocate and catalog the dump data sets.
If you select to use the sample job, edit the statements as follows:
a) Change the space allocations in this sample job stream to suit your own installation's needs.
b) If you are running CICS with XRF, allocate different data sets for the alternate.
c) If you use tape for recording dump output, use unlabeled tape.
Standard-labeled tape, whether on a single tape drive or on two tape drives, stops you processing
the contents of any of the volumes with the DFHDU740 utility until after the CICS step has been
completed. If you want to use standard-labeled tape, make sure that all the output produced in the
CICS run fits on the one or two volumes mounted.
You cannot catalog dump data sets defined on unlabeled tapes. Your data set definitions must be in
the CICS startup job stream each time CICS is run.

Chapter 5. Setting up a CICS region 123

 //DFHDMPA DD DSN=CICSTS61.CICS.applid.DFHDMPA,DISP=(NEW,CATLG),
// UNIT=3380,VOL=SER=volid,SPACE=(CYL,(25))
//DFHDMPB DD DSN=CICSTS61.CICS.applid.DFHDMPB,DISP=(NEW,CATLG),
// UNIT=3380,VOL=SER=volid,SPACE=(CYL,(25))

Figure 24. Sample job control statements for defining disk dump data sets

4. Optional: To copy dump data sets to tape or disk, specify DCB parameters on the DD statements when
allocating and cataloging the dump data sets, as follows:

// DCB=(RECFM=VB,BLKSIZE=4096,LRECL=4092)

5. Include the following DD statements in the CICS startup job stream.

• If you have cataloged the transaction dump data sets, add the following DD statement:

//DFHDMPA DD DSN=CICSTS61.CICS.applid.DFHDMPA,DISP=SHR
//DFHDMPB DD DSN=CICSTS61.CICS.applid.DFHDMPB,DISP=SHR

DISP=SHR enables each data set, if held on disk, to be processed by the DFHDU740 offline utility
after the switch to the other data set has taken place.
• If you have put the transaction dump data sets on unlabeled tapes, add the following DD
statement:

//DFHDMPA DD DSN=CICSTS61.CICS.applid.DFHDMPA,UNIT=3400,VOL=SER=volid1,
// DISP=(NEW,KEEP),LABEL=(,NL)
//DFHDMPB DD DSN=CICSTS61.CICS.applid.DFHDMPB,UNIT=3400,VOL=SER=volid2,
// DISP=(NEW,KEEP),LABEL=(,NL)

Results
CICS always attempts to open at least one transaction dump data set during initialization. If you do not
include a DD statement for at least one transaction dump data set in your CICS job, initialization continues
after the DFHDU0306 message is sent to the console.
When CICS opens the dump data set, it issues an MVS DEVTYPE macro. This returns the track size for
direct access devices, or 32760 for magnetic tape. The maximum block size used for a transaction dump
is the lesser of the values returned from the DEVTYPE macro and 4096. As this usually results in a block
size of 4096 (because devices generally have a track size greater than this), CICS writes multiple blocks
per track. After writing each block, MVS returns the amount of space remaining on the current track. If the
space remaining is 256 bytes or more, then the size of the next block written is the lesser of the values
returned by MVS and 4096.
If the space remaining is less than 256 bytes, the next block is written to the next track.
There are four global user exits that you can use with the transaction dump data sets:
1. XDUCLSE, after the dump domain has closed a transaction dump data set
2. XDUREQ, before the dump domain takes a transaction dump
3. XDUREQC, after the dump domain takes a transaction dump
4. XDUOUT, before the dump domain writes a record to the transaction dump data set

124 CICS TS for z/OS: Configuring CICS

Defining user files
This section tells you how to define user files and how to access VSAM data sets, BDAM data sets, data
tables, and coupling facility data tables.

About this task

CICS application programs process files, which, to CICS, are logical views of a physical data set or data
table. For data tables, the file provides a view of the data table, which resides either in data space
storage or in a coupling facility structure. Except in the case of coupling facility data tables, for which an
underlying physical data set is optional, a data table is also associated with a source data set from which
the table is loaded. For non-data-table files, the file provides a view of the data set.
A file is identified to CICS by a file name of up to eight characters, and there can be many files defined to
CICS that refer to the same physical data set or data table. This has the following effect, depending on the
type of object the file is defining:
• For non data table files, if more than one file refers to the same data set, each file refers to the same
physical data.
• For user-maintained data tables, if more than one file refers to the same data set, each file represents a
view of a unique data table.
• For CICS-maintained data tables, if more than one file refers to the same data set, only one can be
defined as a CMT. The other files access data from the CMT created by the CMT file definition.
• For coupling facility data tables, if more than one file refers to the same data set, each file represents
a view of a unique coupling facility data table in a CFDT pool (unless each file specifies the same
tablename and poolname, in which case each they provide a separate view of the same table.
A data set, identified by a data set name (DSNAME) of up to 44 characters, is a collection of data held on
disk. CICS file control processes only VSAM or BDAM data. Any data sets referred to by CICS files must
be created and cataloged, so that they are known to MVS before any CICS job refers to them. Also, the
data sets are usually initialized by being preloaded with at least some data before being used by CICS
transactions.
You can use CICS-maintained or user-maintained data tables to improve the performance and function
of CICS regions using files that refer to VSAM data sets. Data tables offer a method of constructing,
maintaining, and gaining rapid access to data records contained in tables held in data space storage,
above 16MB. Each data table is associated with a VSAM KSDS, known as its source data set. For more
information about data tables, see “Defining data sets with multiple extents and volumes” on page 87.
You can use coupling facility data tables to share data across a sysplex, using the CICS file control API,
subject to some restrictions, such as a 16 byte key length.
You can use RLS access mode to share VSAM data sets between CICS application-owning regions
throughout a sysplex. See “VSAM record-level sharing (RLS)” on page 128 for further information.
Each of the above methods is discussed under the following topics:
• “VSAM data sets” on page 126
• “BDAM data sets” on page 130
• “Defining data sets to CICS” on page 131
• “Opening VSAM or BDAM files” on page 132
• “Closing VSAM or BDAM files” on page 133
• “CICS data tables” on page 134
• “Coupling facility data tables” on page 219.

Chapter 5. Setting up a CICS region 125

 VSAM data sets
You create a VSAM data set by running the Access Methods Services (AMS) utility program IDCAMS in a
batch job, or by using the TSO DEFINE command in a TSO session.

About this task

The DEFINE command specifies to VSAM and MVS the VSAM attributes and characteristics of your data
set. You can also use it to identify the catalog in which your data set is to be defined.
If required, you can load the data set with data, again using IDCAMS. You use the AMS REPRO command
to copy data from an existing data set into the newly created one.
You can also load an empty VSAM data set from a CICS transaction. You do this by defining the data set
to CICS (by allocating the data set to a CICS file), and then writing data to the data set, regardless of its
empty state. See “Loading empty VSAM data sets” on page 126.
When you create a data set, you can define a data set name of up to 44 characters. If you choose not to
define a name, VSAM assigns the name for you. This name, known as the data set name (or DSNAME),
uniquely identifies the data set to your MVS system.
You can define VSAM data sets accessed by user files under CICS file control as eligible to be backed up
while CICS is currently updating these data sets. For more information about backing up VSAM files open
for update, see “Defining backup while open (BWO) for VSAM files” on page 89.

VSAM bases and paths

You store data in data sets, and retrieve data from data sets, using application programs that reference
the data at the record level.
Depending on the type of data set, you can identify a record for retrieval by its key (a unique value in a
predefined field in the record), by its relative byte address, or by its relative record number.
Access to records through these methods of primary identification is known as access through the base.
Sometimes you may need to identify and access your records by a secondary or alternate key. With VSAM,
you can build one or more alternate indexes over a single base data set, so that you do not need to keep
multiple copies of the same information organized in different ways for different applications. Using this
method, you create an alternate index path (or paths), that links the alternate index (or indexes) with the
base. You can then use the alternate key to access the records by specifying the path as the data set to be
accessed, that is by allocating the path data set to a CICS file.
When you create a path you give it a name of up to 44 characters, in the same way as a base data set.
A CICS application program does not need to know whether it is accessing your data through a path or a
base; except that it may be necessary to allow for duplicate keys if the alternate index was specified to
have non-unique keys.

Loading empty VSAM data sets

You can load data into an empty VSAM data set in two ways.
• Running the AMS utility program, IDCAMS
• Writing records to the data set by using CICS transactions
Although VSAM imposes some restrictions during initial data set load processing, when the data set is
said to be in load mode, these do not affect CICS transactions. For files opened in non-RLS mode, CICS
file control "hides" load mode processing from your application programs. For files opened in RLS mode
against an empty data set, load mode processing is hidden from CICS by VSAM, and all VSAM requests are
allowed.

Using IDCAMS to load empty VSAM data sets

If you have a large amount of data to load into a new data set, run the AMS utility program IDCAMS as a
batch job, using the REPRO command to copy data from an existing data set to the empty data set.

126 CICS TS for z/OS: Configuring CICS

When you have loaded the data set with IDCAMS, it can be used by CICS in the normal way.
A data set in VSAM load mode cannot have alternate indexes in the upgrade set. If you want to create and
load a data set with alternate indexes, you must use AMS, or some other suitable batch program, to load
the data set and invoke BLDINDEX to create the alternate indexes.

Using CICS applications to load empty VSAM data sets

If the amount of data to be loaded is small, and if there is no upgrade set, you can load an empty data set
by using standard CICS file WRITE requests.
When the first write, or series of writes (mass insert), to the file is completed, CICS closes the file and
leaves it closed and enabled, so that it will be reopened for normal processing when next referenced. If
you attempt to read from a file in load mode, CICS returns a NOTFOUND condition.
Considerations for using a concurrency(required) program to load empty VSAM data sets
When you use a concurrency(required) program to load empty VSAM data sets, be aware that
excessive TCB switching from open TCB to QR TCB and back again will occur if the program uses
a series of WRITE MASSINSERT requests.
Why TCB switching occurs
To open a file in load mode, CICS cannot use local shared resources (LSR), so the file must be
opened in non-shared resources (NSR) mode. NSR requires processing to happen on a QR TCB
rather than an open TCB.
A program that is defined as CONCURRENCY(REQUIRED) always runs on an open TCB. If the file is
to be loaded from a concurrency(required) program, TCB switching from open TCB to QR TCB and
back again will occur for each write operation while the file is in load mode.
How to avoid TCB switching
It is not recommended to load the file by using a series of WRITE MASSINSERT requests, because
the file will remain in load mode until the series of WRITE MASSINSERT requests has completed.
You should use a single WRITE without mass insert.
A single WRITE without mass insert, when completed, will cause CICS to close and reopen the file,
thereby exiting VSAM load mode. If the file is normally accessed in LSR mode, when the file is out
of load mode, CICS will resume accessing the file in LSR mode, and TCB switching will be avoided
for further write operations to the file.

Reuse of data sets

If you define a data set with the AMS REUSE attribute, it can also be emptied of data during a CICS run.
This allows it to be used as a work file. When the status of a file referencing the data set is CLOSED and
DISABLED (or UNENABLED), you can use the SET EMPTY command, either from an application program
using the EXEC CICS command-level interface, or from a main terminal using the main terminal CEMT
command. This command sets an indicator in the installed file definition so that when the file is next
opened, the VSAM high-used relative byte address (RBA) is set to zero, and the contents of the data set
are effectively cleared.
If you define a data set to VSAM with the average and maximum record lengths equal, and define a file to
CICS with fixed length records to reference that data set, the size of the records written to the data set
must be of the defined size. For example, if a record in a data set has been read for update, you get errors
when rewriting the record if, for example, you:
• Defined the record sizes to VSAM as 250 bytes, with the parameter RECORDSIZE(250 250)
• Defined the file to CICS with the parameter RECFORM=FIXED
• Loaded the data set with records that are only 200 bytes long

Chapter 5. Setting up a CICS region 127

 VSAM record-level sharing (RLS)
Record-level sharing (RLS) is an access mode for VSAM data sets supported by DFSMS 1.3 and later
releases. RLS enables VSAM data to be shared, with full update capability, between many applications
running in many CICS regions.
With RLS, CICS regions that share VSAM data sets can reside in one or more MVS images within an MVS
parallel sysplex. This concept, in a parallel sysplex with VSAM RLS supporting a CICSplex, is illustrated in
Figure 25 on page 128.

MVS1 MVS2 MVS3

VTAM VTAM VTAM

TOR 1 TOR 2 TOR 3

AOR AOR AOR AOR AOR AOR AOR AOR AOR

MVS MVS MVS

SMSVSAM SMSVSAM SMSVSAM
logger logger logger

Coupling
facility

VSAM MVS
data sets logger
data sets

Figure 25. Diagram illustrating a Parallel Sysplex with RLS

Without RLS support (RLS=NO system initialization parameter), more than one CICS region cannot open
the same VSAM data set concurrently using a non-RLS mode (such as LSR or NSR). These access modes
mean that to share VSAM data between CICS regions, you must either:
• Use shared data tables,
or
• Allocate the VSAM data sets to one CICS region, a file-owning region (FOR), and function ship file
requests from the applications to the FOR using either MRO, APPC, or IPIC connections.
With RLS support, multiple CICS regions can open the same data set concurrently. To use RLS:
• You need a level of DFSMS that supports RLS, and RLS=YES specified as a CICS system initialization
parameter
• The CICS regions must all run in the same parallel sysplex
• There must be one SMSVSAM server started in each MVS image
• Specify RLSACCESS(YES) in the CICS file resource definition to provide full update capability for data
sets accessed by multiple CICS regions.

128 CICS TS for z/OS: Configuring CICS

You can specify RLS access for all files supported by CICS file control, except for the following:
• Key range data sets are not supported.
• VSAM clusters defined with the IMBED attribute are not supported. However, you can remove the
IMBED attribute from the cluster definition without loss of function. Use the access method services
REPRO function to move the data into a new cluster defined without the IMBED attribute. You can then
use RLS access mode for files that reference the new cluster. (IMBED is a performance option that is
generally unnecessary with modern caching disk controllers.)
• Opening individual components of a VSAM cluster (which is not supported by CICS for any mode of
access).
• Temporary data sets are not supported.
• Key-sequence data sets (KSDS) in relative byte address (RBA) mode (OPTCDE=ADR) are not supported.
Application programs that specify the RBA keyword on file control API commands for a KSDS opened
RLS mode receive an INVREQ with RESP2 51 exception condition.
• Direct open of alternate index data is not supported in RLS access mode. However, path access to data
is supported.
• VSAM catalogs and VVDS data sets are not supported.
Although you can specify RLS access for entry-sequenced data sets (ESDS), it is not recommended,
because it can have a negative effect on the performance and availability of the data set when you are
adding records. For more information, see VSAM and file control: improving performance .
For details of all the steps necessary to set up support for VSAM RLS, see Setting up VSAM RLS support.

Mixed-mode operation for VSAM data sets

Generally, you choose which data sets need to be shared and updated in RLS mode by multiple CICS
regions. When you have made this choice, you are recommended always to update these data sets in RLS
mode.
However, with RLS support, data sets can be shared in mixed access mode, between CICS regions
and batch jobs. Mixed access mode means that a data set is open in RLS mode and a non-RLS mode
concurrently by different users.
Although data sets can be open in different modes at different times, all the data sets within a VSAM
sphere normally should be opened in the same mode. (A sphere is the collection of all the components—
the base, index, any alternate indexes and alternate index paths—associated with a given VSAM base data
set.) However, VSAM does permit mixed-mode operations on a sphere by different applications, subject to
some CICS restrictions. In the following discussion about mixed-mode operation, references to a data set
refer to any component of the sphere.

SMSVSAM operation of mixed mode

SMSVSAM permits a data set to be opened in different modes concurrently, by different applications in a
sysplex.
There are some sharing rules and limitations:
• A data set that is open in RLS mode to a number of CICS regions can also be opened in non-RLS mode
for read-only operations
• Read-integrity is not guaranteed for the non-RLS application
• A data set to be opened concurrently in RLS and non-RLS mode must be defined with cross-region
SHAREOPTIONS(2)

CICS restrictions
You can open a file in RLS mode or non-RLS mode in a CICS region when the referenced data set is
already open in a different mode by another user (CICS region or batch job).
However, in addition to the above VSAM rules, a data set cannot be open in different modes concurrently
within the same CICS region. This ensures that CICS maintains a consistent view of data within the CICS
region.

Chapter 5. Setting up a CICS region 129

 The CICS restrictions operate as follows:
• If a data set is opened in RLS mode in a CICS region, it cannot be opened, through another file, in
non-RLS mode in the same CICS region.
A non-RLS mode file open request fails with message DFHFC0512 if CICS already has the data set open
in RLS mode.
• If a data set is opened in non-RLS mode in a CICS region, it cannot be opened, through another file, in
RLS mode in the same CICS region.
An RLS mode file open request fails with message DFHFC0511 if CICS already has the data set open in
non-RLS mode.
• If a CICS region has unresolved recovery work for a data set it cannot be opened, through another file, in
non-RLS mode in the same CICS region.
A non-RLS mode file open request fails with message DFHFC0513 if CICS has outstanding recovery
work for the data set.

BDAM data sets

CICS supports access to keyed and nonkeyed BDAM data sets. To construct and format such data sets,
you use BDAM.

About this task

A BDAM data set must contain data before it is used in a CICS run. You load the data set using a batch
program that writes the records sequentially. An example of this is Figure 26 on page 130.

//BDAM EXEC PGM=IEBGENER

//SYSPRINT DD SYSOUT=A
//SYSIN DD DUMMY
//SYSPRINT DD SYSOUT=A
//SYSUT1 DD DSN=CICSTS61.bdam.user.file.init,DISP=SHR 1
//SYSUT2 DD DSN=CICSTS61.bdam.user.file,DISP=(,CATLG), 2
// SPACE=(TRK,(1,1)),UNIT=3380,VOL=SER=volid,
// DCB=(RECFM=F,LRECL=80,BLKSIZE=80,DSORG=DA) 3

Figure 26. Sample JCL to create and load a BDAM data set

Notes:
1. The input data set (called SYSUT1 in this example) should be physically sequential and have attributes
that are compatible with the DCB for the output data set (called SYSUT2 in this example; see note 3).
In particular:
• If RECFM=F is specified for the output data set, then the input data set must have RECFM=F or
RECFM=FB specified, and the value of LRECL should be the same for both data sets.
• If RECFM=V or RECFM=U is specified for the output data set, then the value of LRECL for the input
data set must not be greater than that specified on the output data set.
2. When you create a data set, you define a data set name (DSNAME) of up to 44 characters. This data set
name uniquely identifies the data set to your MVS system.
3. The DCB parameter for the output data set should specify the following:
• DSORG=DA. This identifies the data set as a BDAM data set.
• BLKSIZE. This should have the same value as specified for BLKSIZE in the associated file control
table (FCT) entry.
• RECFM. This can take the values F (fixed), V (variable), or U (undefined), and correspond to the first
subparameter of the RECFORM operand in the associated FCT entry.
These options are specified on the DFHFCT TYPE=FILE definition. File control table (FCT) gives
information about defining files using DFHFCT TYPE=FILE options. A data set created by this example,

130 CICS TS for z/OS: Configuring CICS

and loaded with data such as that shown in Figure 27 on page 131, would have the following attributes
specified in its FCT entry:
• BLKSIZE=80
• LRECL=40
• RECFORM=(FIXED BLOCKED)
• KEYLEN=8

RECORD 1 DATA FOR RECORD 1 RECORD 2 DATA FOR RECORD 2

RECORD 3 DATA FOR RECORD 3 RECORD 4 DATA FOR RECORD 4

RECORD98 DATA FOR RECORD 98 RECORD99 DATA FOR RECORD 99

1----+----2----+----3----+----4----+----5----+----6----+----7----+----8

Figure 27. Sample data for loading a BDAM data set

Defining data sets to CICS

Before CICS can open a file referencing a data set, there must be an installed file definition for that file.
The definition can be installed either from the CICS system definition file (CSD) or from a file control table
(FCT).
You can define VSAM files only through the CSD, and BDAM files only through the FCT. Definitions other
than for BDAM in the FCT will not be installed, but they may remain in the FCT.
A file is identified by its file name, which you specify when you define the file. CICS uses this name when
an application program, or the main terminal operator using the CEMT command, refers to the associated
data set.
Each file must also be associated with its data set in one of the following ways:
• Using JCL in the startup job stream
• Using the DSNAME and DISP parameters of the FILE resource definitions
• Using dynamic allocation with CEMT
• Using dynamic allocation with an application program
The number of VSAM files that can be allocated to a CICS address space is about 10000. However, VSAM
maintains a table entry for each file opened, and table space limits the number of files opened to about
8189.
Note: CICS will only deallocate files which were initially allocated by CICS. If a file was allocated by a
third-party application, using a CEMT CLOSE command will close the file, but not deallocate it.

Using JCL
You can define the data set in a DD statement in the JCL of the CICS startup job. The DD name must be
the same as the file name that refers to the data set.
For example, the following DD statements would correspond to file definitions for the file names VSAM1A
and BDAMFILE:

//VSAM1A DD DSN=CICSTS61.CICS.vsam.user.file,DISP=OLD
//BDAMFILE DD DSN=CICSTS61.CICS.bdam.user.file,DISP=SHR

If you define a data set to CICS in this way it is allocated to CICS by MVS at CICS startup time, and it
normally remains allocated until the end of the CICS run. Also, the physical data set is associated with the
installed file definition throughout the CICS run.
If you use JCL to define a user data set to the CICS system, the DD statement must not include the
FREE=CLOSE operand.

Chapter 5. Setting up a CICS region 131

 If you use the RLS=CR or RLS=NRI option on your DD statement, it will be ignored. The access mode for
the file (RLS or non-RLS) and any read integrity options must be specified in the file definition.

Using the DSNAME and DISP file resource definition parameters

You can define a data set to CICS by specifying the DSNAME and DISP parameters when you define the
file.
You can specify these parameters either using RDO for files, or by using DFHFCT macros (BDAM files
only). If you want to use DSNAME and DISP from the file definition, do not provide a DD statement for the
data set in the startup job stream, because the attributes in the DD statement will override those in the
CICS resource definition.
If you use DSNAME and DISP on the file definition, CICS allocates the data set dynamically at the time the
first file referencing that data set is opened; that is, immediately before the file is opened. At this stage,
CICS associates the file name with the data set.
When CICS applications subsequently refer to the data set, they do so by specifying the file name. When
you define a data set in this way, it is automatically deallocated by CICS when the file is closed.
For information about using the DSNAME and DISP parameters, see System recovery table (SRT) and File
control table (FCT).

Dynamic allocation using CEMT

You can set the data set name dynamically in an installed file definition by using the main terminal CEMT
command.

CEMT SET FILE(filename) DSNAME(datasetname) SHARE|OLD

When you use this command, CICS allocates the data set as part of OPEN processing as described above.
The data set is automatically deallocated when the last file entry associated with the data set is closed.
Before you can dynamically allocate a file using the CEMT command, the file status must be CLOSED, and
also be DISABLED or UNENABLED.
This method of defining the data set to CICS allows a file definition to be associated with different data
sets at different times. Alternatively, you can close the file and deallocate the data set and then reallocate
and open the same file with a different DISP setting. For example, you could do this to enable the physical
data set to be shared with a batch program, which reads the data set.
For information about the CEMT SET command, see CEMT SET commands.

Other forms of dynamic allocation

You are recommended to use only those methods of dynamic allocation that are part of CICS file control,
and are described in the previous sections.
Do not use the CICS dynamic allocation transaction, ADYN, which invokes the sample CICS utility
program, DFH99, for dynamic allocation of VSAM and BDAM user files. Use of the ADYN transaction may
conflict with the dynamic allocation methods used within CICS file control, and can give unpredictable
results.
Restrict the use of the ADYN transaction to those data sets not managed by CICS file control, such as
auxiliary trace and CICS transaction dump data sets.

Opening VSAM or BDAM files

Before your application programs can access a file, CICS must first have opened the file using the
installed file definition referenced by your program.

About this task

Part of the process of opening a file is to ensure that the control blocks and buffers required for
subsequent processing of the data set are available. If you defined the file to use VSAM local shared
resources (LSR), these control blocks and buffers are allocated from the pool of resources. If the LSR pool

132 CICS TS for z/OS: Configuring CICS

does not exist at the time of the opening, CICS calculates the requirements and builds the pool before the
file is opened. If you defined the file to use nonshared resources, the required control blocks and buffers
are allocated by VSAM as part of OPEN processing. If you defined the file to be opened in RLS access
mode, VSAM allocates control blocks and buffers in the SMSVSAM address space and associated data set.
RLS mode also uses a CF cache structure, to which the data set is bound when the first file that references
it is opened.
You may need to access a single VSAM data set either through the base or through one or more paths
for different access requests. In this case, CICS uses a separate file definition (that is, a separate file), for
each of the access routes. Each file definition must be associated with the corresponding data set name
(a path is also assigned a data set name). Each file must be open before CICS can access the file using
the attributes in its installed file definition. This is because opening one file for a data set that is logically
defined as two or more files with different attributes does not mean that the data set is then available for
all access routes.
CICS permits more than one file definition to be associated with the same physical data set name. For
example, you may want to define files with different processing attributes that refer to the same data set.
CICS allows or denies access to data in a file, depending on whether the state of the file is ENABLED. An
enabled file that is closed is opened by CICS automatically when the first access request is made. The file
remains open until an explicit CLOSE request or until the end of the CICS job.
You can also open a file explicitly by using either of the commands

CEMT SET FILE(filename) OPEN

EXEC CICS SET FILE(filename) OPEN

When you use one of these commands, the file is opened irrespective of whether its state is enabled or
disabled. You may choose this method to avoid the overhead associated with opening the file being borne
by the first transaction to access the file.
You can also specify that you want CICS to open a file immediately after initialization by specifying the
RDO OPENTIME(STARTUP) attribute (or the FILSTAT=OPENED parameter in the DFHFCT macro). If you
specify that you want CICS to open the file after startup, and if the file status is ENABLED or DISABLED,
the CICS file utility transaction CSFU opens the file. (CSFU does not open files that are: defined
as UNENABLED the status of these remains CLOSED, UNENABLED.) CSFU is initiated automatically,
immediately before the completion of CICS initialization. CICS opens each file with a separate OPEN
request. If a user transaction starts while CSFU is still running, it can reference and open a file that CSFU
has not yet opened; it does not have to wait for CSFU to finish.

Opening and closing files from a batch job

You can open and close CICS files from a z/OS batch job in a number of ways.

About this task

• You can use the CICSPlex SM application programming interface (API), which provides you with access
to CICS system management information and allows you to invoke CICSPlex SM services from an
external program. The API can be called from programs running in z/OS Batch. See An overview of the
CICSPlex SM API and CICSPlex SM API commands.
• You can use the Java Batch 1.0 API support that is provided by the Liberty batch-1.0 feature to run new
Java batch applications. Java Batch 1.0 provides an API for batch applications and a runtime to run and
manage batch jobs. See Liberty features.
• You can use the external CICS interface (EXCI). Programs running in MVS can issue an EXEC CICS LINK
PROGRAM command or use the CALL interface to call CICS application programs running in a CICS
region. MVS programs can take CICS resources offline, and back online, at the start and end of an MVS
job, for example to open and close CICS files. See EXCI concepts and EXCI sample programs.

Closing VSAM or BDAM files

You can close files with a CLOSE command, with or without the FORCE option.

Chapter 5. Setting up a CICS region 133

 Closing files normally
You can close a file explicitly using the SET FILE(filename) CLOSED command.
The file is closed immediately if there are no transactions using the file at the time of the request. The
file is also disabled as part of the close operation, this form of disablement showing as UNENABLED on a
CEMT display. This prevents subsequent requests to access the file implicitly reopening it.
A transaction in the process of executing a VSAM or BDAM request, or executing a series of connected
requests, is said to be a user of the file. For example, a transaction is a user during the execution of the
following requests:

READ UPDATE ---- REWRITE

STARTBROWSE ---- READNEXT ... ---- ENDBROWSE

A transaction is also a user of a file if it completes a recoverable change to the file but has not yet reached
a sync point or the end of the transaction.
If there are users at the time of the close request, the file is not closed immediately. CICS waits for all
current users to complete their use of the file. The file is placed in an UNENABLING state to deny access
to new users but allow existing users to complete their use of the file. When the last user has finished
with the file, the file is closed and UNENABLED. If a transaction has made recoverable changes to a file
and then suffered a failure during syncpoint, the unit of work is shunted, and the file can be closed at this
point.

Closing files using the FORCE option

You can close a file using the FORCE option on the SET FILE(filename) command.
Any transactions that are current users of the file are abended and allowed to back out any changes as
necessary, and the file is then closed and UNENABLED. A file UNENABLED as a result of a CLOSE request
can be reenabled subsequently if an explicit OPEN request is made.
Closing a file using the FORCE option causes tasks of any current users of the file to be terminated
immediately by the CICS task FORCEPURGE mechanism. Data integrity is not guaranteed with this
mechanism. In some extreme cases (for example, if an error occurs during backout processing), CICS
might terminate abnormally. For this reason, closing files using the FORCE option should be restricted to
exceptional circumstances.

CICS data tables

You can define a data table by using the CEDA DEFINE FILE command.

About this task

When a table is opened, CICS builds it by extracting data from the tables corresponding source VSAM data
set and loading it into an MVS data space owned by the CICS data tables server region, and constructing
an index in CICS virtual storage above the 16 MB line. The commands used to access these tables are the
file control commands of the CICS application programming interface (API).
For programming information about the file control commands of the application programming interface,
see the CICS command summary. CICS supports two types of data table:
• CICS-maintained data tables that CICS keeps in synchronization with their source data sets.
• User-maintained data tables that are detached from their source data sets after being loaded.
For either type, a global user exit can be used to select which records from the source data set should be
included in the data table.
For programming interface information about global user exits, see Global user exit programs. For further
information about CICS data tables, see Shared data tables overview.

134 CICS TS for z/OS: Configuring CICS

 Opening data tables
A data table must be opened before its entries can be accessed by an application.
You can open a data table explicitly with an OPEN request, implicitly on first reference, or by the CSFU
task just after startup, if OPENTIME(STARTUP) was specified in the file definition. When a data table is
opened, CICS reads the complete source data set, copying the records into a data space and building an
index.
A global user exit can be invoked for each record copied into the data table. This copying is subject to any
selection criteria of the user-written exit.
The commands used to open data tables, and the rules and options concerning their implicit and
immediate opening are the same as those described in “Opening VSAM or BDAM files” on page 132.

Loading data tables

A data table is built automatically when it is opened.
An index is constructed to provide rapid access to the records. See Shared data tables overview for more
details.
For a user-maintained data table, the ACB for the source data set is closed when loading has been
completed. The data set is deallocated if it was originally dynamically allocated and there are no other
ACBs open for it.

Closing data tables

You can close a data table with a CLOSE command, with or without the FORCE option.
When a data table is closed, the data space storage that was used to hold the records and the address
space storage used for the associated index, is freed as part of the CLOSE operation.
The commands used to close data tables, and the rules concerning current users of a data table are the
same as those described in “Closing VSAM or BDAM files” on page 133.

Defining the CDBM GROUP command data set

The CDBM GROUP command data set, DFHDBFK, is a VSAM key-sequenced data set (KSDS). The CDBM
transaction uses this data set to provide a repository for stored groups of DBCTL commands.

Procedure
1. Create the DFHDBFK data set by running an IDCAMS job, an example of which is shown in Figure 28 on
page 136.

Chapter 5. Setting up a CICS region 135

 //DBFKJOB JOB 'accounting information',name,MSGCLASS=A
//*
//DBFKDEF EXEC PGM=IDCAMS,REGION=1M
//SYSPRINT DD SYSOUT=*
//AMSDUMP DD SYSOUT=*
//SYSIN DD *
DELETE CICSTS61.CICS.DFHDBFK
SET MAXCC=0
DEFINE CLUSTER ( -
NAME( CICSTS61.CICS.DFHDBFK ) -
INDEXED -
RECORDS(100 20) -
KEYS(22,0) -
RECORDSIZE(1428 1428) -
) -
INDEX ( -
NAME( CICSTS61.CICS.DFHDBFK.INDEX ) -
CONTROLINTERVALSIZE(512) -
) -
DATA ( -
NAME( CICSTS61.CICS.DFHDBFK.DATA ) -
CONTROLINTERVALSIZE(2048) -
)
/*
//* The next two job steps are optional.
//*
//DBFKINID EXEC PGM=IDCAMS,REGION=1M
//SYSPRINT DD SYSOUT=*
//SYSIN DD *
DELETE CICSTS61.CICS.DBFKINIT
/*
//DBFKINIF EXEC PGM=IEBGENER
//SYSPRINT DD SYSOUT=A
//SYSUT2 DD DSN=CICSTS61.CICS.DBFKINIT,DISP=(NEW,CATLG),
// UNIT=dbfkunit,VOL=SER=dbfkvol,SPACE=(TRK,(1,1)),
// DCB=(RECFM=FB,LRECL=40,BLKSIZE=6160)

//* Place the definitions you want to load after SYSUT1. For example:
//SYSUT1 DD *
SAMPLE DIS DB DI21PART
SAMPLE STA DB DI21PART
SAMPLE STO DB DI21PART
/*
//SYSIN DD *
GENERATE MAXFLDS=1
RECORD FIELD=(40)
/*
//DBFKLOAD EXEC PGM=IDCAMS,REGION=1M
//SYSPRINT DD SYSOUT=*
//AMSDUMP DD SYSOUT=*
//SYS01 DD DSN=CICSTS61.CICS.DBFKINIT,DISP=SHR
//DFHDBFK DD DSN=CICSTS61.CICS.DFHDBKF,DISP=SHR
//SYSIN DD *
REPRO INFILE (SYS01) -
OUTFILE (DFHDBFK)
/*
//

where dbfkvol is the volume on which the DFHDBFK data set is to be created and dbfkunit is the unit
type for that volume.
Figure 28. Sample job to define and initialize the DFHDBFK data set

2. Use this job to load IMS commands or use the maintenance function within the CDBM transaction.

Job control statements for CICS execution

If you define the DFHDBFK data set using the sample JCL shown in Figure 28 on page 136, the data
definition statement for the CICS execution is as follows:

//DFHDBFK DD DSN=CICSTS61.CICS.DFHDBFK,DISP=SHR

136 CICS TS for z/OS: Configuring CICS

 Alternatively, if you want to use dynamic file allocation, add the fully-qualified data set name to the
DFHDBFK file resource definition.
Related information
Record layout in the CDBM GROUP command file

Defining the CMAC messages data set

The CMAC messages data set is a VSAM key-sequenced data set (KSDS) called DFHCMACD. The CMAC
transaction uses DFHCMACD to provide online descriptions of the CICS messages and codes.

About this task

To use the CICS messages facility in your CICS region, you must create your own CSD group lists to
include the DFHCMAC group for the CICS messages facility and any other groups of resources that your
CICS region requires. Specify your new group lists on the GRPLIST system initialization parameter when
you start up your CICS region.
Specify the DFHCMAC group of resources for the CICS messages facility only in those CICS regions that
use the facility; for example, on terminal-owning regions, but perhaps not on data-owning regions.

Procedure
1. Create the DFHCMACD data set and load it with the CICS-supplied messages and codes data.
You can create the data set in one of the following ways:
• Run the DFHCMACI job. For more information about the DFHCMACI job, see Creating the CICS data
sets in Installing.
• Use the supplied sample job, as described in “Job control statements to define and load the
messages data set” on page 137.
2. If you use the supplied sample job to define the messages data set, add the following data definition
statement to your CICS startup JCL:

//DFHCMACD DD DSN=CICSTS61.CICS.DFHCMACD,DISP=SHR

3. Create a CICS resource definition for the CMAC file.

The supplied definition for the CMAC file and other resources required by the CICS messages facility
are in the CSD group DFHCMAC. The CICS IVPs have a DD statement for the CMAC file, but for dynamic
allocation you must copy the supplied resource definition for the CMAC file and add the DSNAME
option.
4. Create your own CSD group list to include the supplied group list DFHLIST, the DFHCMAC group for the
CICS messages facility, and any other groups of resources that your CICS region needs.
Specify this group list in the GRPLIST system initialization parameter when you start your CICS region.

Results
The CICS messages are available from the CMAC transaction.

Job control statements to define and load the messages data set
Before its first use, the DFHCMACD data set should be defined and loaded as a VSAM key sequenced data
set (KSDS). The following sample job shows you how to do this.

About this task

Note that cmacvol is the volume on which the DFHCMACD data set is to be created.

Chapter 5. Setting up a CICS region 137

 //CMACJOB JOB 'accounting information',name,MSGCLASS=A
//CMACDEF EXEC PGM=IDCAMS,REGION=1M
//SYSPRINT DD SYSOUT=*
//AMSDUMP DD SYSOUT=*
//SYSIN DD *
DELETE CICSTS61.CICS.DFHCMACD
SET MAXCC=0
DEFINE CLUSTER ( -
NAME( CICSTS61.CICS.DFHCMACD ) -
CYL(2,1) -
KEYS( 9 0 ) -
INDEXED -
VOLUME ( cmacvol) -
RECORDSIZE( 8192 30646 ) -
FREESPACE( 5 5 ) -
SHAREOPTIONS( 2 ) -
) -
INDEX ( -
NAME( CICSTS61.CICS.DFHCMACD.INDEX ) -
) -
DATA ( -
NAME( CICSTS61.CICS.DFHCMACD.DATA ) -
)
/*
//CMACLOAD EXEC PGM=IDCAMS,REGION=1M
//SYSPRINT DD SYSOUT=*
//AMSDUMP DD SYSOUT=*
//SYS01 DD DSN=CICSTS61.CICS.SDFHMSGS(DFHCMACD),DISP=SHR
//DFHCMACD DD DSN=CICSTS61.CICS.DFHCMACD,DISP=SHR
//SYSIN DD *
REPRO INFILE (SYS01) -
OUTFILE (DFHCMACD)
/*
//

Figure 29. Sample job to define and initialize the CMAC data set

Defining the WS-AT data set

The data set you require to enable CICS Web Services Atomic Transaction (WS-AT) support is the WS-AT
directory data set, DFHPIDIR. The WS-AT directory data set, DFHPIDIR, is a file containing a mapping
between contexts and tasks.
The WS-AT directory and object store data set, DFHPIDIR, is a CICS file-control-managed data set that
requires a resource definition in the CICS system definition file (CSD). Because the data set is shared
across CICS regions that together provide a WS-AT capable web service provider, you can define it to CICS
file control as one of the following formats:
• An ordinary VSAM data set, to be opened in either LSR or NSR mode; that is, with the LSRPOOLNUM
attribute specified with a pool number, or as NONE. In this case, the data set has to be owned by one
CICS region (a file-owning region) to which the other regions can function ship file requests.
A definition for the data set is supplied in the CICS CSD group DFHPIVS, with the LSRPOOLNUM default
value of 1. Make a copy of this CSD group, rename it, and edit the file definitions to add details such
as the data set name for dynamic allocation, a specific LSRPOOLNUM to match an explicit LSRPOOL
resource definition, or the remote system attributes.
• A VSAM data set to be opened in RLS mode. A definition for the data set is supplied in the CICS CSD
group DFHPIVR with RLSACCESS(YES) specified. Make a copy of this CSD group, rename it, and edit the
file definitions to add attributes such as the data set name for dynamic allocation.
• A coupling facility data table. A definition for the data set is supplied in the CICS CSD group DFHPICF.
Make a copy of this CSD group, rename it, and edit the file definitions to modify the CFDT details, such
as the pool name and the table name.
Figure 30 on page 139 shows the statements used to define DFHPIDIR.

138 CICS TS for z/OS: Configuring CICS

 DEFINE CLUSTER(NAME(@[email protected]@[email protected])-
INDEXED-
LOG(UNDO)- 1
CYL(2 1)-
VOLUME(@dsvol@)- 2
RECORDSIZE( 1017 1017 )- 3
KEYS( 16 0 )-
FREESPACE ( 10 10 )-
SHAREOPTIONS( 2 3 ))-
DATA (NAME(@[email protected]@[email protected]) -
CONTROLINTERVALSIZE(1024)) -
INDEX (NAME(@[email protected]@[email protected]))

Figure 30. Example JCL to define the WS-AT directory data set

1. Define the backout recovery attribute in the ICF catalog, so that the data set defined by this job can be
used in either RLS or non-RLS mode. For data sets used in RLS mode, you define the recovery attributes
in the ICF catalog, and those attributes override any that are specified in the CICS file resource definition.
You must define the PI directory data set as recoverable.
2. Specify your own value for the VOLUME parameter, or remove it completely if you are using SMS-
managed storage.
3. The default record size is 1 KB, which can be changed.
Note: You do not change any of the definition values shown in Figure 30 on page 139. DFHPIDIR contains
only one record, its control record. However, ensure that you specify runtime settings (such as BUFND,
BUFNI, and STRNO subparameters on the AMP parameter on the DD statement, or the equivalent in the
CICS file resource definition) to support the maximum number of requests that might be active at any one
time.

Setting up the debugging profiles data sets

Application programmers who use certain debugging tools with CICS create debugging profiles which are
stored in a VSAM key sequenced data set with an alternative index.
To set up the debugging profiles data sets:
1. Use the IDCAMS utility to create and initialize the VSAM data sets.
2. Create file definitions for the data sets. The data sets can be shared by more than one CICS region, and
can be defined as:
VSAM RLS files
Define VSAM RLS files when you want to share profiles between several CICS regions in the same
sysplex
VSAM non-RLS files
Define VSAM non-RLS files when you do not need to share profiles between regions in the same
sysplex
Remote files
Define remote files when you want to use profiles that are stored in a region that is connected
using MRO or ISC.

Creating the debugging profiles data sets

You can create the debugging profiles data sets in one of two ways. You can either use an IDCAMS utility
to create and initialize the data sets or you can run the CICS-supplied job, DFHDEFDS, to create the data
sets for a CICS region
Use the IDCAMS utility to create and initialize the following VSAM data sets:
DFHDPFMB
The debugging profiles base data set.

Chapter 5. Setting up a CICS region 139

 DFHDPFMP
The debugging profiles path data set.
DFHDPFMX
The debugging profiles alternate index data set.
Use the JCL in Figure 31 on page 140.

//DPFM JOB 'accounting information',name,MSGCLASS=A

//DEFINE EXEC PGM=IDCAMS
//SYSPRINT DD SYSOUT=A
//SYSIN DD *
DELETE CICSTS61.CICS.DFHDPFMB

DEFINE CLUSTER (RECORDS(1000)-

NAME (CICSTS61.CICS.DFHDPFMB) -
SHAREOPTIONS(2 3) -
LOG(NONE) -
VOLUME (&DSVOL) -
IXD) -
DATA -
(RECSZ(2560,2560) -
CONTROLINTERVALSIZE(3072) -
NAME (CICSTS61.CICS.DFHDPFMB.DATA) -
KEYS(17 1) -
FREESPACE(10 10) -
BUFFERSPACE (8192)) -
INDEX -
(NAME(CICSTS61.CICS.DFHDPFMB.INDX))
//INITDP EXEC PGM=IDCAMS,REGION=512K
//SYSPRINT DD SYSOUT=A
//SYSIN DD *
REPRO INFILE ( SYS01 ) -
OUTDATASET(CICSTS61.CICS.DFHDPFMB)
//SYS01 DD *
DDUMMY RECORD !! DO NOT ALTER !!
EEXAMPLE RECORD REMOVE THIS LINE IF SAMPLES NOT REQUIRED
/*
//DEFALT EXEC PGM=IDCAMS
//SYSPRINT DD SYSOUT=A
//SYSIN DD *
DEFINE ALTERNATEINDEX -
( NAME(CICSTS61.CICS.DFHDPFMX ) -
RECORDS(1000) -
VOLUME(&DSVOL) -
KEYS(12 20) -
RELATE(CICSTS61.CICS.DFHDPFMB) -
RECORDSIZE(200 200) -
SHAREOPTIONS(2 3) -
UPGRADE ) -
DATA -
( NAME(CICSTS61.CICS.DFHDPFMX.DATA) ) -
INDEX -
( NAME(CICSTS61.CICS.DFHDPFMX.INDEX) )
DEFINE PATH -
( NAME(CICSTS61.CICS.DFHDPFMP) -
PATHENTRY(CICSTS61.CICS.DFHDPFMX) )
/*
//BLDDP EXEC PGM=IDCAMS
//BDSET1 DD DSN=CICSTS61.CICS.DFHDPFMB,DISP=SHR
//ADSET1 DD DSN=CICSTS61.CICS.DFHDPFMX,DISP=SHR
//SYSPRINT DD SYSOUT=A
//SYSIN DD *
BLDINDEX -
INFILE(BDSET1) -
OUTFILE(ADSET1)
/*
//*

Figure 31. Sample JCL to create the debugging profiles data sets

The sample JCL creates data sets which contain example debugging profiles. To create empty data sets,
remove the following line:

EEXAMPLE RECORD REMOVE THIS LINE IF SAMPLES NOT REQUIRED

140 CICS TS for z/OS: Configuring CICS

Defining the debugging profiles data sets as VSAM RLS files
Define VSAM RLS files when you want to share profiles between several CICS regions in the same sysplex.
CICS provides the following sample definitions:

*-------------------------------------------------------------------*
* Define base file for Debugging Profiles (RLS) *
*-------------------------------------------------------------------*
DEFINE FILE(DFHDPFMB) GROUP(DFHDPVR)
DESCRIPTION(Debugging Profiles base file - VSAM RLS)
RLSACCESS(YES) TABLE(NO)
LSRPOOLNUM(1) DSNSHARING(ALLREQS)
STRINGS(5) STATUS(ENABLED)
OPENTIME(FIRSTREF) DISPOSITION(SHARE)
DATABUFFERS(3) INDEXBUFFERS(2)
RECORDFORMAT(V) READINTEG(REPEATABLE)
ADD(YES) BROWSE(NO)
DELETE(YES) READ(YES)
UPDATE(YES) JOURNAL(NO)
JNLREAD(NONE) JNLSYNCREAD(NO)
JNLUPDATE(NO) JNLADD(NONE)
JNLSYNCWRITE(YES) RECOVERY(NONE)
FWDRECOVLOG(NO) BACKUPTYPE(STATIC)
*-------------------------------------------------------------------*
* Define path file for Debugging Profiles (RLS) *
*-------------------------------------------------------------------*
DEFINE FILE(DFHDPFMP) GROUP(DFHDPVR)
DESCRIPTION(Debugging Profiles path file - VSAM RLS)
RLSACCESS(YES) TABLE(NO)
LSRPOOLNUM(1) DSNSHARING(ALLREQS)
STRINGS(10) STATUS(ENABLED)
OPENTIME(FIRSTREF) DISPOSITION(SHARE)
DATABUFFERS(11) INDEXBUFFERS(10)
RECORDFORMAT(V) READINTEG(REPEATABLE)
ADD(YES) BROWSE(NO)
DELETE(YES) READ(YES)
UPDATE(YES) JOURNAL(NO)
JNLREAD(NONE) JNLSYNCREAD(NO)
JNLUPDATE(NO) JNLADD(NONE)
JNLSYNCWRITE(YES) RECOVERY(NONE)
FWDRECOVLOG(NO) BACKUPTYPE(STATIC)

Figure 32. Resource definitions for debugging profiles data sets defined as VSAM RLS files

1. Copy the sample FILE definitions for DFHDPFMB and DFHDPFMP resource to another group.
2. Add the DSNAME attribute:
• For DFHDPFMB, specify the name of the debugging profiles base data set. For example:

DSNAME ==> CICSTS61.CICS.DFHDPFMB

• For DFHDPFMP, specify the name of the debugging profiles base data set. For example:

DSNAME ==> CICSTS61.CICS.DFHDPFMP

Alternatively, you can omit the DSNAME attribute, and include a DD card in the CICS startup JCL. For
example:

//DFHDPFMB DD DSN=CICSTS61.CICS.DFHDPFMB,DISP=SHR
//DFHDPFMP DD DSN=CICSTS61.CICS.DFHDPFMP,DISP=SHR

3. Install the FILE definitions.

Defining the debugging profiles data sets as VSAM non-RLS files

Define VSAM non-RLS files when you do not need to share profiles between regions in the same sysplex.
CICS provides the following sample definitions:

Chapter 5. Setting up a CICS region 141

 *-------------------------------------------------------------------*
* Define base file for Debugging Profiles (non-RLS) *
*-------------------------------------------------------------------*
DEFINE FILE(DFHDPFMB) GROUP(DFHDPVSL)
DESCRIPTION(Debugging Profiles Base File)
RLSACCESS(NO) LSRPOOLNUM(1)
READINTEG(UNCOMMITTED) DSNSHARING(ALLREQS)
STRINGS(10) STATUS(ENABLED)
OPENTIME(FIRSTREF) DISPOSITION(SHARE)
DATABUFFERS(11) INDEXBUFFERS(10)
TABLE(NO) RECORDFORMAT(V)
ADD(YES) BROWSE(YES)
DELETE(YES) READ(YES)
UPDATE(YES) JOURNAL(NO)
JNLREAD(NONE) JNLSYNCREAD(NO)
JNLUPDATE(NO) JNLADD(NONE)
JNLSYNCWRITE(NO) RECOVERY(NONE)
FWDRECOVLOG(NO) BACKUPTYPE(STATIC)
*-------------------------------------------------------------------*
* Define path file for Debugging Profiles (non-RLS) *
*-------------------------------------------------------------------*
DEFINE FILE(DFHDPFMP) GROUP(DFHDPVSL)
DESCRIPTION(Debugging Profiles Path File)
RLSACCESS(NO) LSRPOOLNUM(1)
READINTEG(UNCOMMITTED) DSNSHARING(ALLREQS)
STRINGS(10) STATUS(ENABLED)
OPENTIME(FIRSTREF) DISPOSITION(SHARE)
DATABUFFERS(11) INDEXBUFFERS(10)
TABLE(NO) RECORDFORMAT(V)
ADD(YES) BROWSE(YES)
DELETE(YES) READ(YES)
UPDATE(YES) JOURNAL(NO)
JNLREAD(NONE) JNLSYNCREAD(NO)
JNLUPDATE(NO) JNLADD(NONE)
JNLSYNCWRITE(NO) RECOVERY(NONE)
FWDRECOVLOG(NO) BACKUPTYPE(STATIC)

Figure 33. Resource definitions for debugging profiles data sets defined as VSAM non-RLS files

1. Copy the sample FILE definitions for DFHDPFMB and DFHDPFMP resource to another group.
2. Add the DSNAME attribute:
• For DFHDPFMB, specify the name of the debugging profiles base data set. For example:

DSNAME ==> CICSTS61.CICS.DFHDPFMB

• For DFHDPFMP, specify the name of the debugging profiles base data set. For example:

DSNAME ==> CICSTS61.CICS.DFHDPFMP

Alternatively, you can omit the DSNAME attribute, and include a DD card in the CICS startup JCL. For
example:

//DFHDPFMB DD DSN=CICSTS61.CICS.DFHDPFMB,DISP=SHR
//DFHDPFMP DD DSN=CICSTS61.CICS.DFHDPFMP,DISP=SHR

3. Install the FILE definitions.

Defining the debugging profiles data sets as remote files

Define remote files when you want to use profiles that are stored in a region that is connected using MRO
or ISC.
CICS provides the following sample definitions:

142 CICS TS for z/OS: Configuring CICS

 *-------------------------------------------------------------------*
* Define base file for Debugging Profiles (non-RLS remote) *
*-------------------------------------------------------------------*
DEFINE FILE(DFHDPFMB) GROUP(DFHDPVSR)
DESCRIPTION(Debugging Profile Base File - VSAM Remote)
REMOTESYSTEM(CICA) REMOTENAME(DFHDPFMB)
*-------------------------------------------------------------------*
* Define path file for Debugging Profiles (non-RLS remote) *
*-------------------------------------------------------------------*
DEFINE FILE(DFHDPFMP) GROUP(DFHDPVSR)
DESCRIPTION(Debugging Profile Path File - VSAM Remote)
REMOTESYSTEM(CICA) REMOTENAME(DFHDPFMP)

Figure 34. Resource definitions for debugging profiles data sets defined as remote files

1. Copy the sample FILE definitions for DFHDPFMB and DFHDPFMP resource to another group.
2. Add the DSNAME attribute:
• For DFHDPFMB, specify the name of the debugging profiles base data set. For example:

DSNAME ==> CICSTS61.CICS.DFHDPFMB

• For DFHDPFMP, specify the name of the debugging profiles path data set. For example:

DSNAME ==> CICSTS61.CICS.DFHDPFMP

Alternatively, you can omit the DSNAME attribute, and include a DD card in the CICS startup JCL. For
example:

//DFHDPFMB DD DSN=CICSTS61.CICS.DFHDPFMB,DISP=SHR
//DFHDPFMP DD DSN=CICSTS61.CICS.DFHDPFMP,DISP=SHR

3. Install the FILE definitions.

If you define remote files, you will need to install corresponding file definitions in the remote system.

Encrypting data sets

You can encrypt any data sets that you use with CICS for which z/OS data set encryption is supported.

Before you begin

Check the data set types for which z/OS data set encryption is supported, and CICS system data sets that
are appropriate candidates for encryption. See Planning for data set encryption.
Ensure that you have set up the key labels to use. See Managing Cryptographic Keys Using the Key
Generator Utility Program in z/OS Cryptographic Services ICSF Administrator's Guide.
Ensure that the RACF tasks to provide authority to create encrypted data sets and to provide access to the
key labels are complete, including the following tasks:
• Grant read access to STGADMIN.SMS.ALLOW.DATASET.ENCRYPT CL(FACILITY) to allow users to
create encrypted data sets.
• Grant read access to the key labels. When a user attempts to access an encrypted data set, RACF
checks that the user has authority to use the key label before any encryption occurs by checking access
to the relevant profiles in the CSFKEYS and CSFSERV classes. For more information about these classes,
see Data Set Encryption in z/OS DFSMS Using Data Sets .

Procedure
1. Either create an encryption key and associated key label, or use an existing key label.
2. Allocate a new instance of the data set, specifying extended format and the data set key label.
a) Specify extended format in one of the following ways:

Chapter 5. Setting up a CICS region 143

 • Through the SMS data class, using the DSNTYPE=EXT parameter and R (required) or P (preferred)
subparameters. Specify R to ensure that the data set is allocated in extended format.
• Use the DSNTYPE parameter on the JCL DD statement, with values of EXTREQ (required) or
EXTPREF (preferred). Specify EXTREQ to ensure that the data set is allocated in extended format.
The DSNTYPE specified on a JCL DD statement overrides any DSNTYPE set for the data class.
When you specify extended format, ensure that you only specify the extended addressing attribute
if you also require that option for your data set.
b) Specify the data set key label in one of the following ways:
• On a RACF data set profile by using the DATAKEY keyword.
• Through JCL by using the DSKEYLBL keyword.
• On dynamic allocation through the DALDKYL text unit.
• Through TSO allocate by using DSKEYLBL.
• On an IDCAMS DEFINE through the KEYLABEL parameter of DEFINE CLUSTER.
• On the SMS data class by specifying the Data Set Key Label field on the DEFINE/ALTER panel.
When a data set key label is specified through more than one interface, the order of precedence is
as follows:
i) The RACF data set profile
ii) JCL, dynamic allocation, TSO allocate, or IDCAMS DEFINE
iii) SMS data class
Consider the granularity of different key labels that you want to use across the groups of data
sets that you plan to encrypt, so that you balance convenience of managing the key labels against
maximizing the protection of your data. This also helps to determine the appropriate mechanism to
use to specify the key label.
3. Copy across data from the existing data set into the new, encrypted, data set.
Use an appropriate DFSMS function such as REPRO, or the EXPORT and IMPORT functions. A typical
sequence is as follows:
a. Create the new data set.
b. Copy the data across from the old data set.
c. Delete the old data set.
d. Rename the new data set back to the old name.

Planning for data set encryption

You can encrypt any data sets that you use with CICS for which z/OS data set encryption is supported.
This includes user data sets that are accessed through CICS File Control APIs, queued sequential
access method (QSAM) data sets used for CICS extrapartition transient data, basic sequential access
method (BSAM) data sets used with CICS, and CICS system data sets that are appropriate candidates for
encryption.
You can use data set encryption with any in-service release of CICS TS for z/OS.
Encrypted data sets must be storage management subsystem (SMS)-managed and extended format. To
create an encrypted data set, you assign a key label to a data set when that new data set is allocated.
The key label must point to an AES-256 bit encryption key in the integrated cryptographic service facility
(ICSF) cryptographic key data set (CKDS) that will be used to encrypt or decrypt the data. The key label is
not sensitive information, but the encryption key that it identifies is.

Encryption support for CICS user data sets

For user data sets defined to CICS, encryption support includes key-sequenced data sets (KSDS),
entry-sequenced data sets (ESDS), relative record data sets (RRDS), and variable relative record data

144 CICS TS for z/OS: Configuring CICS

sets (VRRDS), accessed through base VSAM and VSAM Record Level Sharing (RLS). Encryption is also
supported for the backing VSAM key-sequenced data sets that are used for shared data tables or coupling
facility data tables.

Encryption support for CICS system data sets

You can encrypt any CICS system data sets for which encryption is supported, but some system data sets
are good candidates for encryption, whereas others are not.
• Data sets with the potential to contain sensitive data are candidates for encryption. You must assess
which of your data sets might contain sensitive data and whether to encrypt them.
• Data sets that do not, and are unlikely to, contain sensitive data are not candidates for encryption.
The following table lists the CICS system data sets for which encryption is possible, and whether they are
candidates for encryption. If you want to use an "encrypt everything" approach, all the data set types that
are listed in this table can be encrypted.

Table 28. Which system data sets are candidates for encryption?
CICS system data set
Temporary storage data set
(DFHTEMP)
Intrapartition Transient Data
(DFHINTRA)
Extrapartition Transient Data
Auxiliary Trace data sets
(DFHAUXT and DFHBUXT)
CICS dump data sets (DFHDMPA
and DFHDMPB)
Candidate for encryption? Special considerations
Yes, could contain sensitive data. DFHTEMP supports extended
format, but does not support
extended addressing.
Yes, could contain sensitive data. DFHINTRA supports extended
format, but does not support
extended addressing.
Yes, could contain sensitive data. Encryption is not supported for
partitioned data sets (PDS).
Yes, can potentially include If trace data is encrypted and
sensitive data in the diagnostics. you need to send it to IBM
Alternatively, use the CONFDATA for diagnostics, use CICS trace
system initialization parameter, formatting or another method to
which might provide sufficient ensure that you send decrypted
protection. data.
Yes, can potentially include If dump data is encrypted and
sensitive data in the diagnostics. you need to send it to IBM
Alternatively, use the CONFDATA for diagnostics, use CICS dump
system initialization parameter, formatting or another method to
which might provide sufficient ensure that you send decrypted
protection. data.
CICS dump data sets support
extended format, but do not
support extended addressing.

Doctemplate resources Yes, can potentially contain Provided that the data set used is
sensitive data. of a type for which encryption is
supported.
URIMAP resources used for static Yes, can potentially contain Provided that the data set used is
delivery sensitive data. of a type for which encryption is
supported.
BTS repository data sets and BTS No, contain only control data. None.
local request queue (LRQ) data
set

Chapter 5. Setting up a CICS region 145

 Table 28. Which system data sets are candidates for encryption? (continued)
CICS system data set
Global and Local catalog data
sets (DFHGCD and DFHLCD)
CICS system definition data set
(DFHCSD)
CMAC messages data set
(DFHCMACD)
zFS files used for bundle
definitions and web services
Candidate for encryption?
No, contain only configuration
data.
No, contains only information
about resource configuration.
No, contains only message
details.
No, contain only configuration
information.
Special considerations
Consider only if you believe
that CICS configuration data is
sensitive information.
Consider only if you believe that
your resource definitions include
any sensitive information.
Consider only if you added your
own messages that you believe
contain sensitive data.
Consider only if you believe that
your bundle definitions include
any sensitive information.

Related tasks
“Encrypting data sets” on page 143
You can encrypt any data sets that you use with CICS for which z/OS data set encryption is supported.

Specifying CICS system initialization parameters

You can use the CICS system initialization parameters to modify CICS system attributes when you start
your CICS regions. Different methods are available to define the parameters to CICS. Each system
initialization parameter is described, including the syntax and a detailed description.
The information defined by system initialization parameters can be grouped into three categories:
1. Information used to initialize and control CICS system functions (for example, information such as the
dynamic storage area limits and the region exit time interval)
2. Module suffixes used to load your own versions of CICS control tables (for example, DFHMCTxx)
3. Special information used to control the initialization process
The primary method of providing system initialization parameters is with a system initialization table
(SIT). The parameters of the SIT, which you assemble as a load table, supply the system initialization
program with most of the information necessary to initialize the system to suit your unique environment.
You can generate more than one SIT, and at the time of system initialization select the one that is
appropriate to your needs.
You can also specify other system initialization parameters, which cannot be coded in the SIT. You can
specify which SIT you want, and other system initialization parameters (with a few exceptions), in any of
three ways:
1. In the PARM parameter of the EXEC PGM=DFHSIP statement
2. In the SYSIN data set defined in the startup job stream
3. Through the system operator's console
You can also use these methods of input to the system initialization process to override most of the
system initialization parameters assembled in the SIT.
Some system initialization parameters cannot be coded in the SIT; other parameters cannot be specified
in any other way. Finally, some system initialization parameters cannot be specified through the system
operator's console. For a summary of the parameters and how they can be specified, see System
initialization parameter descriptions and summary.

146 CICS TS for z/OS: Configuring CICS

 When you upgrade to a new CICS release
When you upgrade to a new CICS release, if you have existing system initialization tables, you must
modify them. Remove all obsolete parameters, and specify the required values for new or changed
parameters if you want to run with other than the defaults. When you have made the necessary changes,
reassemble the tables using the CICS Transaction Server for z/OS, Version 6 Release 1 macro libraries.
If you have system initialization parameters defined in CICS startup procedures, you must modify these
also.
To avoid generating specific system initialization tables for each CICS region, a simple solution is to
let CICS load the default, unsuffixed table (DFHSIT) at startup, and supply the system initialization
parameters for each region in a SYSIN data set. For more information about the source of the default
system initialization table, see The default system initialization table.

System initialization parameters to set up a CICS region

The CICS system initialization parameters that you must configure, or change from their default values, to
set up a CICS region are listed. The system initialization parameters that you might consider whether to
configure are also listed.
For parameters that are not listed in the following sections, it is unlikely that you need to change them
from their defaults unless there are specific requirements for your environment.
For a complete list of system initialization parameters and their defaults, see System initialization
parameter descriptions and summary.

System initialization parameters that you must configure

You must configure the following system initialization parameters:
APPLID
The APPLID parameter specifies the z/OS Communications Server application identifier for this CICS
region. See APPLID system initialization parameter.
CICSSVC
The CICSSVC parameter specifies the number that you have assigned to the CICS type 3 SVC. See
CICSSVC system initialization parameter.
GRPLIST
The GRPLIST system initialization parameter specifies the names (each 1 - 8 characters) of up to
four lists of resource definition groups on the CICS system definition file (CSD). See GRPLIST system
initialization parameter.
ISC
The ISC system initialization parameter specifies whether the CICS programs required for multiregion
operation (MRO) and intersystem communication over SNA are to be included. See ISC system
initialization parameter.
MXT
The MXT system initialization parameter specifies the maximum number, in the range 10 through
2000, of user tasks that can exist in a CICS system at the same time. The MXT value does not include
CICS system tasks. See MXT system initialization parameter.
PLTPI
The PLTPI system initialization parameter specifies the suffix for, or the full name of, a program list
table that contains a list of programs to be run in the final stages of system initialization. See PLTPI
system initialization parameter.
PLTSD
The PLTSD system initialization parameter specifies the suffix for, or full name of, a program list table
that contains a list of programs to be run during system termination. See PLTSD system initialization
parameter.

Chapter 5. Setting up a CICS region 147

 SIT
The SIT system initialization parameter specifies the suffix, if any, of the system initialization table
that you want CICS to load at the start of initialization. See SIT system initialization parameter.
START
The START system initialization parameter specifies the type of start for the system initialization
program. See START system initialization parameter.
SUFFIX
The SUFFIX system initialization parameter specifies the last two characters of the name of this
system initialization table. See SUFFIX system initialization parameter.
SYSIDNT
The SYSIDNT system initialization parameter specifies a 1- to 4-character name that is known only to
your CICS region. See SYSIDNT system initialization parameter.
USSHOME
The USSHOME system initialization parameter specifies the name and path of the root directory for
CICS Transaction Server files on z/OS UNIX. See USSHOME system initialization parameter.

System initialization parameters that you might need to configure

You must consider whether you need to configure the following system initialization parameters:
AICONS
The AICONS parameter specifies whether you want autoinstall support for consoles. See AICONS
system initialization parameter.
AIRDELAY
The AIRDELAY parameter specifies the delay period that elapses after an emergency restart before
autoinstalled terminal and APPC connection entries that are not in session are deleted. See AIRDELAY
system initialization parameter.
CLINTCP
The CLINTCP parameter specifies the default client code page to be used by the DFHCNV data
conversion table, but only if the CLINTCP parameter in the DFHCNV macro is set to SYSDEF. See
CLINTCP system initialization.
CMDPROT
The CMDPROT parameter specifies whether to allow or inhibit CICS validation of start addresses
of storage referenced as output parameters on EXEC CICS commands. See CMDPROT system
initialization parameter.
CONFDATA
The CONFDATA parameter specifies whether CICS is to redact sensitive data that might otherwise
appear in CICS trace entries or in dumps. See CONFDATA system initialization parameter.
CONFTXT
The CONFTXT system initialization parameter specifies whether CICS is to prevent z/OS
Communications Server from tracing user data. See CONFTXT system initialization parameter.
CPSMCONN
The CPSMCONN parameter specifies whether you want CICS to invoke the specified CICSPlex SM
component during initialization of the region. See CPSMCONN system initialization parameter.
CRLPROFILE
The CRLPROFILE parameter specifies the name of the profile that is used to authorize CICS to access
the certification revocation lists (CRLs) that are stored in an LDAP server. See CRLPROFILE system
initialization parameter.
CSDDISP
The CSDDISP parameter specifies the disposition of the data set to be allocated to the CSD. See
CSDDISP system initialization parameter.
CSDDSN
The CSDDSN parameter specifies the 1-44 character JCL data set name (DSNAME) to be used for the
CSD. See CSDDSN system initialization parameter.

148 CICS TS for z/OS: Configuring CICS

CSDFRLOG
The CSDFRLOG parameter specifies a number that corresponds to the journal name that CICS uses to
identify the forward recovery log stream for the CSD. See CSDFRLOG system initialization parameter.
CSDLSRNO
The CSDLSRNO system initialization parameter specifies whether the CSD is to be associated with a
local shared resource (LSR) pool. See CSDLSRNO system initialization parameter.
CSDRECOV
The CSDRECOVsystem initialization parameter specifies whether the CSD is a recoverable file. See
CSDRECOV system initialization parameter.
DATFORM
The DATFORM system initialization parameter specifies the external date display standard that you
want to use for CICS date displays. See DATFORM system initialization parameter.
DBCTLCON
The DBCTLCON system initialization parameter specifies whether you want CICS to start the DBCTL
connection automatically during initialization. See DBCTLCON system initialization parameter.
DB2CONN
The DB2CONN system initialization parameter specifies whether you want CICS to start the Db2
connection automatically during initialization. See DB2CONN system initialization parameter.
DFLTUSER
The DFLTUSER system initialization parameter specifies the RACF userid of the default user; that is,
the user whose security attributes are used to protect CICS resources in the absence of other, more
specific, user identification. See DFLTUSER system initialization parameter.
DOCCODEPAGE
The DOCCODEPAGE system initialization parameter specifies the default host code page to be used by
the document domain. See DOCCODEPAGE system initialization parameter.
DSALIM
The DSALIM system initialization parameter specifies the upper limit of the total amount of
storage within which CICS can allocate the individual dynamic storage areas (DSAs) that reside
in 24-bit storage (see CICS dynamic storage areas (DSAs)). To control the equivalent limit for
extended dynamic storage areas, see EDSALIM system initialization parameter. See DSALIM system
initialization parameter.
DSRTPGM
The DSRTPGM system initialization parameter specifies the name of a distributed routing program. See
DSRTPGM system initialization parameter.
DTRPGM
The DTRPGM system initialization parameter specifies the name of a dynamic routing program. See
DTRPGM system initialization parameter.
DUMPSW
The DUMPSW system initialization parameter specifies whether you want CICS to switch automatically
to the next dump data set when the first is full. See DUMPSW system initialization parameter.
EDSALIM
The EDSALIM system initialization parameter specifies the upper limit of the total amount of storage
within which CICS can allocate the individual extended dynamic storage areas (ExxDSAs) that
reside in 31-bit (above-the-line) storage; that is, above 16 MB but below 2 GB (see CICS dynamic
storage areas (DSAs)). To control the equivalent limit for dynamic storage areas, see DSALIM system
initialization parameter. See EDSALIM system initialization parameter.
FCQRONLY
The FCQRONLY system initialization parameter specifies whether you want CICS to force all file
control requests to run under the CICS QR TCB. This parameter applies to file control requests that
access VSAM RLS files and local VSAM LSR files. Requests for all other file types always run on the QR
TCB. See FCQRONLY system initialization parameter.

Chapter 5. Setting up a CICS region 149

 GMTEXT
The GMTEXT system initialization parameter specifies whether the default logon message text
(WELCOME TO CICS) or your own message text is to be displayed on the screen. See GMTEXT system
initialization parameter.
GMTRAN
The GMTRAN system initialization parameter specifies the ID of a transaction. See GMTRAN system
initialization parameter.
GRNAME
The GRNAME system initialization parameter specifies the z/OS Communications Server generic
resource name, as 1 through 8 characters, under which a group of CICS terminal-owning regions
in a CICSplex register to z/OS Communications Server. See GRNAME system initialization parameter.
ICV
The ICV system initialization parameter specifies the region exit time interval in milliseconds. See ICV
system initialization parameter.
ICVR
The ICVR system initialization parameter specifies the default runaway task time interval in
milliseconds as a decimal number. See ICVR system initialization parameter.
INITPARM
The INITPARM system initialization parameter specifies parameters that are to be passed to
application programs that use the ASSIGN INITPARM command. See INITPARM system initialization
parameter.
IRCSTRT
The IRCSTRT system initialization parameter specifies whether IRC is to be started up at system
initialization. See IRCSTRT system initialization parameter.
JVMPROFILEDIR
The JVMPROFILEDIR system initialization parameter specifies the name (up to 240 characters long)
of a z/OS UNIX directory that contains the JVM profiles for CICS. CICS searches this directory for the
profiles it needs to configure JVMs. See JVMPROFILEDIR system initialization parameter.
KEYRING
The KEYRING system initialization parameter specifies the fully qualified name of the key ring, within
the RACF database, that contains the keys and X.509 certificates used by CICS support for the secure
sockets layer (SSL) and for web services security. It must be owned by the CICS region ID. You
can create an initial key ring with the DFH$RING exec in CICSTS61.CICS.SDFHSAMP. See KEYRING
system initialization parameter.
LGNMSG
The LGNMSG system initialization parameter specifies whether z/OS Communications Server logon
data is to be made available to an application program. See LGNMSG system initialization parameter.
LOCALCCSID
The LOCALCCSID system initialization parameter specifies the default CCSID for the local region. See
LOCALCCSID system initialization parameter.
LPA
The LPA system initialization parameter specifies whether CICS and user modules can be used from
the link pack areas. See LPA system initialization parameter.
MINTLSLEVEL
The MINTLSLEVEL system initialization parameter specifies the minimum TLS protocol that CICS uses
for secure TCP/IP connections. See MINTLSLEVEL system initialization parameter.
MN
The MN system initialization parameter specifies whether monitoring is to be switched on or off at
initialization. See MN system initialization parameter.
MNPER
The MNPER system initialization parameter specifies whether the monitoring performance class is to
be made active during CICS initialization. See MNPER system initialization parameter.

150 CICS TS for z/OS: Configuring CICS

MQCONN
The MQCONN system initialization parameter specifies whether you want CICS to start a connection to
IBM MQ automatically during initialization. See MQCONN system initialization parameter.
MSGCASE
The MSGCASE system initialization parameter specifies how you want the message domains to display
mixed case messages. See MSGCASE system initialization parameter.
NATLANG
The NATLANG system initialization parameter specifies the single-character code for the language to
be supported in this CICS run. See NATLANG system initialization parameter.
PGCHAIN
The PGCHAIN system initialization parameter specifies the character string that is identified by
terminal control as a BMS terminal page-chaining command. See PGCHAIN system initialization
parameter .
PGCOPY
The PGCOPY system initialization parameter specifies the character string that is identified by terminal
control as a BMS command to copy output from one terminal to another. See PGCOPY system
initialization parameter.
PGPURGE
The PGPURGE system initialization parameter specifies the character string that is identified by
terminal control as a BMS terminal page-purge command. See PGPURGE system initialization
parameter.
PGRET
The PGRET system initialization parameter specifies the character string that is recognized by terminal
control as a BMS terminal page-retrieval command. See PGRET system initialization parameter.
PLTPISEC
The PLTPISEC system initialization parameter specifies whether you want CICS to perform command
security or resource security checking for PLT programs during CICS initialization. See PLTPISEC
system initialization parameter.
PLTPIUSR
The PLTPIUSR system initialization parameter specifies the user ID that CICS uses for security
checking for PLT programs that run during CICS initialization. See PLTPIUSR system initialization
parameter.
PSBCHK
The PSBCHK system initialization parameter specifies whether CICS is to perform PSB authorization
checks for remote terminal users who use transaction routing to initiate a transaction in this CICS
region to access an attached IMS system. See PSBCHK system initialization parameter.
RLS
The RLS system initialization parameter specifies whether CICS is to support VSAM record-level
sharing (RLS). See RLS system initialization parameter.
RRMS
The RRMS system initialization parameter specifies whether CICS is to register as a resource manager
with recoverable resource management services (RRMS). See RRMS system initialization parameter.
SDTRAN
The SDTRAN system initialization parameter specifies the name of the shutdown transaction to
be started at the beginning of normal and immediate shutdown. See SDTRAN system initialization
parameter.
SECPRFX
The SECPRFX system initialization parameter specifies whether CICS prefixes the resource names in
any authorization requests to RACF. See SECPRFX system initialization parameter.
SPOOL
The SPOOL system initialization parameter specifies whether the system spooling interface is
required. See SPOOL system initialization parameter.

Chapter 5. Setting up a CICS region 151

 SRBSVC
The SRBSVC system initialization parameter specifies the number that you have assigned to the CICS
type 6 SVC. See SRBSVC system initialization parameter.
SRVERCP
The SRVERCP system initialization parameter specifies the default server code page to be used by
the DFHCNV data conversion table but only if the SRVERCP parameter in the DFHCNV macro is set to
SYSDEF. See SRVERCP system initialization parameter.
STARTER
The STARTER system initialization parameter specifies whether the generation of starter system
modules (with $ and # suffixes) is permitted, and various MNOTES are suppressed. See STARTER
system initialization parameter.
STATRCD
The STATRCD system initialization parameter specifies the interval statistics recording status at CICS
initialization. See STATRCD system initialization parameter.
STGPROT
The STGPROT system initialization parameter specifies whether you want storage protection to
operate in the CICS region. See STGPROT system initialization parameter.
TBEXITS
The TBEXITS system initialization parameter specifies the names of your backout exit programs for
use during emergency restart backout processing. See TBEXITS system initialization parameter.
TCT
The TCT system initialization parameter specifies which terminal control table, if any, is to be loaded.
See TCT system initialization parameter.
TD
The TD system initialization parameter specifies the number of VSAM buffers and strings to be used
for intrapartition transient data (TD). See TD system initialization parameter.
TRANISO
The TRANISO system initialization parameter specifies, together with the STGPROT system
initialization parameter, whether you want transaction isolation in the CICS region. See TRANISO
system initialization parameter.
TS
The TS system initialization parameter specifies whether you want to perform a cold start for
temporary storage, as well as the number of VSAM buffers and strings to be used for auxiliary
temporary storage. See TS system initialization parameter.
WLMHEALTH
The WLMHEALTH system initialization parameter specifies the time interval and the health adjustment
value to be used by CICS on z/OS Workload Manager Health API (IWM4HLTH) calls, which CICS makes
to inform z/OS WLM about the health state of a CICS region. See WLMHEALTH.
XAPPC
The XAPPC system initialization parameter specifies whether RACF session security can be used when
establishing APPC sessions. See XAPPC system initialization parameter.
XDB2
The XDB2 system initialization parameter specifies whether you want CICS to perform DB2ENTRY
security checking. See XDB2 system initialization parameter.

Specifying DFHSIT macro parameters

You can specify most system initialization parameters in a DFHSIT macro.

Procedure
1. Code the following macro parameter first:

152 CICS TS for z/OS: Configuring CICS

 TYPE={CSECT|DSECT}
This parameter specifies the type of SIT to be generated.
CSECT
A regular control section that is normally used.
DSECT
A dummy control section.
For example:

DFHSIT TYPE=CSECT, *

The asterisk (*) can be any character in column 72 to indicate the macro continues on the next line.
2. Use the following syntax to add system initialization parameters to the macro:
TYPE=CSECT
DFHSIT
TYPE=DSECT parameter = value

where parameter is the system initialization parameter that you want to code, and value is the
appropriate parameter value. You should code the parameters and keywords in uppercase, except
for parameters where case is important. For example, any parameter that specifies the name of a z/OS
UNIX directory is case sensitive. The system initialization parameters are described in detail in System
initialization parameter descriptions and summary.
For example:

ADI=30, *
AIBRIDGE=AUTO, *
AIEXIT=DFHZATDX, *
AILDELAY=0, *

3. Terminate your macro parameters with the following statement:

END DFHSITBA

Example
For information on the sample system initialization tables provided, see Defining resources in CICS
control tables.

Defining CICS resource table and module keywords

About this task

The following table shows the system initialization keywords for those CICS resources that:
• Have a suffix option, or
• Result in a dummy program or table if you code resource=NO, or
• Can perform individual cold starts

Table 29. Summary of resources with a suffix, a dummy load module, or a COLD option
DFHSIT keyword 1 Default 2 Suffix 3 Dummy 4 COLD start 5
BMS FULL - - COLD
CLT - xx - -
DIP NO - program -
FCT YES xx - -

Chapter 5. Setting up a CICS region 153

 Table 29. Summary of resources with a suffix, a dummy load module, or a COLD option (continued)
DFHSIT keyword 1 Default 2 Suffix 3 Dummy 4 COLD start 5
ICP - - - COLD
MCT NO xx 6 -
PDIR NO xx - -
PLTPI NO xx - -
PLTSD NO xx - -
RST NO xx - -
SRT YES xx - -
TCT YES xx table -
TS - - - COLD
TST NO xx - -
XLT NO xx - -

Note:
1. When the DFHSIT keyword is specified with more than one value, these values must be enclosed
within parentheses: for example, BMS=(FULL,COLD).
2. The Default column indicates the default value for the keyword in the DFHSIT macro.
For keywords with the suffix option, if you code YES in the SIT, an unsuffixed version of the table or
program is loaded. For example, TCT=YES results in a table called DFHTCT being loaded. You can also
select an unsuffixed module or table at CICS startup by specifying keyword=, or keyword=YES. For
example, if you code:

FCT=, or FCT=YES

blanks are appended to DFHFCT, and these unsuffixed names are used during initialization.
The result of specifying keyword=, as a system initialization parameter through PARM, SYSIN, or
CONSOLE is not necessarily the same as in the DFHSIT macro. For example, TST=, (or omitted
altogether) when coding the DFHSIT macro is taken to mean TST=NO, but TST=, through any of the
other three methods is the same as TST=YES.
3. The Suffix column indicates whether you can code a suffix. (xx indicates that a suffix can be coded.)
A suffix can be any 1 or 2 characters, but you must not use DY, and you cannot use NO as a suffix.
If you code a suffix, a table or program with that suffix appended to the standard name is loaded.
4. The Dummy column indicates whether a dummy version of the program or table is loaded if you code
NO. In some cases, coding NO for the operand associated with the table results in a dummy program.
For more information about the effect of this option, see “Selecting versions of CICS programs and
tables” on page 163.
5. The COLD start column indicates whether the resource can be forced to start COLD. (COLD indicates
that a cold start can be performed for the resource individually.) TST and cold start ensure that a cold
start is performed for temporary storage or the whole system if you make any change to the TST.
If COLD is coded, it can be overridden only by coding START=(...,ALL) as a system initialization
parameter. For more information about this option, see page ALL.
For more information about CICS table and program selection, see “Selecting versions of CICS
programs and tables” on page 163.

154 CICS TS for z/OS: Configuring CICS

 6. If you code MCT=NO, the CICS monitoring domain builds dynamically a default monitoring control
table. This ensures that default monitoring control table entries are always available for use when
monitoring is on and a monitoring class is active.

The default system initialization table

This default SIT is in CICSTS61.CICS.SDFHAUTH, and its source, named DFHSIT$$, is in
CICSTS61.CICS.SDFHSAMP.
The parameters and values in the macro source statements used to assemble the default system
initialization table are listed in Table 30 on page 155.

Table 30. DFHSIT, the pregenerated default system initialization table

Parameter Default value Description
ADI 30 XRF(B) - Alternate delay interval
AIBRIDGE AUTO Bridge Autoinstall URM
AICONS NO No autoinstall for MVS CONSOLES
AIEXIT DFHZATDX Autoinstall user program name
AILDELAY 0 Delete delay period for AI terminals
AIQMAX 100 Maximum number of terminals queued for AI
AIRDELAY 700 Restart delay period for AI terminals
AKPFREQ 4000 Activity keypoint frequency
APPLID DBDCCICS z/OS Communications Server APPL identifier
AUTCONN 0 Autoconnect delay
AUTODST NO Language Environment automatic storage tuning
AUTORESETTIME IMMEDIATE Time-of-day synchronization
AUXTR OFF Auxiliary trace option
AUXTRSW NO Auxiliary trace autoswitch facility
BMS FULL, UNALIGN, DDS Basic Mapping Support options
BRMAXKEEPTIME 86400 Bridge Max Keeptime
CICSSVC 216 The CICS SVC number
CILOCK NO Do not keep CI lock after read update
CLINTCP 437 Default client code page
CLSDSTP NOTIFY Notification for ISSUE PASS command
CLT The command list table option or suffix
CMDPROT YES Exec storage command checking
CMDSEC ASIS API command security checking
CONFDATA HIDE Show confidential data in dump and trace
CONFTXT NO Do not prevent z/OS Communications Server
tracing user data
CPSMCONN NO Do not connect to CICSPlex SM

Chapter 5. Setting up a CICS region 155

 Table 30. DFHSIT, the pregenerated default system initialization table (continued)
Parameter Default value Description
CRLPROFILE Name of profile that allows CICS to access
certificate revocation lists
CSDACC READWRITE CSD access
CSDBKUP STATIC Backup type of CSD (STATIC or DYNAMIC)
CSDBUFND Number of data buffers for the CSD
CSDBUFNI Number of index buffers for the CSD
CSDDISP CSD disposition for dynamic allocation
CSDDSN CSD data set name for dynamic allocation
CSDFRLOG NO Journal ID for CSD forward recovery
CSDINTEG UNCOMMITTED Read integrity = uncommitted
CSDJID NO Journal ID for CSD auto journaling
CSDLSRNO 1 The VSAM LSR pool number for the CSD
CSDRECOV NONE CSD recoverable file option
CSDRLS NO Use traditional VSAM
CSDSTRNO 6 CSD number of strings
CWAKEY USER CWA storage key
DAE NO SDUMPS will not be suppressed by DAE
DATFORM MMDDYY CSA date format
DB2CONN NO Do not connect to Db2 at CICS startup
DBCTLCON NO Do not connect to DBCTL at CICS start
DEBUGTOOL NO No Debugging Tool access
DFLTUSER CICSUSER Default user
DIP NO Batch data interchange program
DISMACP YES Disable macro programs
DOCCODEPAGE 037 Default host code page
DSALIM 5M Upper limit of DSA below 16 MB line
DSHIPIDL 020000 Delete shipped idle time
DSHIPINT 120000 Delete shipped interval
DSRTPGM NONE Distributed routing program
DTRPGM DFHDYP Dynamic routing program
DTRTRAN CRTX Default dynamic transaction routing transid
DUMP YES Dump option
DUMPDS AUTO CICS dump data set opening option
DUMPSW NO Dump data set autoswitch option
DURETRY 30 SDUMP total retry time (in seconds)

156 CICS TS for z/OS: Configuring CICS

Table 30. DFHSIT, the pregenerated default system initialization table (continued)
Parameter Default value Description
EDSALIM 800M Upper limit of DSA in 31-bit storage
EODI E0 End-of-data indicator for sequential devices
ESMEXITS NOINSTLN External security manager exits
FCT NO File control table option or suffix
FCQRONLY YES Threadsafe FC runs on QR TCB
FEPI NO Front-End Programming Interface
FLDSEP ' ' (four blanks) End-of-field separator characters
FLDSTRT ' ' (one blank) Field start character for built-in function
FORCEQR NO Do not force QR for threadsafe programs
FSSTAFF NO Function-shipped START affinity option
FTIMEOUT 30 File timeout 30 seconds
GMTEXT 'WELCOME TO CICS' Good-morning message text
GMTRAN CSGM Initial transaction
GNTRAN NO Signoff transaction
GRNAME Generic resource name for CICS TORs
GRPLIST DFHLIST List name of CSD groups for startup
GTFTR OFF GTF trace option
HPO NO z/OS Communications Server High Performance
Option (HPO)
HTTPSERVERHDR YES Value set in the server header for an HTTP
response
HTTPUSRAGENTHDR YES Value set in the user-agent header for an HTTP
request
ICP Interval control program start option
ICV 1000 Region exit interval (milliseconds)
ICVR 2000 Runaway task interval (milliseconds)
ICVTSD 0 Terminal scan delay interval
INITPARM Initialization parameters for programs
INTTR ON CICS internal trace option
IRCSTRT NO Interregion communication start
ISC NO Intersystem communication option
JESDI 30 JES delay interval for XRF alternate
JVMPROFILEDIR JVM profile directory
/usr/lpp/cicsts
/cicsts61/JVMProfiles

KERBEROSUSER Kerberos user ID = CICS region userid

Chapter 5. Setting up a CICS region 157

 Table 30. DFHSIT, the pregenerated default system initialization table (continued)
Parameter Default value Description
KEYRING Key ring to be used by SSL support
LGDFINT 5 Log defer interval in Log Manager
LGNMSG NO Extract z/OS Communications Server logon data
LLACOPY YES Use MVS LLACOPY support
LOCALCCSID 037 The default CCSID for the local region
LPA NO Use-LPA option for CICS/user modules
MAXOPENTCBS Calculated Maximum number of open TCBs CICS can create in
the pool of L8 and L9 mode TCBs
MAXSOCKETS 65535 Maximum number of IP sockets
MAXSSLTCBS 32 Limit on number of SSL TCBs
MAXXPTCBS Calculated The maximum number of open X8 and X9 TCBs
that can exist concurrently in the CICS region
MCT NO Monitoring control table option or suffix
MINTLSLEVEL TLS12 Level of encryption for TLS
MN OFF CICS monitoring option
MNCONV NO Monitoring converse recording option
MNEXC OFF Monitoring exception class option
MNFREQ 0 Monitoring frequency period
MNIDN OFF Monitoring identity class option
MNPER OFF Monitoring performance class option
MNRES OFF Monitoring resource class option
MNSYNC NO Monitoring syncpoint recording option
MNTIME GMT Monitoring timestamp (GMT or LOCAL)
MQCONN NO Do not connect to MQ at startup
MROBTCH 1 Number of MRO requests to batch
MROFSE NO Extend lifetime of long-running mirror
MROLRM NO Long-running mirror task option
MSGCASE MIXED CICS messages in mixed case
MSGLVL 1 System console MSG level option
MXT 250 Maximum number of tasks in CICS
NATLANG E List of national languages
NCPLDFT DFHNC001 Named counter default pool name
NISTSP800131A NOCHECK Whether the CICS region is to check for compliance
to the NIST 800-131A standard
NONRLSRECOV VSAMCAT Select location of recovery options for non-RLS
files

158 CICS TS for z/OS: Configuring CICS

Table 30. DFHSIT, the pregenerated default system initialization table (continued)
Parameter Default value Description
NQRNL NO RNL processing by z/OS global resource
serialization
OPERTIM 120 Write to operator timeout (seconds)
OPNDLIM 10 OPNDST/CLSDST request limit
PARMERR INTERACT System initialization parameter errors option
PDI 30 Primary delay interval - XRF active
PDIR NO DL/I PSB directory option or suffix
PGAICTLG MODIFY PG autoinstall catalog state
PGAIEXIT DFHPGADX PG autoinstall exit program
PGAIPGM INACTIVE PG autoinstall state
PGCHAIN BMS CHAIN command
PGCOPY BMS COPY command
PGPURGE BMS PURGE command
PGRET BMS RETURN command
PLTPI NO Program list table PI option or suffix
PLTPISEC NONE No PLT security checks on PI programs
PLTPIUSR PLT PI userid = CICS region userid
PLTSD NO Program list table SD option or suffix
PRGDLAY 0 BMS purge delay interval
PRINT NO Print key option
PRTYAGE 1000 Dispatcher priority aging value
PSBCHK NO PSB resource checking required
PSDINT 0 Persistent session delay interval
PSTYPE SNPS z/OS Communications Server single node
persistent Sessions
PVDELAY 30 Timeout value for LUIT table
QUIESTIM 240 Timeout value for quiesce requests
RACFSYNC YES Listen for type 71 ENF events
RAMAX 256 Maximum I/O area for RECEIVE ANY
RAPOOL 50 Maximum RECEIVE ANY request parm. lists
RENTPGM PROTECT Reentrant program write protection
RESP FME Logical unit response type
RESSEC ASIS Resource security check
RLS NO RLS option
RLSTOLSR NO RLS files in LSRPOOL build calculation

Chapter 5. Setting up a CICS region 159

 Table 30. DFHSIT, the pregenerated default system initialization table (continued)
Parameter Default value Description
RMTRAN CSGM XRF alternate recovery transaction
RRMS NO Recoverable resource management services
RST NO Recovery service table (XRF-DBCTL)
RSTSIGNOFF NOFORCE XRF - Re-sign on after takeover
RSTSIGNTIME 500 XRF - sign off timeout value
RUWAPOOL NO Allocating storage pool for Language Environment
SDTRAN CESD Shutdown transaction
SEC YES External security manager option
SECPRFX NO Security prefix
SKRPA1 SKR PA1 PAGE RETRIEVAL CMD
SKRPA2 SKR PA2 PAGE RETRIEVAL CMD
SKRPA3 SKR PA3 PAGE RETRIEVAL CMD
SKRPF1 SKR PF1 PAGE RETRIEVAL CMD
SKRPF2 SKR PF2 PAGE RETRIEVAL CMD
SKRPF3 SKR PF3 PAGE RETRIEVAL CMD
SKRPF4 SKR PF4 PAGE RETRIEVAL CMD
SKRPF5 SKR PF5 PAGE RETRIEVAL CMD
SKRPF6 SKR PF6 PAGE RETRIEVAL CMD
SKRPF7 SKR PF7 PAGE RETRIEVAL CMD
SKRPF8 SKR PF8 PAGE RETRIEVAL CMD
SKRPF9 SKR PF9 PAGE RETRIEVAL CMD
SKRPF10 SKR PF10 PAGE RETRIEVAL CMD
SKRPF11 SKR PF11 PAGE RETRIEVAL CMD
SKRPF12 SKR PF12 PAGE RETRIEVAL CMD
SKRPF13 SKR PF13 PAGE RETRIEVAL CMD
SKRPF14 SKR PF14 PAGE RETRIEVAL CMD
SKRPF15 SKR PF15 PAGE RETRIEVAL CMD
SKRPF16 SKR PF16 PAGE RETRIEVAL CMD
SKRPF17 SKR PF17 PAGE RETRIEVAL CMD
SKRPF18 SKR PF18 PAGE RETRIEVAL CMD
SKRPF19 SKR PF19 PAGE RETRIEVAL CMD
SKRPF20 SKR PF20 PAGE RETRIEVAL CMD
SKRPF21 SKR PF21 PAGE RETRIEVAL CMD
SKRPF22 SKR PF22 PAGE RETRIEVAL CMD

160 CICS TS for z/OS: Configuring CICS

Table 30. DFHSIT, the pregenerated default system initialization table (continued)
Parameter Default value Description
SKRPF23 SKR PF23 PAGE RETRIEVAL CMD
SKRPF24 SKR PF24 PAGE RETRIEVAL CMD
SNPRESET UNIQUE Specifies whether preset userid terminals share a
single ACEE associated with the userid, or a unique
ACEE for every terminal
SNSCOPE NONE Multiple CICS sessions per userid
SOTUNING YES Whether performance tuning for HTTP connections
occurs to protect CICS from unconstrained
resource demand.
SPCTR (1,2) Levels of special tracing required
SPOOL NO System spooling interface option
SRBSVC 215 HPO Type 6 SVC number
SRT 1$ System recovery table option or suffix
SRVERCP 037 Default server code page to be used by the
DFHCNV data conversion table only if the SRVERCP
parameter in the DFHCNV macro is set to SYSDEF
SSLCACHE CICS SSL session ID caching
SSLDELAY 600 SSL timeout value
START AUTO CICS system initialization option
STARTER YES Starter ($ and #) suffixes option
Note: The default is NO but the parameter must
be set to YES here to enable the SIT to assemble
correctly.

STATEOD 0 Statistics end-of-day time

STATINT 010000 Statistics interval time
STATRCD OFF Statistics recording status
STGPROT YES Storage protection facility
STGRCVY NO Storage recovery option
STNTR 1 Level of standard tracing required
SUBTSKS 0 Number of concurrent mode TCBs
SUFFIX $$ Suffix of this SIT
SYDUMAX 999 Number of SYSDUMPS to be taken
SYSIDNT CICS Local system identifier
SYSTR ON Main system trace flag
TAKEOVR MANUAL XRF alternate takeover option
TBEXITS Backout exit programs
TCP YES Terminal control program option or suffix

Chapter 5. Setting up a CICS region 161

 Table 30. DFHSIT, the pregenerated default system initialization table (continued)
Parameter Default value Description
TCPIP YES TCP/IP support
TCSACTN NONE TC Shutdown action
TCSWAIT 4 TC Shutdown wait
TCT NO Terminal control table option or suffix
TCTUAKEY USER TCT user area storage key
TCTUALOC ANY TCT user area ANY
TD (3,3) Transient data buffers and strings
TDINTRA NOEMPTY Initial state of transient data queues
TRANISO NO Transaction Isolation
TRAP OFF F.E. global trap exit option
TRDUMAX 999 Number of TRANDUMPS to be taken
TRTABSZ 12288 Internal trace table size in 1K bytes
TRTRANSZ 1024 Transaction dump trace table size
TRTRANTY TRAN Transaction dump trace option
TS (3,3) Temporary storage buffers and strings
TSMAINLIMIT 64M Upper limit of storage for TS main queues
TST NO Temporary storage table option or suffix
UOWNETQL Qualifier for NETUOWID
USERTR ON Main user trace flag
USRDELAY 30 Timeout value for user directory entries
USSCONFIG /var/cicsts/dfhconfig The name and path of the root directory for CICS
configuration files on z/OS UNIX
USSHOME /usr/lpp/cicsts/cicsts61 The name and path of the root directory for CICS
files on z/OS UNIX
VTAM YES z/OS Communications Server access method
option
VTPREFIX \ Client virtual terminal prefix
WEBDELAY (5,60) Web timer values
WLMHEALTH (20,25) Parameters used by CICS on z/OS WLM Health API
(IWM4HLTH) calls to inform z/OS WLM about the
health state of CICS regions
WRKAREA 512 Common work area (CWA) size in bytes
XAPPC NO RACF class APPCLU required
XCFGROUP DFHIR000 XCF group to use for MRO communications
XCMD YES SPI use default name for RACF check
XDB2 NO Security check for DB2ENTRY resources

162 CICS TS for z/OS: Configuring CICS

 Table 30. DFHSIT, the pregenerated default system initialization table (continued)
Parameter Default value Description
XDCT YES Security check for transient data queues
XFCT YES Security check for files
XHFS YES Security check for z/OS UNIX files
XJCT YES Security check for journals
XLT NO Transaction list table option or suffix
XPCT YES Security check for started transactions
XPPT YES Security check for programs
XPSB YES Security check for DL/I PSBs
XPTKT YES Security check for PassTicket
XRES YES For resources subject to XRES security, checks use
the default name for the RACF check. For a list
of resources subject to XRES security checks, see
Resource and command check cross-reference.
XRF NO Extended recovery feature (XRF) option
XTRAN YES Security check for transaction-attach
XTST YES Security check for temporary storage queues
XUSER YES Surrogate user checking to be done

Assembling the SIT

When you have coded the DFHSIT macro, you must assemble the SIT.

Procedure
1. Assemble and link-edit the table into an APF-authorized library, such as CICSTS61.CICS.SDFHAUTH.
2. Include this library in the STEPLIB concatenation of the CICS startup job stream.

Results
If you code a system initialization parameter in your SIT source, and the parameter's keyword is not
defined in the CICS-supplied version of the DFHSIT macro, you get an IEV017 warning message from the
assembly, as follows:

IEV017 ** WARNING ** UNDEFINED KEYWORD PARAM. DEFAULT TO POSITIONAL, INCLUDING KW -- OPENC/aaaaaaa

For information about assembling and link-editing CICS control tables, and an explanation of the syntax
notation used to describe CICS macros, see Defining resources in CICS control tables.

Selecting versions of CICS programs and tables

A CICS program is usually made up from a group of related CICS functional modules, one example of
which is the terminal control program.

About this task

For most CICS programs you can only have one version, which is supplied with CICS. However, for some
CICS programs you can create more than one version; for example, with different service levels. To select

Chapter 5. Setting up a CICS region 163

 a particular version of a program, you can include the load library containing that version in the CICS
startup JCL. For the basic mapping support (BMS) suite, however, you can select from different versions,
by explicitly selecting the level of function needed.
You can also specify that a program is not needed (see “Excluding unwanted programs” on page 164 for
details).
You can use these methods only for the programs referred to in this section and in “Excluding unwanted
programs” on page 164, by coding system initialization parameters.

Using an explicit level of function to select programs

You use an explicit level of function to select the BMS suite of programs.
When you specify your BMS requirement on the system initialization parameter BMS, you can select one
of three versions. The BMS level of function is selected by the parameter options MINIMUM, STANDARD,
or FULL, from which the system initialization program loads the set of programs you require.

Excluding unwanted programs

There are three ways to exclude programs that are not required.
You can exclude programs by specifying:
1. programname=NO
2. tablename=NO
3. function=NO

Specifying programname=NO
If you code system initialization parameter programname=NO (for example, DIP=NO), you exclude the
named management program at CICS system initialization.
You can exclude the following programs by coding programname=NO:
• Batch data interchange program (DIP)
• Terminal control program (TCP)
Note: In the case of DIP, you get a dummy version of the management program, which is supplied on the
distribution tape with a suffix of DY.

Specifying tablename=NO for the programs control table

Not all of the CICS programs have a programname parameter in the SIT.
Ansystem initialization parameter alternative method is to code NO on the for the associated table. This
has the same effect as coding NO against a program name parameter, and the associated CICS program is
excluded at system initialization, either by loading a dummy program, or by some other technique.
The system recovery table (SRT) can be used in this way, and the associated system recovery program
(SRP) will be excluded.

The dummy TCT, DFHTCTDY

There is a special case where you can also specify tablename=NO, but this does not load a dummy
terminal control program. You specify TCT=NO when you are using resource definition online, and all your
terminal resource definitions are in the CICS system definition file (CSD).
When you specify TCT=NO, CICS loads a dummy TCT named DFHTCTDY. A pregenerated CICSTS61.CICS
dummy table of this name is supplied in .SDFHLOAD, and the source CICSTS61.CICS statements of
DFHTCTDY are supplied in .SDFHSAMP. If you specify TCT=NO, a generated table of this name must be
available in a library of the DFHRPL concatenation when you start CICS.
The dummy TCT provides only the CICS and z/OS Communications Server control blocks that you need if
you are using z/OS Communications Server terminals and using the CSD for storing terminal definitions.

164 CICS TS for z/OS: Configuring CICS

 You define your z/OS Communications Server terminals using the RDO transaction, CEDA, or the DEFINE
command of the CSD update batch utility program DFHCSDUP.

Specifying function=NO
If you code function=NO as a system initialization parameter, you exclude the management program
associated with the named function at CICS system initialization.
You can exclude functions such as intersystem communication (ISC), the 3270 print-request facility, and
the system spooling interface in this way.

Processing system initialization parameters

This section describes the CICS system initialization process.

Supplying system initialization parameters to CICS

The CICS parameter manager domain loads a system initialization table (SIT) at the start of the
initialization process.

About this task

You specify the SIT that defines the CICS characteristics appropriate to your needs by coding the suffix of
the DFHSITxx load module (where xx is the suffix) on the SIT= system initialization parameter. If you fail
to specify the suffix of a SIT, then CICS tries to load an unsuffixed module.
You can modify many of the system initialization parameters dynamically at the beginning of CICS
initialization by providing system initialization parameters in the startup job stream, or through the system
console. There are also some system initialization parameters that you cannot code in the SIT, and can
only supply at startup time. You specify system initialization parameters at startup time in any of three
ways:
1. In the PARM parameter of the EXEC PGM=DFHSIP statement
2. In the SYSIN data set defined in the startup job stream
3. Through the system operator's console
You can use just one of these methods, or two, or all three. However, CICS processes these three sources
of input in strict sequence, as follows:
1. The PARM parameter
2. The SYSIN data set (but only if SYSIN is coded in the PARM parameter; see SYSIN)
3. The console (but only if CONSOLE is coded in either the PARM parameter or in the SYSIN data set; see
CONSOLE(CN))
Note: If you supply duplicate system initialization parameters, either through the same or a different
medium, CICS takes the last one that it reads. For example, if you specify MCT=1$ in the PARM
parameter, MCT=2$ in the SYSIN data set, and finally enter MCT=3$ through the console, CICS loads
DFHMCT3$.

Using system initialization control keywords

You can use the SYSIN, CONSOLE, and END control keywords at startup to control how CICS is to read
system initialization parameters.

About this task

The purpose of these special keywords, and where you can code them, are described as follows:
SYSIN (SI)
This keyword tells CICS to read initialization parameters from the SYSIN data set.

Chapter 5. Setting up a CICS region 165

 Where to code SYSIN: You can code SYSIN (or SI) only in the PARM parameter of the EXEC
PGM=DFHSIP statement. The keyword can appear once only and must be at the end of the PARM
parameter. CICS does not read SYSIN until it has finished scanning all of the PARM parameter, or until
it reaches a .END before the end of the PARM parameter.
Examples:

//stepname EXEC PGM=DFHSIP,PARM='SIT=6$,SYSIN,.END'

//stepname EXEC PGM=DFHSIP,PARM='SIT=6$,DLI=YES,SYSIN,.END'

CONSOLE (CN)
This keyword tells CICS to read initialization parameters from the console. CICS prompts you with
message DFHPA1104 when it is ready to read parameters from the console.
Where to code CONSOLE: You can code CONSOLE (or CN) in the PARM parameter of the EXEC
PGM=DFHSIP statement or in the SYSIN data set. This keyword can appear either at the end of the
PARM parameter or in the SYSIN data set, but code it in one place only.
If you code CONSOLE (or CN) in the PARM parameter, and PARM also contains the SYSIN keyword,
CICS does not begin reading parameters from the console until it has finished reading and processing
the SYSIN data set. Similarly, wherever you place the CONSOLE keyword in the SYSIN data set, CICS
does not begin reading parameters from the console until it has finished reading and processing the
SYSIN data set.
Examples:

//stepname EXEC PGM=DFHSIP,PARM='SIT6$,CONSOLE,.END'

//stepname EXEC PGM=DFHSIP,PARM='CONSOLE,SYSIN,.END'
//stepname EXEC PGM=DFHSIP,PARM='SIT=6$,CN,SI,.END'

If both SYSIN (or SI) and CONSOLE (or CN) appear as keywords of the PARM parameter, the order in
which they are coded is irrelevant as long as no other keywords, other than .END, follow them.
.END
The meaning of this keyword varies:
PARM
The use of the .END keyword is optional in the PARM parameter. If you omit it, CICS assumes it to
be at the end of the PARM parameter. If you code .END in the PARM parameter it can have one of
two meanings:
1. If you also code one, or both, of the other control keywords (CONSOLE and/or SYSIN) .END
denotes the end of the PARM parameter only.
For example:

//stepname EXEC PGM=DFHSIP,PARM='SIT6$,SI,CN,.END'

2. If you code .END as the only control keyword in the PARM parameter, it denotes the end of all
system initialization parameters, and CICS begins the initialization process. For example:

//stepname EXEC PGM=DFHSIP,PARM='SIT=6$,.END'

If .END is not the last entry in the PARM parameter, CICS truncates the PARM parameter and the
parameters following the .END keyword are lost.
SYSIN
The use of the .END keyword is optional in the SYSIN data set. If you omit it, CICS assumes it to
be at the end of SYSIN. If you code .END in the SYSIN data set its meaning depends on your use of
the CONSOLE keyword, as follows:
• If you code the CONSOLE control keyword in the PARM parameter or in the SYSIN data set, .END
denotes the end of the SYSIN data set only.

166 CICS TS for z/OS: Configuring CICS

 • If you do not code the CONSOLE control keyword in the PARM parameter or in the SYSIN data
set, .END denotes the end of all CICS system initialization parameters, and CICS begins the
initialization process.
If you code .END, and it is not the last entry in the SYSIN data set, or not at the end of a SYSIN
record, CICS initialization parameters following the .END are ignored. To avoid accidental loss of
initialization parameters, ensure that the .END keyword is on the last record in the SYSIN data set,
and that it is the only entry on that line. (However, if you want to remove some system initialization
parameters from a particular run of CICS, you could position them after the .END statement just
for that run.)
The following example shows the use of .END in a SYSIN data set:

//SYSIN DD *
* CICS system initialization parameters
SIT=6$,START=COLD,
PDIR=1$, ( SUFFIX of PSB directory

.END
/*

CONSOLE
The meaning of .END through the console depends on whether you are entering new parameters
or entering corrections. The two meanings are as follows:
1. If you are keying new parameters in response to message DFHPA1104, .END terminates
parameter reading, and CICS starts initialization according to the SIT it has loaded, but
modified by any system initialization parameters you have supplied. Until you enter the .END
control keyword, CICS continues to prompt you for system initialization parameters.
2. If you have coded PARMERR=INTERACT, and CICS detects a parameter error, either in the
keyword or in the value that you have assigned to it, CICS prompts you to correct the error with
message DFHPA1912 or DFHPA1915. If you enter the correct keyword or value, initialization
resumes with CICS continuing to process either the PARM parameter, the SYSIN data set, or
prompting for more system initialization parameters through the console, depending on where
CICS detected the error. If you cannot correct the error, but want CICS to continue with the
initialization process, you can enter .END to end the error correction phase.

Processing the PARM parameter

If you omit the PARM parameter from the EXEC PGM=DFHSIP statement, CICS assumes that there are no
SIT overrides or other initialization parameters and tries to load an unsuffixed module named DFHSIT.
As a general rule, the PARM parameter must at least specify the suffix of your system initialization
table, using the SIT keyword. Alternatively, you can code the special SYSIN keyword as the only PARM
parameter, and supply the suffix of your SIT and the other system initialization parameters from the
SYSIN data set.
CICS scans the PARM string looking for a SIT parameter, any of the special control keywords, or any
system initialization parameters, and proceeds as follows:
• If CICS finds a SIT parameter but no SYSIN keyword, CICS tries to load the SIT as soon as it has
finished scanning the PARM parameter. Processing any CICS system initialization parameters that are
also present in the PARM parameter takes place only after the SIT has been loaded.
• If CICS finds a SIT parameter and also a SYSIN keyword, CICS does not try to load the SIT until it has
also finished scanning the SYSIN data set. In this case, loading the SIT is deferred because there might
be other SIT parameters coded in the SYSIN data set that override the one in the PARM parameter.
Processing any system initialization parameters that are also present in the PARM parameter takes place
only after the SIT has been loaded.

Rules for coding the PARM parameter

The following rules apply when coding the PARM parameter:

Chapter 5. Setting up a CICS region 167

 • The maximum number of characters you can code is 100, excluding the opening and closing delimiters,
which can be either apostrophes or parentheses.
• All CICS system initialization parameters must be separated by a comma, and the separating commas
are included in the 100 character limit. Because of this limiting factor, you might prefer to limit the use
of the PARM parameter to specify the SYSIN control keyword only.
The rules for coding the PARM parameter on an EXEC job control statement are described fully in z/OS
MVS JCL Reference.

Processing the SYSIN data set

CICS scans the SYSIN data set looking for a SIT= parameter and any of the special keywords, as well as
system initialization parameters.
If CICS finds a SIT= parameter in SYSIN, it tries to load that SIT, overriding any that was specified in the
PARM parameter. If CICS does not find a SIT= parameter in SYSIN, it tries to load any SIT specified in the
PARM parameter.
However, if after scanning the PARM parameter and the SYSIN data set CICS has not found a SIT=
parameter, CICS does one of the following:
1. If you specified CONSOLE in the PARM parameter or in the SYSIN data set, CICS prompts you with the
following message to enter the SIT suffix as the first parameter through the console:

rr DFHPA1921 DBDCCICS PLEASE SPECIFY THE REQUIRED SIT SUFFIX, OR

SPECIFY 'NONE'(UNSUFFIXED).

2. If you did not specify CONSOLE, CICS tries automatically to load an unsuffixed SIT module (DFHSIT). If
this load fails, CICS issues message DFHPA1106, requesting a SIT suffix in reply to the message.
Note: CICS does not process any system initialization parameters that are coded in the PARM parameter
and the SYSIN data set until after the SIT has been loaded.

Rules for coding CICS system initialization parameters in the SYSIN data set
When you code CICS system initialization parameters in the SYSIN data set, observe the following rules.
• You must use a comma to separate parameters that are on the same line.
• You can optionally use a comma at the end of a SYSIN record.
• You can use an asterisk in column 1 to code comments, or to remove an initialization parameter
temporarily from a specific execution of CICS.
• You can also add comments after the parameters on a SYSIN line, but they must be preceded by at least
one blank character.
• Everything that appears in positions 1 through 80 is treated by CICS as input data.
• You can continue, on another line in SYSIN, parameters that have multiple operands if you make the
split immediately after a comma. CICS concatenates the operands, omitting the intervening blanks.
• Generally, you cannot split an individual operand between lines. However, for the following parameters,
you can enter the operand over more than one line. To do this you must code up to column 80 on the
first line before continuing from column 1 on the next.

C-I J-U

CRLPROFILE JVMPROFILEDIR
GMTEXT KEYRING
HTTPSERVERHDR RESOVERRIDES
HTTPUSRAGENTHDR USSCONFIG
INFOCENTER USSHOME

• Be careful when you code parameters that use apostrophes, parentheses, or commas as delimiters,
because if you do not include the correct delimiters, unpredictable results can occur.

168 CICS TS for z/OS: Configuring CICS

 Processing the console entries
Generally, CICS does not begin to read from the console until it has loaded the SIT and processed any
initialization parameters that are coded in the PARM parameter and the SYSIN data set. CICS accepts
system initialization parameters from the console until you terminate the input with .END.
You can specify a SIT= parameter only as the first parameter through the console when prompted by
message DFHPA1921, at which point CICS tries to load the specified SIT. If you try to specify a SIT=
parameter after CICS has loaded the SIT it is rejected as an error.

Rules for coding CICS system initialization parameters at the console

When it is ready to read parameters from the console, CICS displays the DFHPA1104 message.
You can enter as many initialization parameters as you can get on one line of the console, but you must
use a comma to separate parameters. CICS continues to prompt for system initialization parameters with
displays of message DFHPA1105 until you terminate console input by entering the .END control keyword.

Entering corrections to initialization parameters through the console

If you have coded PARMERR=INTERACT, and CICS detects a parameter error, either in the keyword or in
the value you have assigned to it, CICS prompts you to correct the error with message DFHPA1912 or
DFHPA1915.
CICS prompts you to enter corrections to any errors it finds in the PARM parameter or the SYSIN data set
after it has loaded the SIT and as each error is detected. This means that if there is an APPLID parameter
following the parameter that is in error, either in the PARM parameter or in the SYSIN data set, it is the
APPLID coded in the SIT that CICS displays in messages DFHPA1912 and DFHPA1915.

Controlling start and restart

The type of initialization that CICS performs is not only determined by the START parameter. The CICS
local and global catalogs also play a major role in the initialization process, together with any system
initialization parameters that you provide.
You can provide system initialization parameters either in the SIT or at run time by one of the three
methods described in “Using system initialization control keywords” on page 165.

The role of the CICS catalogs

CICS uses its catalogs to save information between CICS shutdown and the next restart.

The global catalog

CICS uses the global catalog to save all resource definitions that were installed when CICS shut down.
These are:
• BMS maps sets and partition sets
• Connections and sessions
• Files
• LIBRARY concatenations
• Programs
• Terminals and typeterms
• Transactions and transaction profiles
• Transient data queues
The resource definitions that CICS saves at its shutdown might have been installed during a cold start
from a list of groups specified by a group list system initialization parameter, or dynamically using RDO
when the CICS region is running.
If you run CICS with START=AUTO and a warm or emergency restart results, CICS restores all the
installed resource definitions as they were at normal CICS shutdown, or at the time of system failure.

Chapter 5. Setting up a CICS region 169

 If a subsequent error occurs during the restore, appropriate messages are displayed. The general rule
is that you cannot alter installed resource definitions during a restart except by coding START=COLD or
START=INITIAL. For details of the results of the possible combinations of CICS restart-type and global
catalog state, see “Specifying the START system initialization parameter” on page 170.
The CICS domains also use the global catalog to save their domain status between runs. In some cases
this information can be overridden during a restart by supplying system initialization parameters. In other
cases the domain information saved in the catalog is always used in a restart. Alternatively, you can
enforce system defaults by performing a cold start.
Note: If you have to reinitialize the global catalog for any reason, you must also reinitialize the local
catalog.

The local catalog

The CICS domains use the local catalog to save some of their information between CICS runs.
If you delete and redefine the local catalog, you must:
1. Initialize the local catalog with an initial set of domain records.
2. Use the CICS-supplied utility program, DFHSMUTL, to re-add records to enable the CICS self-tuning
mechanism for storage manager domain subpools. For details of how to do this, see Local catalog
storage program (DFHSMUTL).
3. Delete and reinitialize the global catalog.
For more information about initializing the local catalog, see “Defining the local catalog” on page 115.
Some of the information that is saved in the local catalog can be overridden at CICS system initialization
by system initialization parameters, such as CICS transaction dump data set status.
Note: If you need to reinitialize the local catalog for any reason, you must also reinitialize the global
catalog.

Specifying the START system initialization parameter

You can influence the type of startup that CICS performs, by specifying the START system initialization
parameter, as follows:
START=AUTO
If you code AUTO as the START operand, CICS determines which of four possible types of start to
perform by looking for two records which may or may not be present in the global catalog:
• The recovery manager control record
• The recovery manager autostart override record
Depending on whether either or both of these records exist, and their contents, CICS decides which
type of start to perform:
Initial start
CICS performs an initial start in each of the following cases:
• There is a recovery manager autostart override record that specifies AUTOINIT in the global
catalog.
• The control record specifies an initial start. (This can happen if a previous initial start failed.)
Note: Because certain domains store information in the local catalog, if you set CICS to perform
an initial start, you should reinitialize the local catalog before you bring up CICS. For more
information on domains that write to the local catalog, see Domains that write to the local catalog.
Cold start
CICS performs a cold start in the following cases:
• The recovery manager control record specifies a cold start. (This can happen if a previous cold
start did not complete.)

170 CICS TS for z/OS: Configuring CICS

 • There is both a recovery manager control record (which specifies anything other than an initial
start) and an autostart override record that specifies AUTOCOLD.
Log records for local resources are purged and resource definitions rebuilt from the CSD or CICS
control tables. Units of work on other systems are resynchronized with this system, as described
under START=COLD.
Warm start
If the recovery manager control record indicates that the previous run of CICS terminated
normally with a successful warm keypoint, CICS performs a warm restart—unless the autostart
override record specifies AUTOINIT or AUTOCOLD, in which case an initial or cold start is
performed.
For the warm restart to be successful, the local catalog must contain the information saved by the
CICS domains during the previous execution.
A warm start restores CICS to the state it was in at the previous shutdown.
You can modify a warm restart by coding the NEWSIT system initialization parameter. This has the
effect of enforcing the system initialization parameters coded in the SIT, overriding any cataloged
status from the previous CICS shutdown.
The exceptions to this is the system initialization parameter FCT, the CSDxxxxx group (for
example CSDACC), and GRPLIST, which are always ignored in a warm restart, even if you specify
NEWSIT=YES. Specifying NEWSIT=YES causes, in effect, a partial cold start.
Emergency start
If the control record in the global catalog indicates that the previous run of CICS terminated in an
immediate or uncontrolled shutdown, CICS performs an emergency restart.
START=AUTO should be the normal mode of operation, with the choice of start being made by CICS
automatically. Use the recovery manager utility program, DFHRMUTL, to set overrides.
START=INITIAL
CICS initializes using the resource definitions specified by the system initialization parameters,
ignoring any previously installed resource definitions saved in a warm keypoint in the global catalog.
This includes all the groups of resources specified by the GRPLIST system initialization parameter,
and those resources specified in CICS control tables.
Note: The global catalog and system log are initialized, and all information in them is lost. Because
recovery information for remote systems is not preserved, damage may be done to distributed units of
work
You should rarely need to specify START=INITIAL; if you want to reinstall definitions of local resources
from the CSD, use START=COLD instead.
Examples of times when an initial start is necessary are:
• When bringing up a new CICS system for the first time.
• After a serious software failure, when the system log has been corrupted.
• If the global catalog is cleared or reinitialized.
• When you want to run CICS with a dummy system log. (If the system log is defined as a dummy, it is
ignored.)
If it is necessary to perform an initial start of CICS, you can do so in two ways:
• By specifying START=INITIAL.
• By using the recovery manager utility program, DFHRMUTL, to set the autostart override record to
AUTOINIT, and specifying START=AUTO.
Note: An initial start does not automatically reinitialize the local catalog.
START=COLD
CICS initializes using the resource definitions specified by the system initialization parameters,
ignoring any previously installed resource definitions saved in a warm keypoint in the global catalog.

Chapter 5. Setting up a CICS region 171

 This includes all the groups of resources specified by the GRPLIST= system initialization parameter,
and those resources specified in CICS control tables.
Recovery information relating to remote systems or to RMI-connected resource managers is
preserved. The CICS log is scanned during startup, and any information regarding unit of work
obligations to remote systems, or to non-CICS resource managers (such as Db2) connected through
the RMI, is preserved. (That is, any decisions about the outcome of local UOWs, needed to allow
remote systems or RMI resource managers to resynchronize their resources, are preserved.)
Note that, on a cold start, the following are not preserved:
• Updates to local resources that were not fully committed or backed out during the previous
execution of CICS. In particular, although remote systems may resynchronize their units of work
successfully, local resources updated in those distributed units of work are not locked and need not
be in either a committed or a backed-out state.
• Recovery information for remote systems connected by LU6.1 links, or for earlier releases of CICS
systems connected by MRO.
• Any program LIBRARY definitions that had been dynamically defined. Only the static DFHRPL
concatenation will remain, together with any LIBRARY definitions in the grouplist specified at
startup or installed via BAS at startup.
A start initiated by START=COLD is not entirely without reference to the previous run of a CICS system
using the same global catalog. If you want to perform a fully cold start of CICS, without reference to
any previous execution, code START=INITIAL. If you want to reinstall definitions of local resources
from the CSD, use START=COLD.
There may be times when it is necessary to perform a cold start of CICS, irrespective of the type of
system termination that CICS recorded in the global catalog. You can do this in two ways:
• By specifying START=COLD.
• By using DFHRMUTL to set the autostart override record to AUTOCOLD, and specifying
START=AUTO.
Note: A cold start does not automatically reinitialize the local catalog.
Table 31 on page 172 shows how the effect of the START parameter depends on the state of the CICS
global catalog and system log.
Note: If the system log is defined as a dummy, it is ignored.

Table 31. Effect of the START= parameter in conjunction with the global catalog and system log
START State of global catalog State of system Result at restart
parm. log
Any. Not defined to VSAM. Any. JCL error.
INITIAL Defined. Any. CICS performs an initial start. The
global catalog and system log are
initialized.
COLD Defined but contains no recovery Any. After prompting for confirmation,
manager control record. CICS performs an initial start. The
global catalog and system log are
initialized.
COLD Contains recovery manager Not defined or Message DFHRM0401 is issued.
records. dummy or Startup fails.
empty.

172 CICS TS for z/OS: Configuring CICS

Table 31. Effect of the START= parameter in conjunction with the global catalog and system log
(continued)
START State of global catalog State of system Result at restart
parm. log
COLD Contains recovery manager Contains CICS performs a cold start.
records. records from Recovery records in the system
previous run. log that relate to changes to local
resources are deleted.
AUTO Defined but contains no recovery Any. Message DFHRM0137 is issued.
manager control record and no Startup fails.
AUTOINIT autostart override.
AUTO Contains a recovery manager Any. CICS performs an initial start,
AUTOINIT autostart override. without prompting. The global
catalog and system log are
initialized.
AUTO Contains a recovery manager Contains CICS performs a cold start.
control record that does not records from Recovery records in the system
indicate an initial start, and an previous run. log that relate to changes to local
AUTOCOLD autostart override. resources are deleted.
AUTO Contains recovery manager Not defined or Message DFHRM0401 is issued.
records, but no AUTOINIT dummy or Startup fails.
override. empty.
AUTO Contains a recovery manager Any. CICS performs an initial start. The
control record indicating an initial global catalog and system log are
start. initialized.
AUTO Contains a recovery manager Contains CICS performs a cold start.
control record indicating a cold records from Recovery records in the system
start, and no autostart override. previous run. log that relate to changes to local
resources are deleted.
AUTO Contains a recovery manager Contains CICS performs an emergency start.
control record indicating an records from
emergency start, and no autostart previous run.
override.
AUTO Contains a recovery manager Contains CICS performs a warm start.
control record indicating a warm records from
start, and no autostart override. previous run.

Note:
1. It is important to keep the CICS global and local catalogs in step. If CICS tries to perform a warm
or emergency start and finds that the local catalog has been initialized, startup fails. Therefore, only
initialize the local catalog at the same time as the global catalog.
2. It is recommended that you always run the DFHRMUTL and DFHCCUTL utilities in the same job. Run
DFHRMUTL first and check its return code before running DFHCCUTL. If you do this, the global and
local catalogs should never get out of step.
Table 32 on page 174 shows the effect of different types of CICS startup on the CICS trace, monitoring,
statistics, and dump domains.

Chapter 5. Setting up a CICS region 173

 Table 32. Effect of the type of startup on CICS domains
Domain State of the CICS catalogs Warm or emergency start
Trace Not relevant. Domain initializes according
to the system initialization
parameters.
Monitoring The global catalog is newly Domain initializes according
initialized. to the system initialization
parameters.
Monitoring The global catalog contains Domain uses monitoring
status of monitoring at the status from the catalog,
previous CICS shutdown. but modified by any
system initialization override
parameters.
Statistics The global catalog is newly Domain initializes according
initialized. to CICS-defined system
default values.
Statistics The global catalog contains Domain uses statistics
status of statistics at CICS status from the catalog.
shutdown.
Dump The global catalog is newly Domain initializes the
initialized. dump table according
to CICS-defined system
default values. Other dump
attributes are set by system
initialization parameters.
Dump The global catalog contains Domain reads the dump
dump status at CICS table and dump status from
shutdown. the catalog. Other dump
attributes are modified by
any system initialization
parameters.
Initial or cold start
Domain initializes according
to the system initialization
parameters.
Domain initializes according
to the system initialization
parameters.
Domain initializes according
to the system initialization
parameters.
Domain initializes according
to CICS-defined system
default values.
Domain initializes according
to CICS-defined system
default values.
Domain initializes an empty
dump table, and takes CICS-
defined default action for all
dump requests. Other dump
attributes are set by system
initialization parameters.
Domain initializes an empty
dump table, and takes CICS-
defined default action for all
dump requests. Other dump
attributes are set by system
initialization parameters.

CICS startup and the z/OS Communications Server session

In an SNA network, the session between CICS and the z/OS Communications Server is started
automatically if the Communications Server is started before CICS.
If the z/OS Communications Server is not active when you start CICS, you receive the following messages:

F vtamname,USERVAR,ID=generic-applid,VALUE=specific-applid
+DFHSI1589D 'applid' VTAM is not currently active.
+DFHSI1572 'applid' Unable to OPEN VTAM ACB - RC=xxxxxxxx, ACB CODE=yy.

If you receive messages DFHSI1589D and DFHSI1572, you can start the CICS-z/OS Communications
Server session manually when the Communications Server eventually starts, by using the CEMT SET
VTAM OPEN command from a supported MVS console or a non-Communications Server terminal.
If the z/OS Communications Server is active, but CICS still cannot open the SNA ACB because
Communications Server does not recognize the CICS APPLID, you receive the following messages:

F vtamname,USERVAR,ID=generic-applid,VALUE=specific-applid
+DFHSI1592I 'applid' CICS applid not (yet) active to VTAM.
+DFHSI1572 'applid' Unable to OPEN VTAM ACB - RC=00000008, ACB CODE=5A.

174 CICS TS for z/OS: Configuring CICS

This might be caused by an error in the value of APPLID operand, in which case you must correct the error
and restart CICS. For information about other causes and actions, see CICS messages.

The CICS parameter manager domain

In addition to loading the system initialization table at the start of initialization, and reading any other
parameters from PARM, SYSIN, or the system console, the parameter manager domain is responsible for
the management of the SIT.
With the exception of the application domain (AP) which uses the SIT directly, the parameter manager
domain passes system initialization parameters to the other CICS domains on request.
The domain initialization process is as follows:
Query the type of startup
With the exception of the trace domain, each domain asks the parameter manager for the type of
startup—initial, cold, or warm. (For this purpose, the parameter manager domain treats an emergency
restart as a warm start.)
Startup is initial or cold
If startup is initial or cold, domains do not read their domain records from the catalogs. Instead,
they request system initialization parameters from the parameter manager domain. Because it is a
cold start, the parameter manager domain returns all system initialization parameters from the SIT,
modified by any overrides.
Startup is warm
If startup is warm, domains try to perform a warm start by reading their domain records from the
catalogs:
• If they succeed in reading their status records, domains perform a warm start. Where applicable,
they also request system initialization parameters from the parameter manager domain. Because it
is a warm start, the parameter manager domain returns only those system initialization parameters
supplied as overrides by PARM, SYSIN, or the system console.
• If they fail for any reason to read their status records, domains perform a cold start. They do this
either by requesting all system initialization parameters from the parameter manager domain, or by
using system default values if the domain does not have any system initialization parameters.
NEWSIT or new suffix
Although a START=AUTO may resolve to a warm start, parameter manager enforces most system
initialization parameters if:
• You specify NEWSIT=YES as a system initialization parameter in PARM, SYSIN, or through the
console.
• You specify a different SIT suffix from the previous run of CICS. Parameter manager saves the suffix
from each run in the global catalog, and, if it detects a new suffix, it forces the NEWSIT=YES option.
For details of the parameters that are ignored when you specify NEWSIT=YES, see the NEWSIT
parameter description in NEWSIT system initialization parameter.
Note: The trace domain is an exception to the above rules in that it will always start cold. Trace does not
save its status at CICS shutdown like the other domains, and regardless of the type of startup, it requests
all of its system initialization parameters from the parameter manager domain.

End of CICS startup

Whichever type of startup is performed, when the DFHSI1517 message is displayed on the operating
system console, CICS is ready to process terminal requests.
When the startup process is completed, users are able to enter transactions from any terminals that are
connected to CICS. For information about the CICS-supplied transactions, see CICS supplied transactions
descriptions.
Even though DFHSI1517 signals the end of system initialization, the region might not be fully ready to
receive work. This is because in some cases initialization continues after this message. For example,

Chapter 5. Setting up a CICS region 175

 some bundle-defined resources are being installed asynchronously; so resources such as JVMSERVERs
required for some applications have not completed initialization, even though the TCP/IP listener is open
and accepting work. This could cause transactions to abend. For web services, a pipeline scan might not
have completed, so use of the web service before the scan completes will fail.
You can allow CICS to have a warm-up process by setting the WLMHEALTH system initialization parameter.
If the z/OS Workload Manager health service is active in the region, when the message DFHSI1517 is
returned, the warm-up process is started. Then CICS adjusts the region's z/OS WLM health value to
control flow of work into the region until the region is fully capable to process work. For more information
about the CICS warm-up process, see CICS warm-up and cool-down by use of z/OS Workload Manager
health service.

Retrieving information about system initialization parameters used

at system startup
You can use the CICSPlex SM API to discover information about CICS system initialization parameters
and system initialization parameter overrides that were used at system startup. System initialization
parameter retrieval is supported by the CICSPlex SM command-level interface, the CICS management
client interface (CMCI), and the Web User Interface (WUI).
Note: The CICSPlex SM API retrieves only the system initialization parameters as specified at system
startup and doesn't display the current, active system values.
When you retrieve parameters, you have the following options:
• You can retrieve the system initialization parameters combined with any specified override values.
• You can retrieve the original system initialization parameter values as specified at system startup.
• You can retrieve the values from a single override source.
In common with many other CICSPlex SM operations, you can control which CICS regions the retrieval
operates on by specifying context and scope.
System initialization parameter retrieval is implemented using the CICSPlex SM resource SYSPARM. The
SYSPARM resource has two required parameters, PARMSRCE and PARMTYPE, associated with the GET
operation. You use these parameters to specify which parameters to retrieve according to their source.
You can implement system initialization parameter discovery in the following ways:
• In the CICS Explorer SM Operations views > Regions view. Right-click a region and select Show SIT
Parameters.
• In an API program using the EXEC CPSM GET command operating on the SYSPARM object.
• Using the CMCI GET method operating on the CICSSystemParameter external resource.
• Using the WUI operations view based on the SYSPARM resource table linked from the CICS region view
set.
When you use the EXEC CPSM GET command or the CMCI, you can define a parameter expression using
PARMSRCE and PARMTYPE to specify which parameters to retrieve. In the WUI you can use PARMSRCE
and PARMTYPE as filters to control the records displayed. Both of these parameters are mandatory. For
PARMTYPE, you must specify a value of SIT. For PARMSRCE, specify one of the following options:
COMBINED
Combination of the original system initialization parameter definitions and any applied parameter
overrides
CONSOLE
Override parameters as specified at startup on the system console
JCL
Override parameters provided through a JCL EXEC PGM statement
SYSIN
Override parameters from the startup job stream defined in the SYSIN data set

176 CICS TS for z/OS: Configuring CICS

 TABLE
The original system initialization table values extracted from the DFHSITxx load module
The parameters and override values are returned in the order of the KEYWORD attribute of the SYSPARM
resource table irrespective of their order in the source, for example the SYSIN data set.
System parameter values can exceed 255 bytes. In these cases the parameter value is split into multiple
records each containing a maximum of 255 bytes of parameter value. Each record has a unique segment
number, which can be used to order the records correctly, a total segment number which contains the
number of segments for this parameter value, and a total value length field, which contains the overall
length of the segment lengths added together.
You must ensure that the system initialization parameters to be retrieved were valid for the CICS region
at CICS startup. The retrieval operation can behave inconsistently if invalid parameter values have been
corrected from the console at startup. Some parameters show the corrected values while others display
their original values. Additionally for some corrected values, the system parameter source location might
be returned as the console instead of the original source location.
The following CMCI request retrieves the values of the control tables suffixes set to for region REGION in
the CICSplex MYPLEX.

/CICSSystemManagement/CICSSystemParameter/<MYPLEX>/<REGION>?PARAMETER=PARMSRCE(COMBINED)
%20PARMTYPE(SIT)&CRITERIA=KEYWORD%3D++T%20AND%20NOT%20KEYWORD%3DMXT

Specifying feature toggles

CICS TS continuous delivery delivers new functional enhancements on a much shorter cadence, providing
much more rapid access to those new features. Usually, these features are not CICS base functions and
are disabled by default. To enable and use these features in your CICS region, you must set up one or
more feature toggle configuration files. In the feature toggle configuration file, you can define feature
toggles to switch features on or off. For some features, you can also define feature toggles to specify
configuration options.
Note: Feature toggles are lightweight configuration options and are not subjected to validation. If an
invalid feature toggle is specified, it appears in the system log under message DFHPA1956I, but its value
is ignored and the default value is used instead.

Before you begin

A list of features that you can choose to install and configure in your CICS region is available in Feature
toggles. Additional features might also be made available and described in APARs. The features that are
available for enablement depend on which APARs were applied to your CICS system. For a summary of
changes to feature toggles by release, see Changes to feature toggles.
Follow the links in Feature toggles to locate the topics that describe individual toggle-enabled features.
Each topic gives you a function overview and describes the feature toggles for enabling the feature and
setting its configuration options, as well as the default values that are used when no feature toggle
configuration files are found during CICS startup.

About this task

There are two types of feature toggle configuration files: a common file and a region-level file.
You can use a common file to control the features that you want to enable in a group of CICS regions that
share the same USSCONFIG directory. You can use the common file to prevent one or more feature toggle
settings or configuration options from being set by region-level files.
You can use a region-level file to try out a feature on a single region before it is enabled in the production
environment.
Both files are optional. If neither is present, default values are used.
A feature configuration file specifies feature toggles to enable features or set configuration options.

Chapter 5. Setting up a CICS region 177

 A feature toggle that is used to enable a feature takes the following form:

com.ibm.cics.component.feature = {true|false}

A feature can have one or more configuration options. A feature toggle that is used to set a configuration
option takes the following form:

com.ibm.cics.component.feature.config_property = value

The value can be a number, string, or boolean.

Tip:
• You can use a line-continuation character \ at the point you want the line to break. If a \ character is
required in either a name or value, double the \ character to escape line continuation.
• You can use a hash character # at the start of a line to specify a comment line.
You can use the optional parameter finalize in the common file to prevent a region-level file from
changing the feature toggles. For example, if you have given developers access to their region-level file,
you can prevent them from using certain features. To lock a feature toggle setting, specify finalize
preceding the toggle setting in the same line, as in the following example:

finalize com.ibm.cics.bms.ids=true
finalize com.ibm.cics.bms.ids.vtamignore=false

Procedure
• To set up a common configuration file, follow the procedure in “Setting up a common configuration
file” on page 179.
• To set up a region-level configuration file, follow the procedure in “Setting up a region-level
configuration file” on page 179.
• Restart the CICS region.

Results
The feature toggle configuration files are read at CICS startup, immediately after system initialization
reads the SIT parameters. The common file is read first, followed by the region-level file. Settings in the
region-level file override settings in the common file, except for common settings that are specified with
the parameter finalize. If any region-level file attempts to override any finalized settings, message
DFHPA1957 is issued during CICS initialization, and the region-level setting is ignored.
After the CICS region is started, you can see the feature toggles and their values in message DFHPA1956I
in the CICS log. The message indicates which settings were read in and stored from the feature toggle
configuration file, but it does not indicate whether and how the feature toggles are being used.
Restriction: CICSPlex SM does not display feature toggles.

Example
This is an example feature toggle configuration file:

# Feature Toggle File

com.ibm.cics.bms.ids=true 1
com.ibm.cics.bms.ids.vtamignore=false 2
com.ibm.cics.bms.ids.action=ABEND 3

1 switches on the BMS 3270 Intrusion Detection Service.

2 and 3 are configuration options for the feature.

178 CICS TS for z/OS: Configuring CICS

 What to do next
You can inquire the enablement and configuration settings of any toggle-enabled features in a CICS
region by using the SPI command INQUIRE FEATUREKEY or the parameter domain function DFHPAIQX
INQUIRE_FEATUREKEY. For more information, see INQUIRE FEATUREKEY and Parameter domain XPI
functions.

Setting up a common configuration file

You can use a common file to set up feature toggles for a group of regions that share the same
USSCONFIG directory.

About this task

A feature toggle common configuration file must be in the USSCONFIG directory of the CICS region where
you want to enable features.
If you want to apply a common configuration file to a group of regions, these regions must share the same
USSCONFIG directory.

Procedure
1. Create a file with the name featuretoggle.properties in the USSCONFIG directory.
The USSCONFIG directory is specified by the USSCONFIG system initialization parameter. The default
directory is /var/cicsts/dfhconfig.
Note: The CICS installation process creates an empty featuretoggle.properties file in /
pathprefix/usr/lpp/cicsts/ussdira/dfhconfig, which you can copy to the required
USSCONFIG directory.
2. In the file, for each feature that you want to use, specify the feature toggle for enabling the feature,
and, if necessary, the feature toggles for setting configuration options, as described in “Specifying
feature toggles” on page 177. The file must be saved in the EBCDIC file encoding on UNIX System
Services.
Note: To prevent region-level files from setting certain feature toggles specified in the common file,
you can specify the parameter finalize in the toggle setting, as in the following example:

finalize com.ibm.cics.bms.ids=true
finalize com.ibm.cics.bms.ids.vtamignore=false

If any region-level file attempts to override any finalized settings, message DFHPA1957 is issued
during CICS initialization, and the region-level setting is ignored.

Results
You have now created a feature toggle common configuration file, featuretoggle.properties, in the
USSCONFIG directory.

Setting up a region-level configuration file

You can use a region-level file to set up feature toggles for a single region. The region-level file must be
set up in a subdirectory in the USSCONFIG directory of the region.

Procedure
1. Create a directory in the USSCONFIG directory of the CICS region.
The USSCONFIG directory is specified by the USSCONFIG system initialization parameter. The default
directory is /var/cicsts/dfhconfig.

Chapter 5. Setting up a CICS region 179

 The name of the new directory must be the same as the applid of the region and must be in uppercase.
2. Create a file with the name featuretoggle.properties in this directory.
3. In the file, for each feature that you want to use, specify the feature toggle for enabling the feature,
and, if necessary, the feature toggles for setting configuration options, as described in “Specifying
feature toggles” on page 177. The file must be saved in the EBCDIC file encoding on UNIX System
Services.

Results
You have now created a feature toggle region-level configuration file, featuretoggle.properties, for
the CICS region.
Related information
USSCONFIG system initialization parameter

CICS startup
Depending on your system environment, you can start the CICS job from a procedure by using the START
command, or you can submit the CICS startup job stream through the internal reader.

About this task

For an example of a batch job that you can submit through the internal reader, see “A sample CICS startup
job” on page 183. “A sample CICS startup procedure” on page 191 gives an example of a cataloged
procedure suitable for starting CICS as a started task.
When you run the startup job, you start a process called CICS system initialization. This process
must finish before you run any transactions. Completion of CICS initialization is shown by the following
message at the system console:

DFHSI1517 - applid: Control is being given to CICS.

CICS initialization involves many activities, some of which are:

• Obtaining the required storage for CICS execution from the private area in the CICS address space,
above and below the 16MB line.
• Setting up CICS system parameters for the run, as specified by the system initialization parameters.
• Loading and initializing the CICS domains according to the start option specified by the START= system
initialization parameter.
• Loading the CICS nucleus with the required CICS modules.
• Installing CICS resource definitions by:
– Loading, from the CSD, the groups of resources specified by the GRPLIST= system initialization
parameter
– Loading the control tables specified by system initialization parameters
• Opening the data sets necessary for initialization, including any needed for backout if the previous run
of your CICS region was not shut down normally. Data sets may also be opened for backout even after
a successful shutdown, if they had suffered backout failures before the CICS shutdown, because failed
backouts are retried at emergency restart.
• Opening BSAM sequential devices as required in the terminal control table (TCT).
Also, if you are operating CICS with CICS recovery options, backout procedures may be used to restore
recoverable resources to a logically consistent state. For example, backout can occur if you start CICS
with START=AUTO and CICS detects that the previous shutdown was immediate or uncontrolled. With
SDTRAN, an immediate shutdown does not always leave in-flight units of work to be backed out. Also,
even if there were no in-flight UOWs, it is possible (although rare) that there were backout-failed UOWs
for which backout will be retried.

180 CICS TS for z/OS: Configuring CICS

 For background information about backout, and recovery and restart, see Troubleshooting for recovery
processing.
In the final stages of initialization, a set of programs can be executed as specified in a program list table
(PLT). You specify the full name or suffix of the PLT you want by means of the PLTPI parameter in the
SIT. Initialization PLT programs run under control of a CICS task in CICS key. Their storage is in CICS-key
storage, and protected from overwriting by other transactions.
The PLTPI resource managers start in the following sequence when specified in the system initialization
table:
1. CPSMCONN
2. DBCTLCON
3. DB2CONN
4. MQCONN
This sequence only applies to the above system initialization parameters and not for PLTPI programs in
general.
For more information about the user ID under which PLT programs run, see Surrogate security.
For programming information about writing PLT programs, see Writing initialization and shutdown
programs .
If you are running CICS with Db2, you can specify the Db2 subsystem ID to be used at PLT startup by the
INITPARM system initialization parameter, as follows:

INITPARM=(DFHD2INI='yyyy')

where yyyy is the 4-character Db2 subsystem ID. The value must conform to MVS JCL rules about
special characters. You cannot use the ID of a data sharing group of Db2 subsystems on the INITPARM
system initialization parameter — you must specify the ID of a single Db2 subsystem. If you want to
use the INITPARM system initialization parameter to specify a Db2 subsystem, leave blank both the
DB2GROUPID and the DB2ID in the installed DB2CONN definition. An ID specified in either of these
attributes of the DB2CONN definition overrides an ID specified on the INITPARM system initialization
parameter.

Setting address space storage limits for a CICS region

When you submit your CICS job, set the z/OS parameters REGION and MEMLIMIT to specify the amount of
virtual storage for the address space in which CICS runs.

About this task

You cannot alter the REGION and MEMLIMIT values for the CICS region while CICS is running. You can
specify new values only when you start the CICS region.
The REGION parameter specifies your request for an amount of 24-bit and 31-bit storage, that is, storage
below the bar, for the CICS address space. Up to 2047 MB of storage can be requested, but you must
leave enough storage below the bar for the system region in 24-bit storage, and items in the high private
area such as the local system queue area (LSQA). You can specify the REGION parameter in different ways
to request a specific amount of storage, or all the available 24-bit or 31-bit private storage. The resulting
region size below the bar can be unpredictable.
The MEMLIMIT parameter specifies the limit of 64-bit (above-the-bar) storage for the CICS region. A CICS
region needs a MEMLIMIT value of at least 10 GB. The default value in z/OS for MEMLIMIT is 2 GB.

Procedure
1. Calculate the amount of 24-bit (below-the-line) storage and 31-bit (above-the-line) storage to request
on the REGION parameter.
See Estimating REGION.

Chapter 5. Setting up a CICS region 181

 2. Specify a suitable REGION parameter for the CICS region.
You can set REGION in the following ways:
• You can specify the REGION parameter in the JOB statement in the CICS JCL. In this situation, each
step of the job runs in the requested amount of space.
• You can specify the REGION parameter in the EXEC statement (program execution line) for CICS. In
this situation, each step runs in its own amount of space. Use the EXEC statement instead of the
JOB statement if different steps need greatly different amounts of space. For example, use the EXEC
statement if you are using extra job steps to print auxiliary trace data sets after CICS has shut down
(as in the DFHIVPOL installation verification procedure).
• The z/OS installation exit IEFUSI can limit the REGION value that you specify. For information about
IEFUSI, see IEFUSI - Step Initiation Exit in z/OS MVS Installation Exits.
For further details about specifying the REGION parameter, and information about the amount of
storage that z/OS allocates in response to your request, see REGION Parameter in the z/OS MVS JCL
Reference.
3. Calculate the amount of 64-bit (above-the-bar) storage that you need to specify with the MEMLIMIT
parameter.
This amount depends on the facilities that you plan to use. See Estimating and checking MEMLIMIT.
4. Identify the MEMLIMIT value that applies to your CICS region, and change it if necessary.
You can set MEMLIMIT in the following ways:
• A MEMLIMIT value can be specified in the JOB statement in the CICS JCL, or in the EXEC statement
(program execution line) for CICS.
• If there is no MEMLIMIT value specific to the CICS region, the MEMLIMIT value that is set in the z/OS
SMFPRMxx PARMLIB member, or the system default, applies.
• The z/OS installation exit IEFUSI can override any other MEMLIMIT values.
The following example shows a MEMLIMIT value set in the program execution line:

//CICS EXEC PGM=DFHSIP,PARM='SI',REGION=0M,MEMLIMIT=10G

For further details about changing a MEMLIMIT value in z/OS, or determining the value that applies to
the CICS region that you are setting up, see Limiting the use of private memory objects in the z/OS MVS
Programming: Extended Addressability Guide.

Using the sample startup job stream

You can use the sample job control statements to initialize a CICS region.

About this task

The sample startup job stream is based on the system initialization parameters contained in the CICS-
supplied sample table, DFHSIT6$.
For more information about the DD statements in this job stream that are needed by CICS and IMS, see
the appropriate section in “Defining data sets” on page 85.
JCL similar to that in “A sample CICS startup job” on page 183 is supplied as a sample startup procedure,
DFHSTART, in the CICSTS61.CICS.SDFHINST library. You can use the DFHSTART procedure to start the
CICS regions, or as a basis for your own startup procedures. For information about the DFHSTART
procedure, see CICS startup procedure, DFHSTART in Installing.

182 CICS TS for z/OS: Configuring CICS

A sample CICS startup job
You can use the sample CICS startup job to help you determine and adjust values needed for CICS startup
parameters.
The EXEC statement contains the REGION parameter to define the size of CICS region. In this example,
the value is set to 240, requesting MVS to allocate to the job all 16 MB of private storage below the 16 MB
line and an extended region size of 240 MB.

CICS startup job stream

/*
//* 1 The JOB statement
//CICSRUN JOB accounting info,name,CLASS=A,
// MSGCLASS=A,MSGLEVEL=(1,1),NOTIFY=userid
//*
//* 2 The JOBPARM statement
/*JOBPARM SYSAFF=sysid
/*
//***********************************************************
//******************* EXECUTE CICS ************************
//***********************************************************
//*
//* 3 The EXEC CICS=DFHSIP statement
//CICS EXEC PGM=DFHSIP,REGION=240M,
//* 4 System initialization parameters specified on PARM parameter
// PARM=('SIT=6$',
// 'DSALIM=6M,EDSALIM=120M',
// 'RENTPGM=PROTECT,STGPROT=YES',
// 'START=AUTO,SI')
//*
//* 5 System initialization parameters specified on the SYSIN data set
//SYSIN DD *
GRPLIST=(DFHLIST,userlist1,userlist2),
LPA=YES,
APPLID=CICSHTH1,
DFLTUSER=CICSUSER, The default user ID
MXT=30, Maximum number of user tasks is 30
INITPARM=(DFHDBCON='01'),
Pass DFSPZP01 suffix to DBCTL connect program
INITPARM=(DFHD2INI=('MYDB'),
Connect to DB2 subsystem MYDB
ISC=YES, Include intersystem communication program
IRCSTRT=YES, Start interregion communication
.END
/*
//* 6 The STEPLIB library
//STEPLIB DD DSN=CICSTS61.CPSM.SEYUAUTH,DISP=SHR
// DD DSN=CICSTS61.CICS.SDFHAUTH,DISP=SHR
// DD DSN=CEE.SCEERUN2,DISP=SHR
// DD DSN=CEE.SCEERUN,DISP=SHR
//*
//* 7 The CICS library (DFHRPL) concatenation
//DFHRPL DD DSN=CICSTS61.CICS.SDFHLOAD,DISP=SHR
//* Your application library
// DD DSN=your.prog.library,DISP=SHR
//* Your CICS control tables library
// DD DSN=your.table.library,DISP=SHR
//* The Language Environment runtime data sets
// DD DSN=CEE.SCEECICS,DISP=SHR
// DD DSN=CEE.SCEERUN2,DISP=SHR
// DD DSN=CEE.SCEERUN,DISP=SHR
//* The Debug Tool runtime library
// DD DSN=EQA.SEQAMOD,DISP=SHR
//* 7a The DB2 load library
// DD DSN=SYS2.DB2.SDSNLOAD,DISP=SHR
//* 8 Auxiliary temporary storage data sets
//DFHTEMP DD DSN=CICSTS61.CICS.CNTL.CICSHTH1.DFHTEMP,DISP=SHR
//*
//* 9 Intrapartition data sets
//DFHINTRA DD DSN=CICSTS61.CICS.CNTL.CICSHTH1.DFHINTRA,DISP=SHR
//*
//* 10 Auxiliary trace data sets
//DFHAUXT DD DSN=CICSTS61.CICS.CICSHTH1.DFHAUXT,DISP=SHR
//DFHBUXT DD DSN=CICSTS61.CICS.CICSHTH1.DFHBUXT,DISP=SHR
//*

Chapter 5. Setting up a CICS region 183

 //* 11 Extrapartition data sets
//DFHCXRF DD SYSOUT=*
//LOGUSR DD SYSOUT=*,DCB=(DSORG=PS,RECFM=V,BLKSIZE=136)
//MSGUSR DD SYSOUT=*,DCB=(DSORG=PS,RECFM=V,BLKSIZE=140)
//COUT DD SYSOUT=*,DCB=(DSORG=PS,RECFM=V,BLKSIZE=137)
//CEEMSG DD SYSOUT=A
//CEEOUT DD SYSOUT=A
//*
//* 12 The CICS local catalog data set
//DFHLCD DD DSN=CICSTS61.CICS.CICSHTH1.DFHLCD,DISP=SHR
//* 13 The CICS global catalog data set
//DFHGCD DD DSN=CICSTS61.CICS.CICSHTH1.DFHGCD,DISP=SHR,
// AMP=('BUFND=33,BUFNI=32,BUFSP=1114112')
//*
//* 14 The transient data destination data set (CXRF)
//DFHCXRF DD SYSOUT=A
//*
//* 15 The CICS transaction dump data sets
//DFHDMPA DD DSN=CICSTS61.CICS.CICSHTH1.DFHDMPA,DISP=SHR
//DFHDMPB DD DSN=CICSTS61.CICS.CICSHTH1.DFHDMPB,DISP=SHR
//*
//* 16 MVS system dump data sets
//SYSABEND DD SYSOUT=*
//*
//* 16a Default stdout file for C-language system services used by CICS
//SYSPRINT DD SYSOUT=*
//* 17 The CICS system definition data set
//DFHCSD DD DSN=CICSTS61.CICS.DFHCSD,DISP=SHR
//*
//* 18 The CICS BTS local request queue data set
//DFHLRQ DD DSN=CICSTS61.CICS.DFHLRQ,DISP=SHR
//*

//* 19 The CMAC data file

//DFHCMACD DD DSN=CICSTS61.CICS.DFHCMACD,DISP=SHR
//*
//* 20 The CDBM group command file
//DFHDBFK DD DSN=CICSTS61.CICS.DFHDBFK,DISP=SHR
//*
//* 21 FILEA & other permanently allocated data sets
//* (The FILEA DD statement below overrides the CSD definition in
//* group DFHMROFD)
//FILEA DD DISP=SHR,
// DSN=CICSTS61.CICS.CICSHTH1.FILEA
//*
//APPLICA DD DSN=CICSTS61.CICS.CICSHTH1.APPLICA,DISP=SHR
//APPLICB DD DSN=CICSTS61.CICS.CICSHTH1.APPLICB,DISP=SHR
//*
//*
//* 22
//PRINTER DD SYSOUT=A,DCB=BLKSIZE=125,OUTLIM=0
//* User transactions input from sequential terminal
//CARDIN DD *
CESF GOODNIGHT\
/*

1 The JOB statement

The JOB statement specifies the accounting information that you want to use for this run of CICS.
For example:

//CICSRUN JOB 24116475,userid,MSGCLASS=A,MSGLEVEL=(1,1),

// CLASS=A,NOTIFY=userid

2 The JOBPARM statement

The JES JOBPARM statement is included to identify the MVS image on which this CICS (the active
CICS region) is to run.
3 The EXEC CICS=DFHSIP statement
DFHSIP is the program that starts CICS initialization. CICS does not support more than one EXEC
PGM=DFHSIP job step in the same MVS job.
To determine how much of the allocated private storage CICS gives to dynamic storage areas (DSAs)
and leaves for demands on operating system storage, set values for the DSALIM and EDSALIM system
initialization parameters. After obtaining the amount of space required for the DSAs from the total

184 CICS TS for z/OS: Configuring CICS

 defined by the REGION parameter, the remaining storage is available to meet demands for operating
system storage.
In this sample job stream, these system initialization parameters are specified in the PARM parameter.
For more details about the REGION parameter and CICS storage, see “Setting address space storage
limits for a CICS region” on page 181.
If you are running CICS with RACF support, see CICS TS security for information about parameters
related to RACF.
4 System initialization parameters specified on PARM parameter
You can use the PARM parameter of the EXEC statement to specify system initialization parameters as
shown.
The information passed by the PARM parameter is limited to 100 characters. This limit includes
all commas, but excludes the apostrophes delimiting the PARM strings, and excludes the opening
and closing parentheses delimiting the PARM parameter. Internal parentheses enclosing system
initialization operands are included. If 100 characters are not sufficient for the system initialization
parameters that you want to provide at startup, indicate continuation by ending the PARM field
with the SYSIN or CONSOLE control keywords, or SI or CN for short. If you specify SYSIN, system
initialization parameters are read from the SYSIN data set; if you specify CONSOLE, CICS prompts
you to enter parameters through the console. However, if all of your runtime system initialization
parameters are in the PARM parameter, you can end the PARM field without any control keywords, or
by the END control keyword.
In this example, CICS uses the values in the DFHSIT6$ system initialization table, modified by the
system initialization parameters supplied in the PARM field and the SYSIN data set. For this example,
the following system initialization parameters are provided in the PARM parameter:
RENTPGM
Storage for the read-only DSAs, RDSA and ERDSA, is obtained from key-0, non-fetch protected
storage by using the default PROTECT option on the RENTPGM system initialization parameter.
Specify RENTPGM=NOPROTECT for development CICS regions and RENTPGM=PROTECT for
production CICS regions. For more information, see RENTPGM system initialization parameter.
STGPROT
Storage protection is obtained for this run of CICS by specifying YES for the STGPROT system
initialization parameter, or allowing it to default to YES. See STGPROT system initialization
parameter for details.
START
START=AUTO is normally the type of start that you select for a production CICS system, so that
CICS can determine the type of start to be performed.
SI
The PARM statement ends with SI (short for SYSIN), to tell CICS to continue reading overrides
from the SYSIN data set.
5 System initialization parameters specified on the SYSIN data set
You can include the SYSIN data set inline as part of the job stream. System initialization parameters
entered in the SYSIN data set replace any that were entered in the PARM parameter for the same
keyword. If you include the same parameter more than once, the last value read is the value used
for initialization except for INITPARM. If you specify the INITPARM keyword and its parameters more
than once, each one is accepted by CICS, for example:

* The following INITPARM parameters are for DBCTL and a user program
INITPARM=(DFHDBCON='XX,DBCON2',userprog='a,b,c')
* The following INITPARM parameter is for DB2
INITPARM=(DFHD2INI= 'DBA2')

Unless you explicitly code the system initialization control keyword CONSOLE, CICS stops reading
system initialization parameters when it reaches the end of SYSIN or the END control keyword.

Chapter 5. Setting up a CICS region 185

 In the sample job, CONSOLE is not coded in either PARM or SYSIN. The END control keyword
is the last entry in SYSIN, so CICS does not prompt through the console for further system
initialization parameters. After reading the SYSIN data set, CICS loads the specified SIT, applies any
system initialization parameters supplied in the PARM field and the SYSIN data set, and begins the
initialization process.
The SYSIN data set in this example includes several system initialization parameters:
GRPLIST
The group list defined in DFHSIT6$ is DFHLIST, the list that is generated when you initialize the
CSD using the DFHCSDUP INITIALIZE command. DFHLIST contains only the standard resource
definitions required by CICS. One of the group lists specified on the GRPLIST system initialization
parameter must contain those resource definitions required by CICS. You can either include the
resource definitions in one of your own group lists or specify the DFHLIST explicitly. Your own
group lists (userlist1 and userlist2 in the example) must contain all the resource definitions
generated by your installation for your CICS applications. In addition, your group lists must
contain any definitions required for IBM licensed programs that you are using, such as COBOL
or Db2.
LPA
The SIT specifies that modules are not to be used from the link pack area; LPA=YES in SYSIN
specifies that modules are to be used from the LPA in this run.
APPLID
The APPLID for this CICS region is CICSHTH1. If you want this CICS region to use z/OS
Communications Server for terminal access or ISC communication, define this APPLID to z/OS
Communications Server.
CICSID is the generic APPLID of this CICS region, and CICSHTH1 is the specific APPLID of the
active CICS region.
The specific APPLID can be useful for naming those data sets that are unique; for example, dump
data sets.
CICSSVC
245 is the CICS type 3 SVC number installed in the LPA, and defined to MVS in an SVCPARM
statement. For more information, see CICSSVC system initialization parameter.
For guidance information about installing the CICS SVC in the LPA, and defining it to MVS, see
Installing the CICS SVCs in Installing.
DFLTUSER
CICSUSER is the default user ID specified to RACF. During startup, CICS tries to sign on the default
user ID. If it cannot be signed on (for example, if not defined), CICS issues a message and stops
CICS initialization. After the valid default user ID is signed on, its security attributes are used for
all CICS terminal users who do not sign on with the CESN transaction. If the default user ID is
defined to RACF with a CICS segment, the operator attributes in that segment are also used for
users who do not sign on.
MXT
The maximum number of user tasks is limited to 30 for this run. For information about the tasks
that are included in the MXT parameter, see MXT system initialization parameter.
INITPARM
Passes parameters to programs. In this example, the DBCTL suffix (01) of DFSPZPxx is passed to
DFHDBCON, and CICS is told to connect to the Db2 subsystem MYDB. You cannot use the ID of a
data sharing group of Db2 subsystems on the INITPARM system initialization parameter; you must
specify the ID of a single Db2 subsystem. If you want to use the INITPARM system initialization
parameter to specify a Db2 subsystem, leave blank both the DB2GROUPID and the DB2ID in
the installed DB2CONN definition. An ID specified in either of these attributes of the DB2CONN
definition overrides an ID specified on the INITPARM system initialization parameter.

186 CICS TS for z/OS: Configuring CICS

 ISC
Include the intersystem communication program, DFHISP, in order to use interregion
communication (IRC).
IRCSTRT
This CICS is running with MRO, and interregion communication is started during initialization.
6 The STEPLIB library
STEPLIB is the DDNAME of the library containing the modules loaded by the operating
system. DFHSIP, which is loaded from STEPLIB, must receive control in an authorized state,
so each partitioned data set (library) concatenated in STEPLIB must be individually APF-
authorized. In this sample job stream, the CICS authorized library is CICSTS61.CICS.SDFHAUTH.
CICSTS61.CICS.SDFJAUTH is also included, which is required for Java support, and must also be APF-
authorized. If you do not require Java support, do not include this library. CICSTS61.CPSM.SEYUAUTH
is also included in the concatenation so that CICS will load the CICSPlex SM message file at
initialization even if the region is not running as a Managed Address Space.
Placing user-written modules into an APF-authorized library might violate your security and integrity
rules. The CICSTS61.CICS.SDFHAUTH library (and the CICSTS61.CICS.SDFJAUTH library, if used)
must not be included in the MVS link list, so that you can protect the libraries and ensure that
only approved users can run the DFHSIP module. When you define your STEPLIB DD statement,
remember that all other libraries concatenated with the CICSTS61.CICS.SDFHAUTH library or the
CICSTS61.CICS.SDFJAUTH library must also be APF-authorized; for example, IMS.RESLIB. APF-
authorization is required because, if any of the libraries in a STEPLIB concatenation are not
authorized, MVS regards all of them as unauthorized. If there is a non-authorized library in the
STEPLIB concatenation, CICS fails to start, and issues message DFHKE0101 to indicate that the
DFHSIP module is not in an APF-authorized library. For information about authorizing access to CICS
data sets, see RACF data set profiles.
The pregenerated DFHSIP module, which has been link-edited with the authorized attribute
(SETCODE AC(1)), is supplied in CICSTS61.CICS.SDFHAUTH.
You must put the Language Environment runtime libraries, CEE.SCEERUN and CEE.SCEERUN2, in the
STEPLIB concatenation, or the MVS link list, to run COBOL, PL/I, C and C++, and Java programs that
run in a JVM, under Language Environment. Like SDFHAUTH, SCEERUN and SCEERUN2 must be an
APF-authorized library.
The CICS Db2 attachment facility must load the Db2 program request handler, DSNAPRH. You can
either place the Db2 library DSNxxx.SDSNLOAD library in the MVS link list or add it to the STEPLIB
concatenation of the CICS job.
7 The CICS library (DFHRPL) concatenation
DFHRPL is the DD name of the library that contains modules loaded by CICS. Protect individually
the partitioned data sets constituting this library to prevent unapproved or accidental modification of
their contents. The DFHRPL concatenation must include the library containing your CICS application
programs, shown in this example as your.prog.library, and your CICS control tables, shown in
this example as your.table.library.
In this sample job stream, the supplied library is CICSTS61.CICS.SDFHLOAD, which must be included
in the CICS DFHRPL library concatenation. The CICSTS61.CICS.SDFHLOAD library contains only
programs that run in problem state and must not be authorized.
• Language Environment runtime library requirements
The Language Environment provides a common runtime environment for IBM implementations of
assembler and those high-level languages supported by CICS, namely COBOL, PL/I, C, and C++.
To use the Language Environment runtime libraries to support all your program languages,
add the Language Environment runtime libraries SCEERUN2 and SCEERUN to the DFHRPL DD
concatenation. If you are running COBOL programs, also add Language Environment runtime library
SCEECICS to DFHRPL. The SCEECICS library must be concatenated before the SCEERUN library.
Remove any libraries that contain runtime routines from earlier versions of COBOL, PL/I, and C/C++
from the DFHRPL DD concatenation.

Chapter 5. Setting up a CICS region 187

 • Debug Tool library
If you are using Debug Tool to debug CICS applications, include the Debug Tool library SEQAMOD
in DFHRPL. For information about using Debug Tool with CICS, see Using Debug Tool with CICS
applications.
• 7a Db2 requirements
Generally, you do not have to include any Db2 libraries in the DFHRPL DD statement. If you do
require Db2 libraries in the DFHRPL concatenation for an application, they must be placed after
the CICS libraries; for example, add SDSNLOAD in the DFHRPL to support those applications that
issue dynamic calls to the Db2 message handling module, DSNTIAR, or the later DSNTIA1, both of
which are shipped in SDSNLOAD. DSNTIA1 is loaded by applications programs that include the Db2
application stub DSNTIAC, which issues an EXEC CICS LOAD command for program DSNTIAC.
8 Auxiliary temporary storage data sets
Define this data set if you want to save data to use later. The temporary storage queues used,
identified by symbolic names, exist until explicitly deleted. Even after the originating task is deleted,
temporary data can be accessed by other tasks, through references to the symbolic name under
which it is stored.
For details of how to define these data sets, and for information about space calculations, see “Setting
up temporary storage data sets” on page 92.
If you are using temporary storage data sharing, ensure that you start the temporary storage server
before it is required by the CICS regions.
For more information about the temporary storage server and temporary storage data sharing, see
“Setting up and running a temporary storage server” on page 204.
9 Intrapartition data sets
The transient data intrapartition data set is used for queuing messages and data in the CICS region.
For information about how to define these data sets, and about space calculations, see “Defining the
intrapartition data set” on page 95.
10 Auxiliary trace data sets
Define one or both of these sequential data sets, if you want to use auxiliary trace. If you define
automatic switching for your auxiliary trace data sets, define both data sets. If you define only one
data set, its DD name must be DFHAUXT.
For details of how to define these data sets, see “Setting up auxiliary trace data sets” on page 118.
The auxiliary trace data sets in this job stream are unique to the active CICS region, and as such are
identified in our example by using the specific APPLID of the active CICS region (CICSHTH1) as a
second-level qualifier.
If you allocate and catalog the auxiliary trace data sets on disk as shown in Figure 23 on page 120,
you can define them to CICS in the startup job stream using the following DD statements:

//DFHAUXT DD DSN=CICSTS61.CICS.applid.DFHAUXT,DCB=BUFNO=n,DISP=SHR
//DFHBUXT DD DSN=CICSTS61.CICS.applid.DFHBUXT,DCB=BUFNO=n,DISP=SHR

If you specify BUFNO greater than 1, you can reduce I/O involved in writing auxiliary trace records. A
value in the range 4 - 10 can greatly reduce I/O when running with auxiliary trace on.
11 Extrapartition data sets
LOGA and CSSL are examples of extrapartition transient data queues.
• LOGA defines a user data set used by the CICS sample programs.
• CSSL defines the data set used by a number of CICS services.
• CCSO is used as an output queue only when you are running C/370 application programs.
• CESO is used as an error queue only when you are running application programs under Language
Environment.

188 CICS TS for z/OS: Configuring CICS

 Sample definitions of the queues used by CICS are supplied in group DFHDCTG. DFHDCTG is
unlocked, so you can alter the definitions before installation.
12 The CICS local catalog data set
The CICS local catalog is used by the CICS domains to save some of their information between CICS
runs, and to preserve this information across a cold start. The local catalog is not shared by any
other CICS system. For details of how to create and initialize a CICS local catalog, see “Setting up the
catalog data sets” on page 109.
13 The CICS global catalog data set
There is only one global catalog.
For details of how to create and initialize a CICS global catalog, see “Setting up the catalog data sets”
on page 109.
This sample job illustrates the use of the AMP parameter on the DD statement. Specifying this
parameter, with its buffer sub-parameters, can help to improve restart and shutdown time. This
example uses DEFINE CLUSTER statements that are shown in Figure 20 on page 110 and the
associated notes given under 4 in “Defining the global catalog” on page 109. The values given are
the minimum values suitable for these parameters and must not be reduced.
14 The transient data destination data set (CXRF)
This transient data destination is used by CICS as the target for messages sent to any transient data
destination before CICS has completed intrapartition transient data initialization.
15 The CICS transaction dump data sets
CICS records transaction dumps on a sequential data set or a pair of sequential data sets, tape,
or disk. The data sets must be defined with the DD names DFHDMPA and DFHDMPB, but if you
define only one data set, its DD name must be DFHDMPA. CICS always attempts to open at least one
transaction dump data set during initialization.
For details about how to define CICS transaction dump data sets and how they are used, see “Defining
dump data sets” on page 120.
The transaction dump data sets in this job stream are unique to the active CICS region, and as such
are identified by using the specific APPLID of the active CICS region (DBDCCIC1) as a second-level
qualifier.
16 MVS system dump data sets
Use a SYSABEND DD statement to direct MVS to produce a dump.
Produces a dump of user and system areas; this dump contains all the areas dumped in a SYSUDUMP
plus the local system queue area (LSQA), including subpools 229 and 230, and the I/O system (IOS)
control blocks for the failing task. The dump is formatted, so that it can be printed directly. MVS
produces the requested dump if either of the following is true:
• CICS ends abnormally.
• CICS starts to end abnormally, but system recovery procedures enable CICS to end normally.
The dump contents are as described only when you use the IBM-supplied defaults for the dumps.
The contents of these dumps can be set during MVS system initialization and can be changed for an
individual dump in the ABEND macro instruction, in a CHNGDUMP command, and by a SLIP command.
For details, see the z/OS MVS Initialization and Tuning Guide.
Dumps are optional; use a dump DD statement only when you want to produce a dump.
For information about how defining MVS system dump data sets, and about printing dumps from
them, see the z/OS MVS JCL Reference. For information about how to interpret dumps, see z/OS MVS
Diagnosis: Tools and Service Aids.
16a Default stdout file for C-language system services used by CICS
The SYSPRINT statement is opened as the stdout file by C-language system service routines that are
used by CICS, such as system SSL and JVM servers. If it is omitted, multiple sysout files might be
dynamically allocated by the operating system instead.

Chapter 5. Setting up a CICS region 189

 17 The CICS system definition data set
The system definition file (CSD) is required by CICS to hold some resource definitions.
You might want to provide job control DD statements for the CSD. If you do, the CSD data set is
allocated at the time of CICS job step initiation, and remains allocated for the duration of the CICS job
step.
You might prefer to use dynamic allocation of the CSD. For dynamic allocation, do not specify a DD
statement for the CSD. Specify the data set name (DSNAME) and the data set disposition (DISP) either
in a SET FILE command or in the System Initialization (as parameters CSDDSN and CSDDISP). CICS
uses the DSNAME and DISP to allocate the file as part of OPEN processing.
For information about creating and initializing the CSD, see Chapter 4, “Setting up shared data sets,
CSD and SYSIN,” on page 65.
18 The CICS BTS local request queue data set
DFHLRQ is a file-control-managed VSAM key-sequenced data set (KSDS), used by CICS business
transaction services (BTS). The supplied FILE resource definition for DFHLRQ is in CSD group
DFHCBTS, which is automatically included in DFHLIST group list when you initialize or upgrade your
CSD. The FILE definition specifies that it is to be opened on first reference, which occurs at the
end of CICS initialization when it is opened by BTS. CICS issues warning messages DFHFC0951 and
DFHSH0109 if the data set is not found. Although CICS continues running without this data set, define
the DFHLRQ data set, even if you are not using BTS. For information about DFHLRQ, see Overview of
BTS.
19 The CMAC data file
DFHCMACD is a VSAM key-sequenced data set (KSDS) that is used by the CMAC transaction to provide
online descriptions of CICS messages and codes. Before its first use, it must be defined and loaded
as a KSDS data set. “Defining the CMAC messages data set” on page 137 describes DFHCMACD in
greater detail.
20 The CDBM group command file
DFHDBFK is a VSAM key-sequenced data set (KSDS) that is used by the CDBM transaction to
store Group commands. Before its first use, it must be defined as a KSDS data set. The DFHDBFK
DD statement is required only if you intend to use the command storage functions of the CDBM
transaction. Defining the CDBM GROUP command data set describes DFHDBFK in greater detail.
21 FILEA & other permanently allocated data sets
You might want to provide job control DD statements for those user files that are defined in the CSD (if
you are using RDO) or in a file control table (for BDAM files only). If you do, the data sets are allocated
at the time of CICS job step initiation, and remain allocated for the duration of the CICS job step.
FILEA, the distributed library containing the data for the sample application programs, is included in
this startup job stream as an example of direct allocation by job control statement.
Alternatively, you might prefer to take advantage of the CICS dynamic allocation of files. For dynamic
allocation, do not specify a DD statement for the CSD. CICS then uses the full data set name as
specified in the DSNAME parameter of the FILE resource definition (up to 44 characters), together with
the DISP parameter, to allocate the file as part of OPEN processing. This form of dynamic allocation
applies equally to files that are defined to be opened explicitly, and those that are to be opened on
first reference by an application. For more information about file opening, see “Defining user files”
on page 125. For information about the attributes that you can define on FILE resources, see FILE
resources.
The card reader/line printer (CRLP) simulated terminals shown in the sample job stream are
defined in the sample TCT (not used in this startup job). See the copy member DFH$TCTS, in
CICSTS61.CICS.SDFHSAMP, for the source statements that you need for such devices.
22
For sequential devices, the last entry in the input stream can be CESF GOODNIGHT\ to provide a
logical close, and quiesce the device. However, if you close a device in this way, the receive-only
status is recorded in the warm keypoint at CICS shutdown. So the terminal is still in RECEIVE status in
a subsequent warm start, and CICS does not then read the input file.
Note the end-of-data character (the “\” symbol) at the end of each line of the sample.

190 CICS TS for z/OS: Configuring CICS

A sample CICS startup procedure
As an alternative to submitting a batch job to the MVS internal reader, you can use the MVS START
command to start CICS as a started task. Using this method, your startup job stream must be coded
according to the rules for coding procedures, and the procedure must be installed in an MVS procedure
library.

About this task

If you intend to start CICS with the START command you must either:
• Give the MVS started task procedure a name different from the subsystem name in IEFSSNaa (default
'CICS'), or
• Issue the start command with the parameter SUB=JES2 or SUB=JES3 as appropriate.
You can use the following form of the MVS START command to start a job from the console:

S|START procname[.identifier][,SUB=subsystemname][,keyword=option
[,keyword=option] . . .]

where:
procname
The name of the cataloged procedure that defines the job to be started.
identifier
The name you choose to identify the task.
SUB=subystemname
The name of the subsystem that is to select the job for processing. If you omit this parameter, the
primary job entry subsystem is used.
keyword=option
Any appropriate keyword to override the corresponding parameter in the procedure. You can use this
parameter to override symbolic parameters defined in the cataloged procedure.
For guidance information about the complete syntax of the START command, and all the keywords and
options you can use, see z/OS MVS System Commands.
To start CICS, you only need to code procname.identifier,keyword(s)=option.
For example:

START DFHSTART.CICSA,SIP=T,REGNAME1=IDA,REGNAM2=IDA

In this example of the MVS START command:

• DFHSTART is the name of the CICS-supplied cataloged startup procedure.
• CICS is being started with a task ID of CICSA.
• SIP is the suffix of the DFH$SIPx member in the SYSIN data set, CICSTS61.CICS.SYSIN, to be used by
this CICS region.
• REGNAM1 and REGNAM2 are qualifiers added to the CICS system data sets specified in the procedure
(for example, CICSTS61.CICS.CICSHTH1.DFHTEMP) to identify uniquely the data sets for this CICS
region. REGNAM1 is set to the same value as REGNAM2 for an MRO region.
For information about the DFHSTART procedure, see the CICS startup procedure, DFHSTART in Installing.
If you are running CICS with RACF, you must associate the cataloged procedure name with a suitably
authorized RACF user through the RACF table, ICHRIN03. For information about this association, see
Authorizing CICS procedures to run under RACF .

Chapter 5. Setting up a CICS region 191

Preparing your CICS region for debugging
Before application programmers can use certain debugging tools with CICS, you must configure your CICS
region accordingly.

About this task

You can prepare your CICS region for debugging application programs using the following tools:
• Debug Tool, for compiled language application programs (programs written in COBOL, PL/I, C, C++), and
for Language Environment-enabled Assembler subroutines).
• Remote debugging tools (for compiled language application programs, Language Environment-enabled
Assembler Subroutines, and Java programs). Note that for compiled language programs, and Assembler
subroutines, Debug Tool is used as the debugging server.
This topic does not apply to other debugging tools, such as the CICS Execution Diagnostic Facility (CEDF).
Since you will need to restart the region, it is advisable to plan which regions will be used for debugging
applications.
• It is unlikely that application programs will be debugged in your production regions, especially if the
applications are well established and known to be reliable; it is more likely that debugging will take
place in regions which are used to develop and test new applications.
To prepare your CICS region for debugging:

Procedure
1. If you plan to use the region for debugging compiled language programs, include the Debug Tool
library SEQAMOD in the DFHRPL concatenation in your CICS startup JCL.
For more information, see “Using the sample startup job stream” on page 182.
2. Create the debugging profile data sets.
For more information, see “Setting up the debugging profiles data sets” on page 139.
3. Include the resource definition for the debugging profile file in a resource definition list that is named
in the GRPLIST system initialization parameter.
4. Optionally, specify the following value for the DEBUGTOOL system initialization parameter:

DEBUGTOOL=YES

If you do not specify DEBUGTOOL=YES, you can enable the region for debugging when it is running:
• To enable the region for debugging from a program, use the EXEC CICS SET SYSTEM DEBUGTOOL
command
• To enable the region for debugging from the main terminal transaction, use the CEMT SET SYSTEM
DEBUGTOOL command
Enabling the region for debugging when it is running is recommended for regions which are not
normally used for debugging. When debugging is complete, you can disable the region for debugging,
using the same commands.
5. Define and install Debug Tool's resource definitions. They are located in member EQACCSD in Debug
Tool's SEQASAMP data set. For more information, see Debug Tool for z/OS.

192 CICS TS for z/OS: Configuring CICS

Starting CICS regions
This section describes how to start CICS regions. It assumes that you have already carried out any
customization of CICS, generated any additional support required, and defined all the necessary CICS
system definitions.

About this task

You can start CICS in one of two ways:
• Use the MVS START command to start CICS as a started task.
• Submit a CICS batch job to the MVS internal reader.
In both methods, you determine how CICS starts, and the facilities and resources that it can use by
specifying system initialization parameters that are used by the CICS startup procedure. You would
normally specify the system initialization parameters before starting CICS. However, after you have
started the initialization of CICS, you can override the system initialization parameters specified before
startup; for example, to enable a specific facility for that run of CICS.

Procedure
1. Specify system initialization parameters before startup.
2. Start CICS in one of the following ways:
• “Starting CICS as a batch job” on page 195
• “Starting CICS as a started task” on page 195
3. Optional: After the CICS system initialization started, if you want to override any system initialization
parameters that are specified before startup, follow the instructions in “Overriding system initialization
parameters during startup” on page 197.

Results
When system initialization is completed, the message DFHSI1517 is returned, indicating that control is
given to CICS and that CICS is ready to process terminal requests.
Tip:
System warm-up by use of z/OS Workload Manager health service
Consider allowing CICS to have a warm-up process after the end of system initialization.
Even though DFHSI1517 signals the end of system initialization, the region might not be fully
ready to receive work. This is because in some cases initialization continues after this message.
For example, some bundle-defined resources are being installed asynchronously; so resources such
as JVMSERVERs required for some applications have not completed initialization, even though the
TCP/IP listener is open and accepting work. This could cause transactions to abend. For web services,
a pipeline scan might not have completed, so use of the web service before the scan completes will
fail.
You can allow CICS to have a warm-up process by setting the WLMHEALTH system initialization
parameter. If the z/OS Workload Manager health service is active in the region, when the message
DFHSI1517 is returned, the warm-up process is started. Then CICS intermittently adjusts the region's
z/OS WLM health value to control flow of work into the region until the region is fully capable to
process work. For more information about the CICS warm-up process, see CICS warm-up and cool-
down by use of z/OS Workload Manager health service.
Inquiry of CICS system startup date and time
To find out the date and time a CICS region last undertook a cold, emergency, initial, or warm startup,
you can use the INQUIRE SYSTEM SPI command. For more information, see INQUIRE SYSTEM.

Chapter 5. Setting up a CICS region 193

Specifying system initialization parameters before startup
You usually specify the system initialization parameters that CICS is to use in the following ways, before
starting CICS.

Procedure
• In the system initialization table, loaded from a library in the STEPLIB concatenation of the CICS
startup procedure
• In the PARM parameter of the EXEC PGM=DFHSIP statement of the CICS startup procedure
• In the SYSIN data set defined in the startup procedure, but only if SYSIN is coded in the PARM
parameter.

Results
The system initialization parameters are processed in the order outlined above, with later system
initialization parameter values overriding those specified earlier.

Example
For example, if your CICS startup procedure specifies:

//INITCICS EXEC PGM=DFHSIP,REGION=&REG,

// PARM=('SYSIDNT=HTH1,SIT=6$,SYSIN,CN')
//*
//SYSIN DD DISP=SHR,DSN=&libpfx..CICSH###.SYSIN(CICS&CLONE)

CICS uses system initialization parameters from the following sources, with later system initialization
parameters overriding earlier ones:
1. The system initialization table, DFHSIT6$, from the STEPLIB concatenation.
2. The member CICSH### of the CICSTS61.CICS.CICSH###.SYSIN data set.
3. The system console.

What to do next
In particular, you can specify a new value for the START system initialization parameter.

The START system initialization parameter

The START system initialization parameter has the following values.
START=AUTO
If you specify this value for the START system initialization parameter, CICS determines whether to
perform an initial, cold, warm, or emergency start by inspecting two records in the global catalog:
• The recovery manager control record
• The recovery manager autostart override record.
START=AUTO should be the normal mode of operation, with the choice of start being made by CICS
automatically.
START=INITIAL
The new run of CICS has no reference to any previous run. The global catalog and system log are
initialized, and all information in them is lost.
START=COLD
The new run of CICS has limited reference to the previous run, and uses the same global catalog and
system log. In particular, resynchronization information needed by remote systems to resynchronize
their units of work is preserved.

194 CICS TS for z/OS: Configuring CICS

 START=STANDBY
CICS starts up as an XRF alternate CICS region, by initializing only to the point at which it can monitor
the active CICS region. Depending on how the active CICS region was shut down, the alternate CICS
region completes either a warm or emergency restart, if it needs to take over, as follows:
• If the active CICS region was shut down with a successfully completed CEMT PERFORM SHUTDOWN
TAKEOVER command, the alternate CICS region performs a warm start.
• If the active CICS region was shut down abnormally, the alternate CICS region performs an
emergency restart.
Note: You must also specify the XRF=YES system initialization parameter.

Starting CICS as a batch job

Procedure
1. Create a job to start CICS. In your job you can either:
• Include the CICS startup procedure inline.
• Invoke a cataloged startup procedure.
This latter method has the advantage that several CICS startup jobs (for example, for different CICS
regions) can use the same procedure, tailoring the procedure through startup parameters.
For example, Figure 35 on page 195 shows a CICS startup job that invokes the cataloged procedure,
CICSTASK, to perform a cold start with the startup parameters SYSIDNT=HTH1 and CLONE=HT##1.
By altering the SYSIDNT and CLONE parameters, the same job could be used to start other CICS
regions with the same procedure.

//CIDCTOR JOB (accounting information),userid,MSGCLASS=A,MSGLEVEL=(1,1),

// CLASS=C,NOTIFY=userid
//*********************************************************************
//* THIS JOB CAN BE USED TO START UP A CICS REGION
//*********************************************************************
//*
// CICS740 EXEC CICSTASK,
// START=COLD,
// SYSIDNT='HTH1', SYSID OF CICS REGION
// CLONE='HT##' CLONE CICS REGION TYPE
//*

Figure 35. Job to start a CICS TOR, HTH1

In this example of the MVS START command:

• CICSTASK is the name of a cataloged CICS startup procedure, tailored from the CICS-supplied
sample startup procedure.
• SYSIDNT is the qualifier used to identify CICS system data sets that are unique to each CICS region.
• CLONE is the qualifier of the member in the SYSIN data set, CICSTS61.CICS.SYSIN, that has system
initialization parameters unique to each type of CICS region.
2. Submit the job through the MVS internal reader.
This starts CICS as a batch job.

Starting CICS as a started task

Procedure
1. Create a procedure and install it in the MVS procedure library.
Ensure that your startup job stream is coded according to the rules for coding procedures. You can
use the CICS-supplied sample startup procedure DFHSTART and tailor it to suit your needs. For more
information about the CICS-supplied startup procedure, see CICS startup procedure, DFHSTART in
Installing .

Chapter 5. Setting up a CICS region 195

 2. To start CICS, you only need to code procname.identifier,keyword(s)=option in the
procedure.
3. You must do either of the following:
• Give the MVS started task procedure a name different from the subsystem name in IEFSSNaa. The
default is ‘CICS’.
• Issue the START command with the parameter SUB using the value JES2 or JES3 as appropriate.
4. Optional: If you are running CICS with RACF, associate the cataloged procedure name with a suitably
authorized RACF user through the RACF table, ICHRIN03.
For details about this association, see Authorizing CICS procedures to run under RACF .
5. To start CICS, use the MVS START command.
For example, to start CICS from the MVS console:

S|START procname[.identifier][,SUB=subsystemname][,keyword=option
[,keyword=option] . . .]

where
procname
The name of the cataloged procedure that defines the CICS job to be started.
identifier
The name you choose to identify the CICS task.
subystemname
The name of the subsystem that is to select the job for processing. If you omit this parameter, the
primary job entry subsystem is used.
option
Any appropriate keyword to override the corresponding parameter in the procedure. You can use
this parameter to override symbolic parameters defined in the cataloged procedure.

Example
For example, you could use the following start command to start the CICS tasks listed in Figure 36 on
page 196:

START CICS740

//CICS740 PROC
//*
//DUMMY EXEC PGM=IEFBR14
//*
// START CICSTASK.CICSHTH1,SYSIDNT='HTH1',CLONE='HT##'
//* START=COLD
// START CICSTASK.CICSHAH1,SYSIDNT='HAH1',CLONE='HA##'
//* START=COLD
// START CICSTASK.CICSHAH2,SYSIDNT='HAH2',CLONE='HA##'
//* START=COLD
// START CICSTASK.CICSHRH1,SYSIDNT='HRH1',CLONE='HR##'
//* START=COLD
//*
//* END OF CICS START PROCEDURE

Figure 36. Procedure to start a CICS TOR, two AORs, and an ROR

In this example of the MVS START command:

• CICSTASK is the name of a cataloged CICS startup procedure, tailored from the CICS-supplied sample
startup procedure.
• The following CICS regions are started:
– Terminal-owning region, CICSHTH1
– Application-owning region, CICSHAH1
– Application-owning region, CICSHAH2

196 CICS TS for z/OS: Configuring CICS

 – Resource-owning region, CICSHRH2.
• SYSIDNT is the qualifier used to identify CICS system data sets that are unique to each CICS region.
• CLONE is the qualifier of the member in the SYSIN data set, CICSTS61.CICS.SYSIN, that has system
initialization parameters unique to each type of CICS region.
For information about the complete syntax of the START command, and all the keywords and options you
can use, see z/OS MVS System Commands.

Overriding system initialization parameters during startup

After you have started the initialization of CICS, you might want to override system initialization
parameters specified in the SIT, PARM parameter, and SYSIN data set of the CICS startup procedure.
You can do this by specifying new values for system initialization parameters at the system console.

Before you begin

You can specify system initialization parameters at the system console only if the CONSOLE keyword was
specified in either the PARM parameter or in the SYSIN data set. If you specify the CONSOLE (or CN)
keyword in the PARM statement of the EXEC PGM=DFHSIP statement or SYSIN data set of your CICS
startup procedure, CICS prompts you to enter system initialization parameters at the system console.

About this task

Generally, CICS does not begin to read from the console until it has loaded the SIT and processed any
initialization parameters that are coded in the PARM parameter and the SYSIN data set.
When it is ready to read parameters from the console, CICS displays the following message (where nn is
the reply ID):

nn DFHPA1104 applid - SPECIFY ALTERNATIVE SIT PARAMETERS, IF ANY,

AND THEN TYPE '.END'.

Procedure
1. Specify a SIT system initialization parameter only as the first parameter when prompted by message
DFHPA1921.
At this point CICS tries to load the specified SIT.
If you try to specify a SIT system initialization parameter after CICS has loaded the SIT, it is rejected as
an error.
2. You can enter as many initialization parameters as you can get on one line of the console, but you must
use a comma to separate parameters.
CICS continues to prompt for system initialization parameters with displays of message DFHPA1105 .
3. When you have changed the appropriate initialization parameter, terminate the console input by
entering the END control keyword.

Entering corrections to parameters at the console

If you have coded PARMERR=INTERACT, and CICS detects a parameter error, either in the keyword or in
the value you have assigned to it, CICS prompts you to correct the error with message DFHPA1912 or
DFHPA1915.

About this task

CICS prompts you to enter corrections to any errors it finds in the PARM parameter or the SYSIN data set
after it has loaded the SIT, and as each error is detected. This means that if there is an APPLID parameter

Chapter 5. Setting up a CICS region 197

 following the parameter that is in error, either in the PARM parameter or in the SYSIN data set, it is the
APPLID coded in the SIT that CICS displays in messages DFHPA1912 and DFHPA1915.

DFHPA1912 'applid' SIT OVERRIDE 'keyword' IS NOT RECOGNIZED.

SPECIFY CORRECT SIT OVERRIDE.
DFHPA1915 'applid' INVALID DATA HAS BEEN DETECTED FOR SIT OVERRIDE
'keyword'. RESPECIFY THE OVERRIDE.

System console messages for CICS startup

The following example shows the message sequences that are displayed when starting a CICS region,
CICSHT56, using a typical startup procedure.
The CICS supplied default system initialization table, DFHSIT, is used (the SIT system initialization
parameter is not specified) and system initialization parameters specific to the CICSHT56 region are
supplied from a permanent SYSIN data set. You can see these options in the example messages, because
the SYSIN data is displayed on the console.
The notes after the example identify specific messages of interest.

J E S 2 J O B L O G -- S Y S T E M M V 2 6 -- N O D E W I N M V S 2 C
09.12.26 STC63069 $HASP373 CICSGBV1 STARTED
09.12.26 STC63069 IEF403I CICSGBV1 - STARTED
09.12.26 STC63069 - --TIMINGS (MINS.)-- ----PAGING COUNTS---
09.12.26 STC63069 -JOBNAME STEPNAME PROCSTEP RC EXCP CPU SRB CLOCK SERV PG PAGE SWAP VIO SWAPS
STEPNO
09.12.26 STC63069 -CICSGBV1 GENINPT 00 27 .00 .00 .00 202 0 0 0 0
0 1
09.12.26 STC63069 DFHPA1101 IYK2ZFV1 DFHSITVE IS BEING LOADED.
09.12.26 STC63069 DFHPA1108 IYK2ZFV1 DFHSITVE HAS BEEN LOADED. (GENERATED AT: MM/DD= 06/14 HH:MM= 13:42).
09.12.26 STC63069 DFHPA1100 IYK2ZFV1 OVERRIDE PARAMETERS FROM JCL EXEC STATEMENT: SI
09.12.26 STC63069 DFHPA1102 IYK2ZFV1 OVERRIDE PARAMETERS FROM SYSIN:
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 AICONS=AUTO, Autoinstall for consoles
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 CICSSVC=217,SRBSVC=215, CTS 5.4.0 The default CICS SVC number 1
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 CSDDSN=<USER>.CICSVEN.DFHCSD, CICS default userid 2
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 CSDDISP=SHR,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 DEBUGTOOL=NO,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 DSALIM=8M, 3
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 EDSALIM=800M, 3
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 JVMPROFILEDIR=/u/<user>/<version>/JVMProfiles,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 MCT=D$, 4
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 MN=ON,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 MNPER=ON,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 MNRES=ON,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 MXT=200, Set maximum tasks to 200
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 RLS=YES, RLS support required
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 SIT=VE,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 SLD=NO,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 SPCTR=OFF,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 STATINT=010000,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 USSHOME=/itbld/cics.ts.dev/Integrat/dist
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 DB2CONN=YES,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 APPLID=IYK2ZFV1,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 AUXTR=ON,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 AUXTRSW=NEXT,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 CHKSTSK=NONE,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 CHKSTRM=NONE,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 CPSMCONN=LMAS
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 DBCTLCON=YES,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 DEBUGTOOL=NO,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 DSALIM=8M,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 DTRPGM=EYU9XLOP, Use CPSM for routing
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 DSRTPGM=EYU9XLOP, Use CPSM for routing
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 FCT=NO,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 GMTEXT='**** <user_name> - <version_alias>(CICS TS <version>) System GMB1
****', 5
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 GRPLIST=(DFHLIST,CICSGMB1,MYJAVA) JVM servers and Liberty Initialize with group
lists for TOR 6
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 ICV=0100,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 ICVTSD=0,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 INITPARM=(DFHDBCON='4D'), DBCTL only
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 INITPARM=(DFHLETRU='USEQSAM'),
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 INITPARM=(DFHFCLJ1='01'),
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 LPA=NO,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 MN=ON,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 MNPER=ON,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 MNRES=ON,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 MQCONN=YES,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 MXT=200, Set maximum tasks to 200
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 NCPLDFT=NCPOOL4,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 NISTSP800131A=NOCHECK,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 PDIR=2$, All DFHSAM* requests go
to GMB2
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 PLTPI=1B, No tools,IP CICS sockets,PLT

198 CICS TS for z/OS: Configuring CICS

for start-up programs
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 PLTSD=4$,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 PLTSD=4$,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 RENTPGM=NOPROTECT,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 RRMS=YES,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 RLS=YES, RLS support required
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 SLD=YES,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 STATRCD=ON,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 STATINT=010000,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 STNTR=(1,2),
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 SYDUMAX=999, Limit the number of
system dumps per dump code
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 SUBTSKS=0,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 STGPROT=YES, Storage protection on
7
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 SYSIDNT=GMB1,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 SYSTR=ON, Main trace flag
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 TRANISO=YES, Transaction isolation on
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 TRTABSZ=1048576, Internal trace table
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 TBEXITS=(GRCINIT,GRCINPT,GFCBFAIL,GFCLDEL,GFCBOVER,GFCBOUT),
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 TCT=5$, Make sure TCP=YES is
specified
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 GMTRAN=CSGM,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 SEC=NO, Run without security
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 START=INITIAL,
09.12.26 STC63069 DFHPA1927 IYK2ZFV1 .END
09.12.26 STC63069 DFHPA1103 IYK2ZFV1 END OF FILE ON SYSIN.
09.12.26 STC63069 DFHPA1950I IYK2ZFV1 READING FEATURE TOGGLE FILE: featuretoggle.properties
09.12.26 STC63069 DFHPA1956I IYK2ZFV1 blah.blah.blah.joe.blogs=true
09.12.26 STC63069 DFHPA1950I IYK2ZFV1 READING FEATURE TOGGLE FILE: IYK2ZFV1/featuretoggle.properties
09.12.26 STC63069 DFHPA1958I IYK2ZFV1 FILE DOES NOT CONTAIN FEATURE TOGGLES.
09.12.29 STC63069 +DFHTR0103 TRACE TABLE SIZE IS 1048576K
09.12.29 STC63069 +DFHSM0601I IYK2ZFV1 Limit of above the bar storage available is 10G from JCL.
09.12.29 STC63069 +DFHSM0122I IYK2ZFV1 Limit of DSA storage below 16MB is 8,192K.
09.12.29 STC63069 +DFHSM0123I IYK2ZFV1 Limit of DSA storage above 16MB is 800M.
09.12.29 STC63069 +DFHSM0115I IYK2ZFV1 Storage protection is active.
09.12.29 STC63069 +DFHSM0125I IYK2ZFV1 Transaction isolation is active.
09.12.29 STC63069 +DFHSM0120I IYK2ZFV1 Reentrant programs will not be loaded into read-only storage.
09.12.29 STC63069 +DFHDM0101I IYK2ZFV1 CICS is initializing.
09.12.30 STC63069 +DFHWB0109I IYK2ZFV1 Web domain initialization has started.
09.12.30 STC63069 +DFHSO0100I IYK2ZFV1 Sockets domain initialization has started.
09.12.30 STC63069 +DFHRX0100I IYK2ZFV1 RX domain initialization has started.
09.12.30 STC63069 +DFHRX0104I IYK2ZFV1 The Resource Recovery Services (RRS) exit manager ATR.EXITMGR.IBM is now
available.
09.12.30 STC63069 +DFHRX0101I IYK2ZFV1 RX domain initialization has ended.
09.12.30 STC63069 +DFHMP0100I IYK2ZFV1 Managed platform domain initialization started.
09.12.30 STC63069 +DFHLG0101I IYK2ZFV1 Log manager domain initialization has started.
09.12.30 STC63069 +DFHEP0101I IYK2ZFV1 Event Processing domain initialization has started.
09.12.30 STC63069 +DFHDH0100I IYK2ZFV1 Document domain initialization has started.
09.12.30 STC63069 +DFHAS0100I IYK2ZFV1 Asynchronous services domain initialization started.
09.12.30 STC63069 +DFHW20100I IYK2ZFV1 Web2.0 domain initialization has started.
09.12.30 STC63069 +DFHXS1100I IYK2ZFV1 Security initialization has started.
09.12.30 STC63069 +DFHAS0101I IYK2ZFV1 Asynchronous services domain initialization has ended.
09.12.30 STC63069 +DFHSI1500 IYK2ZFV1 CICS startup is in progress for CICS Transaction Server
09.12.30 STC63069 +DFHXS1102I IYK2ZFV1 Security is inactive.
09.12.30 STC63069 +DFHSI1501I IYK2ZFV1 Loading CICS nucleus.
09.12.30 STC63069 +DFHDU0304I IYK2ZFV1 Transaction Dump Data set DFHDMPA opened.
09.12.30 STC63069 +DFHTR0113 IYK2ZFV1 Auxiliary trace is being started on data set DFHAUXT.
09.12.30 STC63069 +DFHCQ0100I IYK2ZFV1 Console queue initialization has started.
09.12.30 STC63069 +DFHCQ0101I IYK2ZFV1 Console queue initialization has ended.
09.12.30 STC63069 +DFHCQ0103I IYK2ZFV1 MVS console queue is open.
09.12.30 STC63069 +DFHCQ0200I IYK2ZFV1 CEKL transaction enabled.
09.12.31 STC63069 +DFHMN0108I IYK2ZFV1 Using Monitoring Control Table suffix 'D$'.
09.12.31 STC63069 +DFHMN0109I IYK2ZFV1 CICS Monitoring is active.
09.12.31 STC63069 +DFHMN0115I IYK2ZFV1 CICS Server z/OS WLM Health percentage is now 0.
09.12.31 STC63069 +DFHWB0110I IYK2ZFV1 Web domain initialization has ended.
09.12.31 STC63069 +DFHSO0101I IYK2ZFV1 Sockets domain initialization has ended.
09.12.31 STC63069 +DFHSI1502I IYK2ZFV1 CICS startup is Initial.
09.12.31 STC63069 +DFHEM0100I IYK2ZFV1 Event Manager initialization has started.
09.12.31 STC63069 +DFHEM0101I IYK2ZFV1 Event Manager initialization has ended.
09.12.31 STC63069 +DFHEP0102I IYK2ZFV1 Event Processing domain initialization has ended.
09.12.31 STC63069 +DFHMP0101I IYK2ZFV1 Managed platform domain initialization has ended.
09.12.31 STC63069 +DFHSJ0101I IYK2ZFV1 946
946 The JVM (SJ) domain for Java has started initializing. Java is a
946 trademark of Oracle and/or its affiliates.
09.12.31 STC63069 +DFHTS0100I IYK2ZFV1 Temporary Storage initialization has started.
09.12.31 STC63069 +DFHLG0102I IYK2ZFV1 Log manager domain initialization has ended.
09.12.31 STC63069 +DFHSI1503I IYK2ZFV1 Terminal data sets are being opened.
09.12.31 STC63069 +DFHTS0101I IYK2ZFV1 Temporary Storage initialization has ended.
09.12.31 STC63069 +DFHKE0406I IYK2ZFV1 967
967 CICS is about to wait for predecessors defined in the MVS automatic
967 restart management policy for this region.
09.12.31 STC63069 +DFHKE0412I IYK2ZFV1 CICS WAITPRED call to automatic restart manager has completed.
09.12.31 STC63069 +DFHZC4960 I IYK2ZFV1 969
969 10/16/2017 09:12:31 IYK2ZFV1 CICS has not been able to notify z/OS
969 Communications Server that it will handle detection of BMS 3270
969 intrusion detection.
09.12.31 STC63069 +DFHCP0101I IYK2ZFV1 CPI initialization has started.
09.12.31 STC63069 +DFHPR0104I IYK2ZFV1 Partner resource manager initialization has started.
09.12.31 STC63069 +DFHAI0101I IYK2ZFV1 AITM initialization has started.
09.12.31 STC63069 +DFHTD0100I IYK2ZFV1 Transient Data initialization has started.
09.12.31 STC63069 +DFHW20101I IYK2ZFV1 Web2.0 domain initialization has ended.
09.12.31 STC63069 +DFHFC0100I IYK2ZFV1 File Control initialization has started.

Chapter 5. Setting up a CICS region 199

09.12.31 STC63069 +DFHTD0101I IYK2ZFV1 Transient Data initialization has ended.
09.12.31 STC63069 +DFHFC0562 IYK2ZFV1 The RLS control ACB has been successfully registered by CICS.
09.12.31 STC63069 +DFHFC0570 IYK2ZFV1 File control RLS access has been enabled.
09.12.32 STC63069 +DFHFC0101I IYK2ZFV1 File Control initialization has ended.
09.12.32 STC63069 +DFHCP0102I IYK2ZFV1 CPI initialization has ended.
09.12.32 STC63069 +DFHPR0105I IYK2ZFV1 Partner resource manager initialization has ended.
09.12.32 STC63069 +DFHAI0102I IYK2ZFV1 AITM initialization has ended.
09.12.32 STC63069 +DFHSI1511I IYK2ZFV1 Installing group list DFHLIST.
09.12.34 STC63069 +DFHSI1511I IYK2ZFV1 Installing group list CICSGMB1.
09.12.35 STC63069 +DFHDB2110I 10/16/2017 09:12:35 IYK2ZFV1 The total number of threads exceeds TCBLIMIT.
09.12.39 STC63069 +DFHSI1511I IYK2ZFV1 Installing group list MYJAVA.
09.12.39 STC63069 +DFHSJ0910 10/16/2017 09:12:39 IYK2ZFV1 CICSUSER JVMSERVER DFH$JVMS has been created.
09.12.39 STC63069 +DFHSJ0910 10/16/2017 09:12:39 IYK2ZFV1 CICSUSER JVMSERVER GMBOSGI has been created.
09.12.40 STC63069 +DFHSJ0910 10/16/2017 09:12:40 IYK2ZFV1 CICSUSER JVMSERVER DFHWLP has been created.
09.12.40 STC63069 +DFHLG0103I IYK2ZFV1 System log (DFHLOG) initialization has started.
09.12.41 STC63069 +DFHLG0104I IYK2ZFV1 228
228 System log (DFHLOG) initialization has ended. Log stream
228 <USER>.IYK2ZFV1.DFHLOG is connected to structure LOG_GENERAL_001.
09.12.41 STC63069 +DFHLG0103I IYK2ZFV1 System log (DFHSHUNT) initialization has started.
09.12.41 STC63069 +DFHLG0104I IYK2ZFV1 230
230 System log (DFHSHUNT) initialization has ended. Log stream
230 <USER>.IYK2ZFV1.DFHSHUNT is connected to structure LOG_GENERAL_001.
09.12.41 STC63069 +DFHRX0106I IYK2ZFV1 Restart processing with Resource Recovery Services (RRS) is beginning.
09.12.41 STC63069 +DFHRX0107I IYK2ZFV1 Restart processing with Resource Recovery Services (RRS) has ended.
09.12.41 STC63069 +DFHSI1519I IYK2ZFV1 The interregion communication session was successfully started in XCF group
DFHIR000
09.12.41 STC63069 +DFHAP1203I IYK2ZFV1 Language Environment is being initialized.
09.12.42 STC63069 +DFHAP1211I IYK2ZFV1 Language Environment initialization completed.
09.12.42 STC63069 +DFHWB1007 IYK2ZFV1 Initializing CICS Web environment.
09.12.42 STC63069 +DFHWB1008 IYK2ZFV1 CICS Web environment initialization is complete.
09.12.42 STC63069 +DFHEC1006I IYK2ZFV1 Event processing status is STARTED.
09.12.42 STC63069 +DFHSI8440I IYK2ZFV1 Initiating connection to CICSPlex SM.
09.12.42 STC63069 +EYUNX0001I IYK2ZFV1 LMAS initialization program starting
09.12.42 STC63069 +EYUXL0003I IYK2ZFV1 CPSM Version 550 LMAS startup in progress
09.12.42 STC63069 +EYUXL0119I IYK2ZFV1 CPSM Kernel loaded from EYU9XL01
09.12.42 STC63069 +EYUXL0022I IYK2ZFV1 LMAS Phase I initialization complete
09.12.42 STC63069 +EYUXL0211I IYK2ZFV1 CPSM Start Up Parameters.
09.12.42 STC63069 +EYUXL0212I IYK2ZFV1 NAME(IYK2ZFV1).
09.12.42 STC63069 +EYUXL0212I IYK2ZFV1 CICSPLEX(GBPLEX1).
09.12.42 STC63069 +EYUXL0212I IYK2ZFV1 CMASSYSID(GMB3).
09.12.42 STC63069 +EYUXL0212I IYK2ZFV1 SEC(NO).
09.12.43 STC63069 +DFHSI8440I IYK2ZFV1 Initiating connection to DBCTL.
09.12.43 STC63069 +DFS4720I DRA open thread option is active
09.12.43 STC63069 +DFS4721I DRA monitoring of thread CPU usage is active
09.12.43 STC63069 +DFHSI8441I IYK2ZFV1 Connection to DBCTL IM4D successfully completed.
09.12.43 STC63069 +DFHSI8440I IYK2ZFV1 Initiating connection to MQ.
09.12.43 STC63069 +DFHMQ0337 I 10/16/2017 09:12:43 IYK2ZFV1 CONNECT received from DFHMQCOD.
09.12.43 STC63069 +DFHMQ0351 I 10/16/2017 09:12:43 IYK2ZFV1 Unable to LOAD API exit CSQCAPX. Program is disabled.
09.12.43 STC63069 +DFHMQ0307 I 10/16/2017 09:12:43 IYK2ZFV1 Successful connection to queue manager MQD5 release 0800
09.12.43 STC63069 +DFHSI8441I IYK2ZFV1 Connection to MQ MQD5 successfully completed.
09.12.43 STC63069 +DFHSI8440I IYK2ZFV1 Initiating connection to DB2.
09.12.43 STC63069 +DFHDB2211I IYK2ZFV1 281
281 10/16/2017 09:12:43 IYK2ZFV1 Maxopentcbs value of 72 conflicts with
281 the tcblimit setting of 400 in the DB2CONN definition.
09.12.43 STC63069 +DFHDB2023I 10/16/2017 09:12:43 IYK2ZFV1 The CICS-DB2 attachment has connected to DB2 subsystem DK2C
group DKP2
09.12.43 STC63069 +DFHSI8441I IYK2ZFV1 Connection to DB2 DK2C successfully completed.
09.12.43 STC63069 +DFHSI8430I IYK2ZFV1 About to link to PLT programs during the third stage of initialization.
09.12.43 STC63069 +DFHSI8434I IYK2ZFV1 Control returned from PLT programs during the third stage of initialization.
09.12.43 STC63069 +DFHSI1517 IYK2ZFV1 Control is being given to CICS.
09.12.43 STC63069 +DFHSJ0102I IYK2ZFV1 SJ domain initialization has ended.
09.12.43 STC63069 +DFHDH0101I IYK2ZFV1 Document domain initialization has ended.
09.12.43 STC63069 +DFHXS1101I IYK2ZFV1 Security initialization has ended.
09.12.44 STC63069 +DFHMQ0323 I 10/16/2017 09:12:44 IYK2ZFV1 STOP received from TERMID=SAMA TRANID=CKSD USERID=CICSUSER.
09.12.44 STC63069 +DFHMQ0334 I 10/16/2017 09:12:44 IYK2ZFV1 Successful disconnection from queue manager MQD5 release
0800
09.12.44 STC63069 +DFHMQ0323 I 10/16/2017 09:12:44 IYK2ZFV1 CONNECT received from TERMID=SAMA TRANID=CKCN
USERID=CICSUSER.
09.12.44 STC63069 +DFHMQ0351 I 10/16/2017 09:12:44 IYK2ZFV1 Unable to LOAD API exit CSQCAPX. Program is disabled.
09.12.44 STC63069 +DFHMQ0307 I 10/16/2017 09:12:44 IYK2ZFV1 Successful connection to queue manager MQD5 release 0800
09.12.44 STC63069 +DFHMQ0323 I 10/16/2017 09:12:44 IYK2ZFV1 CONNECT received from TERMID=SAMA TRANID=CKCN
USERID=CICSUSER.
09.12.44 STC63069 +DFHMQ0386 I IYK2ZFV1 306
306 10/16/2017 09:12:44 IYK2ZFV1 STARTCKTI initiated from TERMID=SAMA
306 TRANID=CKSQ USERID=CICSUSER and is accepted.
09.12.44 STC63069 +DFHMQ0386 I IYK2ZFV1 311
311 10/16/2017 09:12:44 IYK2ZFV1 STARTCKTI initiated from TERMID=SAMA
311 TRANID=CKSQ USERID=CICSUSER and is accepted.
09.12.45 STC63069 +EYUXL0030I IYK2ZFV1 ESSS connection in progress to CICSPLEX(GBPLEX1) for SYSID(GMB3).
09.12.45 STC63069 +EYUXL0004I IYK2ZFV1 ESSS connection complete.
09.12.45 STC63069 +EYUCL0006I IYK2ZFV1 ESSS link to IYK2ZFV3 established.
09.12.45 STC63069 +EYUXL0007I IYK2ZFV1 LMAS Phase II initialization complete.
09.12.45 STC63069 +EYUNL0099I IYK2ZFV1 LMAS LRT initialization complete.
09.12.45 STC63069 +DFHSJ0910 10/16/2017 09:12:45 IYK2ZFV1 CICSUSER JVMSERVER MYPLATJM has been created.
09.12.45 STC63069 +DFHFC0208I IYK2ZFV1 326
326 LSR pool 20 is being built dynamically by CICS because all of the
326 necessary parameters have not been supplied. Either there is no
326 LSRPOOL definition or it is incomplete. The following are not
326 defined: 'CI SIZE' 'STRINGS' 'MAXKEYLENGTH'. A delay is possible.
09.12.48 STC63069 +EYUBN0099I IYK2ZFV1 Resource creation processing complete.
09.12.49 STC63069 +CWWKE0001I: The server <server_name> has been launched.
09.12.51 STC63069 +EYUBN0099I IYK2ZFV1 Resource creation processing complete.
09.12.51 STC63069 +EYUBN0099I IYK2ZFV1 Resource creation processing complete.

200 CICS TS for z/OS: Configuring CICS

09.12.51 STC63069 AXMSC0031I Connection to server DFHCF.DTPOOL1 has been opened.
09.12.51 STC63069 +EYUBN0020I IYK2ZFV1 CICS application state recovery is in progress.
09.12.51 STC63069 +EYUWM0505I IYK2ZFV1 Target region (IYK2ZFV1), CICSplex(GBPLEX1) is 357
357 running in Sysplex Optimized WLM state. ?
09.12.51 STC63069 +EYUNL0160I IYK2ZFV1 Workload registration complete.
09.12.51 STC63069 +EYUWM0503I IYK2ZFV1 Routing region (IYK2ZFV1), CICSplex(GBPLEX1) is 359
359 running in Sysplex Optimized WLM state for workload(GMBSPEC).
09.12.51 STC63069 +EYUWI0020I IYK2ZFV1 WLM Routing initiated for workload(GMBSPEC) in 360
360 Routing Region(IYK2ZFV1), CICSplex(GBPLEX1). ?
09.12.52 STC63069 +EYUBN0021I IYK2ZFV1 CICS application state recovery is complete.
09.12.55 STC63069 +CWWKG0016I: Starting server configuration update.
09.12.55 STC63069 +CWWKG0017I: The server configuration was successfully updated in 365
365 0.375 seconds.
09.12.56 STC63069 +CWWKZ0001I: Application ExampleAppClientV855 started in 0.139 seconds.
09.12.56 STC63069 +CWWKZ0001I: Application ExampleAppWrapperClientV855 started in 0.184 367
367 seconds.
09.12.56 STC63069 +CWWKZ0001I: Application com.ibm.cics.server.examples.wlp.hello.war 368
368 started in 0.159 seconds.
09.12.56 STC63069 +CWWKZ0001I: Application com.ibm.cics.fv.wlp.web.db2.datasource 369
369 started in 0.241 seconds.
09.12.56 STC63069 +CWWKZ0001I: Application George started in 0.235 seconds.
09.12.56 STC63069 +CWWKZ0001I: Application ExampleAppDispatchOrderV855 started in 0.511 371
371 seconds.
09.12.56 STC63069 +CWWKZ0001I: Application JAXWSWebSample started in 0.367 seconds.
09.12.56 STC63069 +CWWKZ0001I: Application com.ibm.cics.server.examples.wlp.link started 373
373 in 0.547 seconds.
09.12.56 STC63069 +CWWKZ0001I: Application com.ibm.cics.wlp.link.mdb started in 0.752 374
374 seconds.
09.12.56 STC63069 +CWWKZ0001I: Application com.ibm.cics.server.examples.wlp.tsq.app 375
375 started in 0.975 seconds.
09.12.56 STC63069 +CWWKZ0001I: Application com.ibm.cics.server.examples.wlp.jdbc.app 376
376 started in 0.975 seconds.
09.12.57 STC63069 +CWWKF0011I: The server <server_name> is ready to run a smarter planet.
09.13.03 STC63069 +DFHMN0115I IYK2ZFV1 CICS Server z/OS WLM Health percentage is now 25.
09.13.03 STC63069 +DFHMQ0391 I 07/10/2019 09:13:03 IYK2ZFV1 Start requested for mqmonitor APPLID, transaction CKTI.
09.13.03 STC63069 +DFHMQ0391 I 07/10/2019 09:13:03 IYK2ZFV1 Start requested for mqmonitor CSQ4SAMP, transaction CKTI.
09.13.03 STC63069 +DFHMQ0391 I 07/10/2019 09:13:03 IYK2ZFV1 Start requested for mqmonitor DFHMQINI, transaction CKTI.
09.13.03 STC63069 +DFHMQ0391 I 07/10/2019 09:13:03 IYK2ZFV1 Start requested for mqmonitor EPD3BRID, transaction CKBR.
09.13.03 STC63069 +DFHMQ0391 I 07/10/2019 09:13:03 IYK2ZFV1 Start requested for mqmonitor MQGETTER, transaction MGTR.
09.13.03 STC63069 +DFHMQ0391 I 07/10/2019 09:13:03 IYK2ZFV1 Start requested for mqmonitor PIPE3, transaction CKTI.
09.13.03 STC63069 +DFHMQ0391 I 07/10/2019 09:13:03 IYK2ZFV1 Start requested for mqmonitor PIPE4, transaction CKTI.
09.13.03 STC63069 +DFHMQ0700 I 07/10/2019 09:13:03 IYK2ZFV1 CKBR 00119 CICS-MQ bridge initialization in progress.
09.13.03 STC63069 +DFHMQ0702 I 07/10/2019 09:13:03 IYK2ZFV1 CKBR 00119 CICS-MQ bridge monitor initialization complete.
09.13.03 STC63069 +DFHMQ0703 I 07/10/2019 09:13:03 IYK2ZFV1 CKBR 00119 WaitInterval=20,000, Auth=LOCAL
Q=SYSTEM.CICS.BRIDGE.QUEUE.
09.13.03 STC63069 +DFHMQ0783 I 07/10/2019 09:13:03 IYK2ZFV1 CKBR 00119 Msg=BOTH, PassTktA=IYK2ZFV1.
09.13.03 STC63069 +DFHMQ0792 I 07/10/2019 09:13:03 IYK2ZFV1 CKBR 00119 RouteMEM=N
09.13.03 STC63069 +DFHMQ0794 I 07/10/2019 09:13:03 IYK2ZFV1 CKBR 00119 SmfMqGet=100.
09.13.24 STC63069 +DFHMN0115I IYK2ZFV1 CICS Server z/OS WLM Health percentage is now 50.
09.13.44 STC63069 +DFHMN0115I IYK2ZFV1 CICS Server z/OS WLM Health percentage is now 75.
09.14.04 STC63069 +DFHMN0115I IYK2ZFV1 CICS Server z/OS WLM Health percentage is now 100.
09.14.04 STC63069 +DFHMQ0391 I 10/16/2017 09:14:04 IYK2ZFV1 Start requested for mqmonitor CSQ4SAMP, transaction CKTI.
09.16.19 STC63069 +DFHHC0101I IYK2ZFV1 CICS has registered successfully to the z/OS Health Checker.

Note:
1. The SVC value is only an example; specify the SVC value that is defined in your SVC table.
2. You must define the default CICS user ID using the DFLTUSER system initialization parameter, before
you can attempt to bring a CICS region up. On a production system, the default user must not have
access to any unnecessary CICS transactions. The resource access authorizations that you give to the
default user must be clearly limited to those resources that you intend to be universally available, and
therefore do not have to be restricted in any way. For information about defining the attributes of the
default user ID, see Defining the default CICS user ID to RACF.
3. The DFHSM0122 message shows the limit of dynamic storage areas (DSAs) below 16 MB. This limit
is set by the DSALIM system initialization parameter. The DFHSM0123 message shows the limit of the
DSAs above 16 MB but below 2 GB. This limit is set by the EDSALIM system initialization parameter.
For information about these storage areas, see DSALIM system initialization parameter and EDSALIM
system initialization parameter.
4. If you specify MCT=NO (the default) as a system initialization parameter, the CICS monitoring domain
builds a default monitoring control table. This ensures that default monitoring control table entries
are always available for use when monitoring is active. The next message indicates that monitoring is
inactive.
5. This specifies the message text that is to be displayed on the screen by the CSGM (good morning)
transaction when a terminal is logged on to CICS through z/OS Communications Server, or by the CESN
transaction if this transaction is used to sign on to CICS.

Chapter 5. Setting up a CICS region 201

 6. The resource group lists to be loaded when CICS starts up. The groups of resource definitions in these
group lists are installed only during an initial or cold start. For a warm restart, the resource definitions
still installed at shutdown are reinstated from the CICS global catalog.
7. Storage protection is active, because the system initialization parameter STGPROT=YES was specified
or allowed to default to YES.

CICS Transaction Server resource usage collection for software pricing

CICS TS supports the collection of software usage information.
For information on the use of the Sub-Capacity Reporting Tool (SCRT), see Using the Sub-Capacity
Reporting Tool.
CICS registers information using the IFAUSAGE macro during the initialization of each CICS address space
and the address spaces for named counter, temporary storage, and coupling facility data table servers.
The region status servers is a variant of the coupling facility data table, and also registers information.
The CICS version and product identifier are included in the registered information. This information is
collected in SMF 89 records.

202 CICS TS for z/OS: Configuring CICS

Chapter 6. Setting up CICS data sharing servers
To initialize CICS data sharing servers, you must set up AXM system services and define appropriate data
sharing servers. You must also ensure that AXM and any data sharing server address spaces being used
are started before the CICS regions try to use them.
CICS data sharing servers support the following functions:
• Temporary storage data sharing
• Coupling facility data tables
• Named counters
Note:
Users implementing CICSPlex SM sysplex optimized workload management will require a region status
server to be configured. This server is a bespoke type of CFDT server into which CICS regions broadcast
generic system status data which is subsequently interrogated by CICSPlex SM for making dynamic
routing decisions. The table structure managed by this server may not be modified, adjusted, or
reconfigured for user application utilization.

Defining and starting AXM system services

The authorized cross-memory (AXM) server environment provides the runtime environment for CICS data
sharing server regions. You must define and start AXM system services to run any of the CICS data sharing
servers.

About this task

To establish AXM cross-memory connections for an MVS image, you must define an MVS subsystem called
AXM. You can choose to create the subsystem statically or dynamically.

Procedure
• To define the MVS subsystem statically, add an entry with the required parameters to the IEFSSNxx
member of SYS1.PARMLIB:

SUBSYS SUBNAME(AXM) INITRTN(AXMSI)

Defining AXM in the IEFSSNxx member ensures that AXM system services automatically become
available when you IPL MVS.
The AXM subsystem initialization routine, AXMSI, sets up the appropriate definitions from the main
scheduler region. Note that AXM uses the subsystem definition only as a means of scheduling AXM
initialization in the main scheduler address space. The MVS subsystem interface for AXM is not
activated or used.
• To define the MVS subsystem dynamically, enter the following command:

SETSSI ADD,SUBNAME=AXM,INITRTN=AXMSI

If initialization of the AXM subsystem fails for any reason, for example, because of an error in the
command or because AXMSI is not in a linklist library, MVS does not allow another attempt because
the subsystem is then already defined. In this case, use a different subsystem name, such as AXM1,
because AXM does not rely on a specific subsystem name. If you start AXM successfully the first time,
further attempts are ignored.

What to do next
When the AXM subsystem has started successfully, you can create a data sharing server.

© Copyright IBM Corp. 1974, 2022 203

Setting up and running a temporary storage server
CICS transactions running in an AOR access temporary storage (TS) pools through a temporary storage
server that supports a named pool. In each MVS image in the sysplex, you must set up one temporary
storage server for each pool that is defined in the coupling facility.

Procedure
1. Define a TS pool as a temporary storage list structure in a coupling facility.
2. Define and start the temporary storage job, for a shared TS pool to run in an mvs batch region.
3. When the temporary storage region is running, you can issue commands to control the queue server
for the pool.
4. Optionally, you can upload and reload queue pools.

Overview of the temporary storage data sharing server

CICS transactions running in an AOR access TS pools through a temporary storage data sharing server
that supports a named pool.
In each z/OS image in the sysplex, you need one TS server for each pool defined in a coupling facility
which can be accessed from that z/OS image. All TS pool access is performed by cross-memory calls to
the TS server for the named pool.
An AOR can access more than one TS server concurrently. This multiserver access is required if you create
multiple pools, because each TS server provides access to only one pool of TS queues.
CICS maps temporary storage requests to a TS server using the POOLNAME attribute of a TSMODEL
resource definition.
Figure 37 on page 205 illustrates a parallel sysplex with three CICS AORs linked to the temporary storage
server address space(s).

204 CICS TS for z/OS: Configuring CICS

 MVS1 MVS2 MVS3
VTAM VTAM VTAM

TOR 1 TOR 2 TOR 3

AOR AOR AOR AOR AOR AOR AOR AOR AOR

DFHXQMN DFHXQMN DFHXQMN

TS server TS server TS server

Coupling
facility (CF1) F2)

Temporary
storage
pool

Figure 37. Conceptual view of a Parallel Sysplex with TS data sharing

Security
The server must be authorized to access the coupling facility list structure in which the temporary storage
pool is defined; XES checks this. The server must also be authorized to act as a temporary storage server;
AXM checks this. For information on how to define the necessary authorizations see Authorizing access to
temporary storage servers.

Defining temporary storage pools for temporary storage data sharing

You define a temporary storage (TS) pool as a temporary storage list structure in a coupling facility by
using coupling facility resource manager (CFRM) policy statements.

About this task

To use TS data sharing, main or auxiliary storage for your TS queues is replaced by one or more TS pools,
where the scope and function of each TS pool is similar to a queue-owning region (QOR).
Each TS pool is defined, using MVS cross-system extended services (XES), as a keyed list structure in a
coupling facility. Therefore, you must define the pool using the coupling facility resource manager (CFRM)
policy statements. You use the CFRM policy definition utility, IXCMIAPU, to specify the size of the list
structures required, and their placement in a coupling facility. For an example of this utility, see member
IXCCFRMP in the SYS1.SAMPLIB library (see Administrative data utility for CFRM policy data in z/OS MVS
Setting Up a Sysplex). An example of a definition statement is shown in Figure 38 on page 206.

Chapter 6. Setting up CICS data sharing servers 205

 STRUCTURE NAME(DFHXQLS_PRODTSQ1)
SIZE(8192)
INITSIZE(10240)
PREFLIST(FACIL01,FACIL02)

Figure 38. Example of defining the estimated size of a list structure

The name of the list structure for a TS data sharing pool is created by appending the TS pool name to the
prefix DFHXQLS_, giving DFHXQLS_poolname. When defined, you must activate the CFRM policy using the
MVS operator command SETXCF START.
When a list structure is allocated, an initial size and a maximum size can be specified in the CFRM policy.
All structure sizes are rounded up to the next storage increment for the coupling facility level (CFLEVEL)
at allocation time. For example, sizes are rounded up to the nearest 1 MB for CFLEVEL 16. Provided that
space is available in the coupling facility, a list structure can be dynamically expanded from its initial
size towards its maximum size, or contracted to free up coupling facility space for other purposes. If the
initial structure allocation becomes full, the structure does not expand automatically, even if the structure
allocated is less than the specified maximum size. To expand a list structure when the allocation becomes
full, you can expand it (up to its maximum size) using the following SETXCF command:

SETXCF START,ALTER,STRNAME=DFHXQLS_poolname,SIZE=nnnn

Defining the CFRM policy statements for a list structure does not create the list structure. A TS server
creates the list structure during its initialization. See “Setting up and running a temporary storage server”
on page 204.
If the server connection fails, there are implications for coupling facility data tables. See “Server
connection management” on page 270 and Named counter recovery.
For further information about defining list structures, see the following z/OS information:
• z/OS MVS Setting Up a Sysplex
• z/OS MVS Programming: Sysplex Services Guide
• z/OS MVS Programming: Sysplex Services Reference

Storage calculations for temporary storage data sharing

You can use the z Systems® Coupling Facility Structure Sizer tool (CFSizer) to calculate storage
requirements for temporary storage list structures in a coupling facility.
A coupling facility structure contains both stored data and the information needed to manage and access
that data, in a similar way to a key-sequenced data set. The data for each entry in the coupling facility
is stored as a chain of fixed-size (usually 256-byte) elements, which means that the exact length for
variable-length data must be stored separately. To do this, CICS includes a length prefix in the stored
data, so space calculations must allow for each entry using a whole number of elements. The amount of
internal control information depends on the level of functionality and performance of the coupling facility
control code for the current coupling facility level (CFLEVEL). The storage requirements can increase for a
higher CFLEVEL. For more information, see “Coupling facility storage management” on page 268.
CFSizer is a web-based application that takes these factors into account and communicates with a
coupling facility at a current CFLEVEL to calculate storage requirements. See CFSizer.
To use CFSizer to calculate storage requirements for temporary storage list structures, enter the following
information:
Maximum number of queues
The maximum number of data lists that are reserved when CICS allocates the structure list. This value
determines the maximum number of large queues that can be stored in the structure and corresponds
to the MAXQUEUES server parameter. See “List structure parameters” on page 210.
A large queue is one where the total size of the data items exceeds 32K. For a small queue with
multiple items that does not exceed 32K, all the queue items are stored as the data portion of the

206 CICS TS for z/OS: Configuring CICS

 queue index entry. If the queue exceeds 32K, it is converted to a form where one item per entry is
stored in a separate list in the structure and is referred to by the queue index entry.
Specify a large enough number to handle large queues, but not so large that unused preallocated list
headers use a large amount of coupling facility storage. The valid range is from 1 to 999999. The
default is 1000.
Average rounded item size
The average amount of storage required for each TS queue item. Each item has a two-byte length
prefix and is stored as one or more 256-byte elements. This value determines the entry to element
ratio that is used to calculate the required structure size. The valid range is from 1 to 32768. The
default is 256.
If all queue items are approximately the same size, calculate this value by taking the average data
size, adding two, and rounding up to the next multiple of 256. The amount of element storage required
is two bytes more than the data item size because of the length prefix on each item.
If queue items are different sizes, round up each size first before you take the average. For example, if
half the items are 100 bytes and half are 300 bytes, round up the sizes to 256 and 512 respectively,
then average them. The resulting average rounded item size is 384, which is more accurate than using
the average item size of 200 and then rounding it up to 256.
Total number of items in all queues
The total number of entries in all the TS queues.
Target usage percent
The percentage of the structure space that the given total number of items are expected to use.
Specify a number in the range of 1 to 100. The default is 75. This value ensures the following:
• Free space exists for temporary expansion.
• If the initial free space is not enough, there is time to expand the structure in response to warning
messages (which normally start at 80%).
• Activity to alter entry to element ratios is reduced.
Maximum expansion percent
The percentage that the structure can expand. If a non-zero value is specified, the maximum structure
size will be greater than the initial structure size by an amount such that the total amount of data can
increase by this percentage. For example, if the value 200 is specified, the initial size is enough to
store the specified total number of items, and the maximum size is enough to store three times that
number of items.

Defining TS server regions

A shared TS pool consists of an XES list structure, which is accessed through a cross-memory queue
server region. You start a shared TS pool in an MVS image by starting up a queue server region for that
pool.

About this task

To start the TS server region for a shared TS pool, you can use either a batch job or a started task. The job
or task must invoke the queue server region program, DFHXQMN, which is in an APF-authorized library.

Procedure
1. Specify the DFHXQMN program either in a SYSIN data set defined in the JCL, or in the PARM parameter
on the EXEC statement.
2. Specify the mandatory and optional startup parameters for the DFHXQMN program.
a) You must specify a SYSPRINT DD statement for the print file.
b) You must specify a SYSIN DD statement for the server parameters.
c) You must specify the TS pool name.

Chapter 6. Setting up CICS data sharing servers 207

 d) You must concatenate the license activation data set (the SDFHLIC library) to the STEPLIB DD
statement.
e) It is recommended that you specify TIME=NOLIMIT.
The server task remains in a wait during most normal processing, because server processing is
performed under the TCB of the client CICS region. If you omit this parameter, your server job could
fail with abend S522 (wait limit exceeded), depending on the JWT value specified in the SMFPRMxx
member of SYS1.PARMLIB.
f) Specify additional parameters as required.
For example, you might want to control the maximum number of queues that are to be supported in
the pool and the number of buffers the server is to allocate.

Sample startup job for a TS server

Figure 39 on page 208 shows an example of the JCL you might use to start a TS server.

//PRODTSQ1 JOB ...

//TSSERVER EXEC PGM=DFHXQMN,REGION=64M,TIME=NOLIMIT Start TS data sharing server
//STEPLIB DD DSN=CICSTS61.CICS.SDFHAUTH,DISP=SHR Authorized library
// DD DSN=CICSTS61.CICS.SDFHLIC,DISP=SHR License activation data set
//SYSPRINT DD SYSOUT=* Messages and statistics
//SYSIN DD *
POOLNAME=PRODTSQ1 Pool name
MAXQUEUES=5000 Allow up to 5000 large queues
BUFFERS=1000 1000 buffers (32K each, 32M total)
/*

Figure 39. Sample startup job for a TS queue server

Queue server REGION parameter

The queue server REGION parameter JCL needs to specify at least enough virtual storage for the specified
number of buffers plus the storage used to process queue requests.
Each buffer occupies a little more than 32K bytes, and each connected CICS region can have up to ten
queue requests active at a time, each using 5K to 10K bytes, so to be safe the REGION size should allow
at least 32K per buffer and 100K for each connected CICS region, plus a margin of about 10% for other
storage areas.
During server initialization, the server acquires all of the available storage above the 16M line, as
determined by the REGION size, then releases 5% of it for use by operating system services. It also
acquires 5% of the free storage below the line for use in routines which require 24-bit addressable
storage, for example sequential file read and write routines.
After server initialization, AXM page allocation services are used to manage server region storage. Server
statistics indicate how much storage is allocated and used within the storage areas above and below the
16M line, which are called AXMPGANY and AXMPGLOW in the statistics.
If a task in the server region or a cross-memory request runs out of storage, this is likely to result in AXM
terminating that task or request using a simulated abend with system completion code 80A to indicate a
GETMAIN failure. Although the server can usually continue processing other requests in this case, running
out of storage in a critical routine can cause the server to terminate, so it is best to ensure that the
REGION size is large enough to eliminate the risk.

TS queue server parameters

Parameters are specified in the form KEYWORD=value. You can optionally specify keywords in mixed case
to improve readability.
If you specify more than one parameter in the PARM field, or on the same SYSIN input line, the
parameters must be separated by commas. Any text following one or more spaces is taken as a

208 CICS TS for z/OS: Configuring CICS

descriptive comment. Any parameter line starting with an asterisk or a space is assumed to be a whole
line comment.
You can enter some parameter keywords in more than one form, such as an abbreviation. The standard
form of each keyword is generally the longest form of the first word shown.
The main parameters used are listed on the server print file during start-up.
The following parameters are all valid as initialization parameters (in the SYSIN file, or the PARM field),
and some can be modified by the server SET command.
You can display any parameter with the server DISPLAY command. Display the values of all parameters
using DISPLAY ALLPARMS.
Specify the following keywords to give combined lists of information:
• PARMS for main parameter values
• STATS for all available statistics
• INIT to select parameters and statistics whose values are usually displayed when initialization is
complete

Primary parameters
These parameters are usually specified for all servers:
POOLNAME=pool_name
specifies the name, of 1 to 8 characters, of the queue pool used to form the server name and
the name of the coupling facility list structure DFHXQLS_poolname. This parameter is valid only at
initialization, and must always be specified.
This keyword can also be coded as POOL.
BUFFERS={100|number}
specifies the number of queue buffers to allocate for the server address space.
A queue index buffer holds a queue index entry plus up to 32K of queue data (for a small queue).
When a READ or WRITE request completes the queue index information is retained in the buffer. This
can avoid the need to reread the queue index if the same queue is referenced from the same MVS
image before the buffer has been reused. If no buffer is available at the time of a request, the request
is made to wait until one becomes free.
The number of buffers should preferably be at least ten for each CICS region that can connect to the
server in this MVS image. This avoids the risk of buffer waits. Additional buffers may be used to reduce
the number of coupling facility accesses by keeping recently used queue index entries in storage. In
particular, if the current version of a queue index entry is in storage at the time a queue item is read,
the request requires only one coupling facility access instead of two. If the current version of a queue
index entry is in storage when a second or subsequent item is written to the same queue, the request
requires only one coupling facility access instead of three.
It is not worth defining extra buffers beyond the point where this might cause MVS paging, as it
is more efficient to reread the index entry than to page in the buffer from auxiliary storage. This
parameter is valid only at initialization.
The valid range is from 1 to 999999.
This keyword can also be coded as BUF.
FUNCTION={SERVER|UNLOAD|RELOAD}
Information about this parameter is given in “Unloading and reloading queue pools” on page 216.
STATSOPTIONS={NONE|SMF|PRINT|BOTH}
specifies the statistics options that determine whether interval statistics are produced and whether
statistics are sent to SMF, the print file, or both.
This keyword can also be coded as STATSOPT.

Chapter 6. Setting up CICS data sharing servers 209

 ENDOFDAY={00:00|hhmm}
specifies the time when end of day statistics are to be collected and reset. If statistics options specify
NONE, end of day statistics are written to the print file. The valid range is from 00:00 to 24:00.
This keyword can also be coded as EOD.
STATSINTERVAL={3:00|hhmm}
specifies the statistics interval, within the range of 1 minute to 24 hours. It is ignored if
STATSOPTIONS=NONE.
The valid range is from 00:01 to 24:00 (although it may be specified in seconds).
This keyword can also be coded as STATSINT.

Automatic restart manager (ARM) parameters

During server initialization, the server unconditionally registers with ARM except when the server program
is invoked with either the UNLOAD or the RELOAD functions. The server will not start if the registration
fails.
Use the following parameters to override default processing for the automatic restart manager:
ARMELEMENTNAME=elementname
specifies the automatic restart manager element name, up to 16 characters, to identify the server to
ARM for automatic restart purposes. The permitted characters for the element name are A to Z 0-9 $
# @ and the underscore symbol (_).
The default identifier is of the form DFHXQnn_poolname, where XQ represents the server type, nn is
the &SYSCLONE value for the system (which can be either one or two characters), and poolname is the
name of the pool served by the server.
This parameter is only valid at server initialization.
This keyword can be abbreviated to ARMELEMENT or ARMELEMNAME.
ARMELEMENTTYPE=elementtype
specifies the automatic restart manager element type, up to 8 characters for use in ARM policies as a
means of classifying similar elements. The permitted characters for the element type are A to Z 0-9 $
# and @.
The default element type is SYSCICSS.
This parameter is only valid at server initialization.
This keyword can be abbreviated to ARMELEMTYPE.

List structure parameters

The list structure parameters specify the attributes that are used only for initial allocation of the
temporary storage list structure for a TS pool. Initial allocation occurs the first time a server is started for
the TS pool.
The list structure parameters are as follows:
MAXQUEUES={1000|number}
Specifies the maximum number of data lists to be reserved when the structure is allocated, which
determines the maximum number of large queues that can be stored in the structure. This parameter
also determines how many list headers are defined when the structure is created.
Specify a large enough number to handle large queues, but not so large that unused preallocated list
headers use a large amount of coupling facility storage.
You cannot change this number without reallocating the structure. Therefore, if the structure is being
allocated at less than its maximum size, the value here should be based on the maximum possible
size of the structure rather than its initial size.
This parameter corresponds to the "Maximum number of queues" value in the CFSizer tool (see
“Storage calculations for temporary storage data sharing” on page 206.

210 CICS TS for z/OS: Configuring CICS

 The valid range is from 1 to 999999.
This keyword can also be coded as MAXQ.
POOLSIZE={0|number{K|M|G}}
Specifies the maximum amount of storage to be allocated for the list structure, expressed as kilobytes
(nK), megabytes (nM), or gigabytes (nG).
This parameter is used when the list structure is created with a specified value of less than that
specified for the list structure in the coupling facility resource management (CRFM) policy.
The default value 0 specifies that no maximum limit is applied here and the maximum that is specified
in the CFRM policy applies.
A non-zero value is rounded up by MVS to the next storage increment for the coupling facility level
(CFLEVEL). For example, the value is rounded up to the nearest 1 MB for CFLEVEL 16.
The valid range is from 0 to 16777215M. However, you must specify a value that is less than the
maximum size of a structure in z/OS, otherwise a z/OS error occurs. For more details, see the
information about CFRM parameters in z/OS MVS Setting Up a Sysplex.
For information about defining temporary storage list structures, see “Defining temporary storage pools
for temporary storage data sharing” on page 205.

Debug trace parameters

These parameters are used only for intensive debug tracing.
Note that using these options in a production environment may significantly impact performance and
cause the print file to grow very rapidly, using up spool space.
Trace messages from cross-memory requests may be lost if they are generated faster than the trace print
subtask can print them. In such cases, the trace indicates only how many messages were lost.
TRACECF={OFF|ON}
specifies the coupling facility interface debug trace options, OFF or ON. This option produces trace
messages on the print file indicating the main parameters to the coupling facility request interface and
the result from the IXLLIST macro.
This keyword can also be coded as CFTR or CFTRACE.
TRACERQ={OFF|ON}
specifies the queue request debug trace options, OFF or ON. This option produces trace messages on
the print file indicating the main parameters on entry to the shared queue request or shared queue
inquire interface and the results on exit.
This keyword can also be coded as RQTR or RQTRACE.

Tuning parameters
These parameters are provided for tuning purposes, but usually you can omit these and let the TS server
use the default values.
ELEMENTRATIO={1|number}
An MVS coupling facility resource management (CFRM) parameter that specifies the element part of
the entry-to-element ratio when the structure is first allocated. This value determines the proportion
of the structure space that is initially set aside for data elements.
The ideal value for the entry-to-element ratio is the average size of data for each entry divided by the
element size. However, the server automatically adjusts the ratio according to the actual entry and
element usage.
This parameter is valid only at server initialization, and is used only when the structure is first
allocated. The valid range is from 1 to 255.
You can abbreviate this keyword to ELEMRATIO.
For further information about this parameter in the coupling facility, see z/OS MVS Programming:
Sysplex Services Guide.

Chapter 6. Setting up CICS data sharing servers 211

 ELEMENTSIZE={256|number}
An MVS CFRM parameter that specifies the element size for structure space, which must be a power
of 2. This parameter is used only for coupling facility log streams. The valid range is 256 to 4096.
For current coupling facility implementations, there is no reason to change this parameter from the
default value of 256.
This parameter is valid only at server initialization and is used only when the structure is first
allocated.
You can abbreviate this keyword to ELEMSIZE.
ENTRYRATIO={1|number}
An MVS CFRM parameter that specifies the entry part of the entry-to-element ratio when the structure
is first allocated. This value determines the proportion of structure space that is initially set aside for
list entry controls.
It is not essential to specify this parameter because the server automatically adjusts the ratio, based
on actual usage, to improve space utilization if necessary.
This parameter is valid only at server initialization and is used only when the structure is first
allocated. The valid range is from 1 to 255.
For further information about this parameter in the coupling facility, see z/OS MVS Programming:
Sysplex Services Guide.
LASTUSEDINTERVAL={00:10|hh:mm}
A CICS parameter that specifies how often the last used time for large queues is updated.
For small queues, the last used time is updated on every reference. For large queues, updating the
last used time requires an extra coupling facility access, so this update occurs only if the queue has
not previously been accessed in this interval of the current time. Therefore, the last used time interval
returned by an INQUIRE command can be greater than the true value by an amount up to the value
of this parameter. The last used time is used mainly to determine whether the queue is obsolete, so a
suitable value for the LASTUSEDINTERVAL parameter is normally a few minutes.
See INQUIRE TSQUEUE / TSQNAME.
The valid range is from 00:00 to 24:00. This value can also be specified in seconds.
You can abbreviate this keyword to LASTUSEDINT.
SMALLQUEUEITEMS={9999|number}
A CICS parameter that specifies the maximum number of items that can be stored in the small queue
format in the queue index entry data area. This parameter can force a queue to be converted to the
large queue format if it has a large number of small items. It can be more efficient to write the items
separately than to rewrite the whole small queue data area each time.
The valid range is from 1 to 32767.
SMALLQUEUESIZE={32K|number}
A CICS parameter that specifies the maximum data size for a small queue, including the two-byte
length prefix on each data item. If a queue exceeds the maximum size when a second or subsequent
item is written to it, the queue is converted to the large queue format.
This parameter can force queues to be converted to the large queue format at a smaller size than
32K. This is to prevent large amounts of data being written to the small queue format. On systems
where asynchronous coupling facility processing causes contention for hardware resources, using
this parameter can improve performance. However, on most systems, it is more efficient to defer
conversion until the maximum size of 32K is reached.
The valid range is from 4096 to 32768.

212 CICS TS for z/OS: Configuring CICS

Warning parameters
These parameters modify the threshold at which warning messages and automatic ALTER actions occur
when the structure becomes nearly full:
ELEMENTWARN={80|number}
specifies the percentage of elements in use at which warnings and automatic ALTER actions should be
first triggered.
The valid range is from 1 to 100.
This keyword can also be coded as ELEMWARN.
ELEMENTWARNINC={5|number}
specifies the percentage increase (or decrease) of elements in use before the next warning should
be triggered (reduced to 1 when next increase would otherwise reach 100). Additional messages are
issued as the number of elements in use changes. The messages stop when the number of elements
in use falls at least by this percentage below the initial warning level.
The valid range is from 1 to 100.
This keyword can also be coded as ELEMWARNINC.
ENTRYWARN={80|number}
specifies the percentage of entries in use at which warnings and automatic ALTER actions should be
first triggered.
The valid range is from 1 to 100.
ENTRYWARNINC={5|number}
specifies the percentage increase (or decrease) of entries in use before next warning should be
triggered (reduced to 1 when next increase would otherwise reach 100). Additional messages are
issued as the number of elements change. The messages stop when the number of entries in use falls
at by least the specified percentage below the initial warning level.
The valid range is from 1 to 100.

Automatic ALTER parameters

Define the following parameters to modify the conditions under which the server attempts an automatic
ALTER action when the structure becomes nearly full.
For details of the queue server automatic ALTER process, see “Queue server automatic ALTER
processing” on page 214.
ALTERELEMMIN={100|number}
specifies the minimum number of excess elements that must be present for an automatic ALTER to be
issued to convert those elements to entries.
The valid range is from 1 to 999999999.
ALTERELEMPC={1|number}
specifies the minimum percentage of excess elements that must be present for an automatic ALTER
to be issued to increase the proportion of entries.
The valid range is from 0 to 100.
ALTERENTRYMIN={100|number}
specifies the minimum number of excess entries that must be present for an automatic ALTER to be
issued to convert those entries to elements.
The valid range is from 0 to 999999999.
ALTERENTRYPC={1|number}
specifies the minimum percentage of excess entries which must be present for an automatic ALTER to
be issued to increase the proportion of elements.
The valid range is from 0 to 100.

Chapter 6. Setting up CICS data sharing servers 213

 ALTERMININTERVAL={00:10|hhmm}
specifies the minimum time interval to be left between automatic ALTER attempts when the structure
is nearly full (above the element or entry warning level).
The valid range is from 00:00 to 24:00.
This keyword can also be coded as ALTERMININT.

Queue server automatic ALTER processing

The queue server monitors the total number of elements and entries in use in the structure, using
information returned by the coupling facility on every request.
When the numbers in use exceed the thresholds that you have defined with the TS queue server warning
parameters, a warning message, DFHXQ0422I or DFHXQ0423I, is issued, and is repeated each time the
number in use increases beyond further thresholds.
Each time the warning is issued, the server tests whether an automatic ALTER for the entry to element
ratio should be performed. The test is done by calculating how many excess elements or entries will
be left when the other runs out completely. This is based on the ratio between the current numbers of
elements and entries in use.
An IXLALTER request is issued to alter the entry to element ratio to the actual current ratio between the
number of entries and elements in use if both of the following conditions are met:
• The number of excess elements or entries exceeds the number specified in the ALTERELEMMIN or
ALTERENTRYMIN parameter.
• The same number expressed as a percentage of the total exceeds the value specified in the
ALTERELEMPC or ALTERENTRYPC parameter.
Only one ALTER request may be active at a time for a given structure. If the ALTER process is started by
one server, the ALTER of another server will be rejected. However, the system automatically notifies all
servers when the ALTER completes, giving the new numbers of elements and entries so that each server
can update its own status information.
A further ALTER attempt is suppressed until at least the minimum ALTER interval (specified by the
ALTERMININTERVAL parameter) has elapsed, if both of the following conditions are met:
• Any form of ALTER has already been used recently (by any server or by an operator SETXCF ALTER
command).
• The structure space usage has remained above warning levels since the previous attempt.

Shared TS queue server commands

Commands can be issued to control a queue server using the MVS MODIFY (F) command specifying the
job or started task name of the server region.
The general form of a queue server command is as follows:

F server,cmd parameter,parameter... comments

The MVS STOP command is equivalent to issuing the server command STOP using the MVS MODIFY
command.
The queue server supports the following commands:
SET keyword=value
changes one or more server parameter values. This applies to all parameters other than those
indicated as being for initialization only. The command can be abbreviated to T, as for the MVS SET
command.

214 CICS TS for z/OS: Configuring CICS

DISPLAY keyword
displays one or more parameter values, or statistics summary information, on the console. The valid
parameter keywords for DISPLAY and PRINT are described later in this section. The command can be
abbreviated to D, as for the MVS DISPLAY command.
PRINT keyword
produces the same output as DISPLAY but only on the print file.
STOP
terminates the server, waiting for any active connections to terminate first, and preventing any new
connections.
The command can be abbreviated to P, as for the MVS STOP command.
CANCEL {RESTART={NO|YES}}
Terminate the server immediately. You can specify whether automatic restart should be requested.
For information about CANCEL RESTART see “The CANCEL command options” on page 216.
The server also responds to XES events such as an operator SETXCF command to alter the structure size.
If the server can no longer access the coupling facility, it automatically issues a server CANCEL command
to close itself down immediately.

DISPLAY and PRINT keywords

DISPLAY or PRINT can display the values of any system initialization parameters.
These keywords can also display the following additional information:
ARMREGISTERED
Shows whether ARM registration was successful (YES or NO).
CONNECTIONS
List of the job names and APPLIDs for the regions currently connected to this server. You can also
code this keyword as CONN.

Statistics summaries
BUFSTATS
Queue index buffer pool statistics.
You can also code this keyword as BUFST.
CFSTATS
Coupling facility interface I/O and response statistics.
You can also code this keyword as CFST or STATSCF.
POOLSTATS
Usage statistics for the pool list structure as a whole.
You can also code this keyword as POOLST.
STORAGESTATS
Main storage allocation statistics for the server address space.
You can also code this keyword as STGST, STGSTATS, or STORAGEST.

Keywords representing combined lists of information

PARAMETERS
Main parameter values.
You can also code this keyword as PARM, PARMS, or PARAM.
ALLPARAMETERS
All parameter values.

Chapter 6. Setting up CICS data sharing servers 215

 You can also code this keyword as ALLPARMS.
STATISTICS
All available statistics.
You can also code this keyword as STAT or STATS.
INITIALIZED
Selected parameters and statistics whose values are usually displayed when initialization is complete.
You can also code this keyword as INIT.
ARM
Display all ARM-related parameter values:
• ARMELEMENTNAME
• ARMELEMENTTYPE
• ARMREGISTERED
You can also code this keyword as ARMSTATUS.

The CANCEL command options

You can use the CANCEL command to request an automatic restart.
Specify the following parameter:
RESTART={NO∨YES}
Terminate the server immediately, specifying whether or not automatic restart should be requested.
The default is RESTART=NO.
If the server encounters an unrecoverable problem with the coupling facility connection, consisting
either of lost connectivity or a structure failure, it cancels itself using the CANCEL RESTART=YES
command. This terminates the existing connection and shuts down the server. A new instance of the
server job is then started.
A server can also be restarted explicitly using either the server command CANCEL RESTART=YES or
the MVS command CANCEL jobname,ARMRESTART.
You can also enter RESTART on its own for RESTART=YES, NORESTART for RESTART=NO.

Unloading and reloading queue pools

The contents of a queue pool can be unloaded to a sequential file and subsequently reloaded by running
the server program using the FUNCTION parameter.

About this task

This can be used to preserve the queue pool across planned coupling facility maintenance, or to move the
queue pool to a different coupling facility. The server does not support automatic structure REBUILD, but
the unload and reload process is more flexible. The reloaded queue pool does not need the same name as
the original pool.
FUNCTION={UNLOAD|RELOAD}
requests the server to perform the special functions UNLOAD or RELOAD. When the unload or reload
processing has completed (normally or abnormally) the server program terminates.
If this parameter is omitted, the server program initializes the cross-memory queue server
environment.
When UNLOAD or RELOAD is specified, the server program requires exclusive use of the list structure.
If the structure is currently being used by a normal server, the attempt to unload or reload is rejected.
Similarly, if a normal server attempts to start while an unload or reload function is in progress, the attempt
is rejected because shared access to the structure is not available.

216 CICS TS for z/OS: Configuring CICS

All normal server parameters can be specified on UNLOAD and RELOAD, but many of these, such as the
number of queue buffers, are ignored because they do not apply to unload or reload processing.
The UNLOAD function requires a DD statement for file name DFHXQUL describing the sequential data set
to which the queue pool is to be unloaded. The format of the unloaded file is:

RECFM=F,LRECL=4096,BLKSIZE=4096.

An upper limit for the total size of the data set in bytes can be estimated from the pool usage statistics
produced by the server. The total data size in bytes is obtained by multiplying the number of elements in
use by the element size (usually 256), and for each queue there is also some control information which
typically occupies fewer than 100 bytes per queue. The size is normally smaller than this because unused
space in data elements is not included in the unloaded file. See Figure 40 on page 217 for an example of
UNLOAD JCL.

//UNLDTSQ1 JOB ...

//TSUNLOAD EXEC PGM=DFHXQMN CICS TS queue server program
//STEPLIB DD DSN=CICSxxx.SDFHAUTH,DISP=SHR Authorized library
//SYSPRINT DD SYSOUT=* Options, messages and statistics
//DFHXQUL DD DSN=TSQ1.UNLOADED.QPOOL, Unloaded queue pool
// DISP=(NEW,CATLG),
// SPACE=(4096,(10000,1000)) Estimated size in 4K blocks
//SYSIN DD *
FUNCTION=UNLOAD Function to be performed is UNLOAD
POOLNAME=PRODTSQ1 Pool name
/*

Figure 40. Example of UNLOAD JCL

The RELOAD function requires a DD statement for file name DFHXQRL describing the sequential data set
from which the queue pool is to be reloaded. The structure is allocated if necessary during reloading, in
which case the same server parameters may be used to control structure attributes as for normal server
execution. The RELOAD process bypasses any queues that are already found in the queue pool, because,
for example, the structure was too small and the reload job had to be restarted after using ALTER to
increase the size.
Note that when a pool is nearly full (with less than about 5% free entries and elements) there is no
guarantee that it can be unloaded and reloaded into a structure of exactly the same size. The amount
of space available is affected by the current ratio of entries to elements, which can only be controlled
approximately by the automatic ALTER process.
If the structure reaches the warning level during reloading, the automatic ALTER process attempts to
adjust the entry to element ratio, and the reload process will automatically wait for the ALTER to complete
if no space is available while an ALTER is still in progress.
If RELOAD fails because it runs out of space, the resulting messages include the numbers of queues
reloaded and blocks read up to the time of the failure. Compare these values with those in the messages
from the original UNLOAD to determine how many more queues and how much more data remained to be
loaded. See Figure 41 on page 217 for an example of RELOAD JCL.

//RELDTSQ1 JOB ...

//TSRELOAD EXEC PGM=DFHXQMN CICS TS queue server program
//STEPLIB DD DSN=CICSxxx.SDFHAUTH,DISP=SHR Authorized library
//SYSPRINT DD SYSOUT=* Options, messages and statistics
//DFHXQRL DD DSN=TSQ1.UNLOADED.QPOOL,DISP=OLD Unloaded queue pool
//SYSIN DD *
FUNCTION=RELOAD Function to be performed is RELOAD
POOLNAME=PRODTSQ1 Pool name
POOLSIZE=50M Increased pool size
MAXQUEUES=10000 Increased number of big queues
/*

Figure 41. Example of RELOAD JCL

Chapter 6. Setting up CICS data sharing servers 217

Setting up and running a coupling facility data table server
CICS coupling facility data tables provide rapid sharing of working data within a sysplex, with update
integrity. The data tables are held in coupling facility structures, with access through a named server. You
must set up one server for each pool in an MVS image.

Before you begin

Before you can start a server for named coupling facility data table pool, define the coupling facility
structure to be used for the pool. See “Defining a coupling facility data table pool” on page 221 for
information about defining a coupling facility list structure.

About this task

You can put related groups of coupling facility data tables in separate pools; for example, you might want
to have one pool for production and another for test. A pool is defined as a list structure in the coupling
facility resource management (CRFM) policy. The pool name is used to form the server name with the
prefix DFHCF and is specified in the startup JCL for the server.

Procedure
1. Define and start a coupling facility data table server job, to run in an mvs batch region.
2. When the server is running you can perform various operating tasks:
• You can control the server region using MVS commands.
• You can delete or empty the pool for the coupling facility data tables.
• You can unload and reload the contents of a pool to and from a sequential data set.

Overview of a coupling facility data table server

CICS coupling facility data tables is designed to provide rapid sharing of working data within a sysplex,
with update integrity.
The data is held in a table that is similar in many ways to a shared user-maintained data table, and the API
used to store and retrieve the data is based on the file control API used for user-maintained data tables.
Figure 42 on page 219 illustrates a Parallel Sysplex® with three CICS AORs linked to the coupling facility
data table servers.

218 CICS TS for z/OS: Configuring CICS

 MVS1 MVS2 MVS3
VTAM VTAM VTAM

TOR 1 TOR 2 TOR 3

AOR AOR AOR AOR AOR AOR AOR AOR AOR

DFHCFMN DFHCFMN DFHCFMN

CFDT server CFDT server CFDT server

Coupling
(CF1) facilities
F2)
Coupling
facility
data table
pool

Figure 42. Conceptual view of a Parallel Sysplex with coupling facility data table servers

Coupling facility data tables

Coupling facility data tables (CFDTs) provide a method of file data sharing, using CICS file control, without
the need for a file-owning region, and without the need for VSAM RLS support. CICS CFDT support
provides rapid sharing of working data within a sysplex, with update integrity.
The data is held in a coupling facility, in a table that is similar to a shared user-maintained data table. You
must define the resources required for CFDTs in an MVS coupling facility resource management (CFRM)
policy.
Because read access and write access have similar performance, this form of table is useful for
scratchpad data. Typical uses might include sharing scratchpad data between CICS regions across a
sysplex, or sharing of files for which changes do not have to be permanently saved. There are many
different requirements for scratchpad data, and most of these can be implemented using CFDTs.
CFDTs are useful for grouping data into different tables, where the items can be identified and retrieved by
their keys. For example:
• You can use a field in a CFDT to maintain the next free order number for use by an order processing
application.
• You can maintain a list of the numbers of lost credit cards in a CFDT.
To an application, a CFDT appears much like a sysplex-wide user-maintained data table, because it
is accessed in the same way, by using the file control API. However, in a CFDT there is a maximum
key-length restriction of 16 bytes.

Chapter 6. Setting up CICS data sharing servers 219

 Coupling facility data table models
CFDTs can use the contention model or the locking model. You specify the model that each table uses on
its file resource definition, so different tables can use different models.
• The contention model gives optimal performance but generally requires programs written to exploit it.
This is because the CHANGED condition code (which indicates that the data has changed since the
application program issued a read-for-update request) is specifically for this model. Programs that are
not written for the contention model might not be able to handle this condition correctly. The CHANGED
response can occur on a REWRITE or DELETE command. There is also a situation with the contention
model in which the NOTFND response can be returned on a REWRITE or DELETE.
This model is nonrecoverable: CFDT updates are not backed out if a unit of work fails.
• The locking model is API-compatible with programs that conform to the UMT subset of the file control
API (this subset is almost the full file control API). This model can be one of the following:
– Nonrecoverable.
Locks do not last until syncpoint, and CFDT updates are not backed out if a unit of work fails.
– Recoverable.
CFDTs are recoverable after a unit-of-work failure or a CICS region failure (updates made by units of
work that were in-flight at the time of the CICS failure are backed out).
The recoverable locking model supports indoubt and backout failures. If a unit of work fails when
backing out an update to the CFDT, or if it fails indoubt during syncpoint processing, the locks are
converted to retained locks and the unit of work is shunted.

Server connections
A client CICS region establishes a single cross-memory connection to a server the first time a request
refers to the pool for that server. If the server connection fails, there are implications for coupling facility
data tables. See “Server connection management” on page 270 and Named counter recovery.

Coupling facility data table structures and servers

Coupling facility data tables (CFDTs) are held in coupling facility list structures. Access to a CFDT is
through a named CFDT server.
The CFDT server can be thought of as similar to a shared data tables file-owning region. For information
about shared data tables support, see The data table sharing environment. You can use CFDT support to
separate related groups of CFDTs by storing them in separate pools. For example, you can have one pool
for production and another for test.
A CFDT pool is a coupling facility list structure, and access to it is provided by a coupling facility data table
server. Within each MVS image, there must be one CFDT server for each CFDT pool accessed by CICS
regions in the MVS image.
The names of the servers are formed by adding the server address space name to the pool name. For
example, for FACILTY class RACF profiles, the server name is DFHCF.poolname.
Coupling facility list structures are defined in the coupling facility resource management (CFRM) policy.
Structure names for CFDTs take the form DFHCFLS_poolname. The CFDT pool name is then specified in
the startup JCL for the CFDT server.

Access using file control API

A CFDT is accessed from CICS through file control commands.
The file name specified on the command indicates the name of the table and pool in which it resides. The
table name is either specified on the file definition or is the same as the file name, and the pool name is
specified on the file definition. The table is uniquely identified by the pool name and table name, so that
two tables with the same name can exist in different pools, and are entirely separate entities.

220 CICS TS for z/OS: Configuring CICS

Automatic connection to CFDT pools
CICS connects to the CFDT server for a given pool the first time that a CFDT in that pool is referenced.
CICS also reconnects automatically to the CFDT server when the server restarts after a failure.
CFDT servers are protected against misuse by CICS regions that call them, thus ensuring system integrity.
Protection is provided so that the calling region cannot modify sensitive parameters to authorized
functions.
Similarly, CICS is protected from any side effects if a CFDT server fails. If a CICS region issues a file
control request to a CFDT server that has failed, the resulting MVS abend is trapped and returned to the
application program as a SYSIDERR condition.

CFDT creation and deletion

CICS automatically creates a coupling facility data table (CFDT) when a first reference requires the CFDT
to be opened. This CFDT is then used by the same region, or other CICS regions, that issue subsequent
open requests for other files that name the same coupling facility data table.
CICS can optionally load the CFDT automatically from a source VSAM (KSDS) data set when it is first
opened. Unlike user-maintained data tables, with CFDTs you can specify that there is no associated
source data set, allowing you to create an empty CFDT.
Your application programs have access to a CFDT as soon as it is created, although there are some
restrictions on the keys that can be accessed while data is being loaded.
When a CFDT is loaded, it becomes an independent entity, separate from the behavior of the CICS regions
that access the table, or caused the table to be loaded. Even when all CICS regions have terminated,
either normally or abnormally, a CFDT remains in the coupling facility until you take explicit action to
delete the structure or the coupling facility.
To delete the CFDT contents or structure, you can use the following command:

MODIFY cfdt_server, DELETE TABLE=name

CFDT administration
CICS provides some utility functions that you can use to obtain summary information and periodic
statistics from a coupling facility data table server about CFDTs defined in a pool. See Coupling facility
data table statistics and Coupling Facility Data Table Pools report in Reference.
You can use this information when you administer coupling facility data table pools, and to evaluate
capacity. See “Coupling facility data table server parameters” on page 225 for details.

Defining a coupling facility data table pool

You define the list structure for a coupling facility data table (CFDT) in a coupling facility resource
manager (CFRM) policy in a sysplex couple data set.
CICS accesses a CFDT pool, which can contain one or more CFDTs, through a server region using cross-
memory services. For information about setting up and starting a coupling facility data table region, see
“Setting up and running a coupling facility data table server” on page 218.
From the application perspective, a pool and its server are similar to a file-owning region, and the pool can
contain any number of tables, provided that each table has a unique table name.
Before a CFDT server can use its pool, the active CFRM policy must contain a definition of the list structure
to be used for the pool. The CFRM structure definition specifies the size of the list structure and the
preference list of coupling facilities in which it can be stored. You must add a statement that specifies the
list structure to a selected CFRM policy, and then activate the policy.
You use the CFRM policy definition utility, IXCMIAPU, to specify the size of the list structures required,
and their placement in a coupling facility.

Chapter 6. Setting up CICS data sharing servers 221

 You create the name of the list structure for a CFDT pool by adding the prefix DFHCFLS_ to the pool name,
giving DFHCFLS_poolname.

Using IXCMIAPU to update a policy

You can use the administrative data utility, IXCMIAPU, to update an administrative policy in the CFRM
couple data set. The utility adds or changes policy data in the administrative policies only: it does not
change any information in the system copy of the active CFRM policy.
For an example of a job to run this utility, see member IXCCFRMP in the SYS1.SAMPLIB library (see
Administrative data utility for CFRM policy data in z/OS MVS Setting Up a Sysplex.
The following example shows a policy statement for a coupling facility data table pool.

STRUCTURE NAME(DFHCFLS_PRODCFT1)
SIZE(79872)
INITSIZE(32768)
PREFLIST(FACIL01,FACIL02)

Activating a CFRM policy

After you define a CFRM policy, you must activate that policy. Use the following MVS command:

SETXCF START,POLICY,POLNAME=policyname,TYPE=CFRM

Activating a CFRM policy that contains a definition of a list structure does not create the structure. The
structure is created the first time an attempt is made to connect to it, which occurs when the first coupling
facility data table (CFDT) server that refers to the corresponding pool is started.
When the CFDT server creates a list structure, the structure is allocated with an initial size, which can be
increased up to a maximum size, as specified in the CFRM policy. All structure sizes are rounded up to the
next storage increment for the coupling facility level (CFLEVEL) at allocation time. For example, sizes are
rounded up to the nearest 1 MB for CFLEVEL 16.
Provided that space is available in the coupling facility, you can dynamically expand a list structure from
its initial size up to its maximum size, or contract it to free up coupling facility space for other purposes.
If the initial structure allocation becomes full, the structure does not expand automatically, even if the
structure allocated is less than the specified maximum size. To expand a list structure when the allocation
becomes full, you can expand it (up to its maximum size) using the following SETXCF command:

SETXCF START,ALTER,STRNAME=DFHCFLS_poolname,SIZE=nnnn

If you dynamically increase the size of a list structure in this way, also update the CRFM INITSIZE
parameter to reflect the new size, so that the structure does not revert to its original size if you
subsequently re-create or reload it.

Storage calculations for coupling facility data tables

You can use the z Systems Coupling Facility Structure Sizer tool (CFSizer) to calculate storage
requirements for data tables list structures in a coupling facility.
A coupling facility structure contains both stored data and the information needed to manage and access
that data, in a similar way to a key-sequenced data set. The data for each entry in the coupling facility
is stored as a chain of fixed-size (usually 256-byte) elements, which means that the exact length for
variable-length data must be stored separately. To do this, CICS includes a length prefix in the stored
data, so space calculations must allow for each entry using a whole number of elements. The amount of
internal control information depends on the level of functionality and performance of the coupling facility
control code for the current coupling facility level (CFLEVEL). The storage requirements can increase for a
higher CFLEVEL. For more information, see “Coupling facility storage management” on page 268.
CFSizer is a web-based application that takes these factors into account and communicates with a
coupling facility at a current CFLEVEL to calculate storage requirements. See CFSizer.

222 CICS TS for z/OS: Configuring CICS

To use CFSizer to calculate storage requirements for data table list structures, enter the following
information:
Maximum number of tables
The maximum number of data tables that can be stored in the data tables structure. This value
corresponds to the MAXTABLES server parameter. See “List structure parameters” on page 227.
Specify a large enough number to handle all your data tables, but not so large that unused
preallocated list headers use a large amount of coupling facility storage. The valid range is from 1
to 999999. The default is 1000.
Average rounded record size
The average amount of storage required for each data record. Each record has a two-byte length
prefix and is stored as one or more 256-byte elements. This value determines the entry to element
ratio that is used to calculate the required structure size. The valid range is from 1 to 32768. The
default is 512.
If all data records are similar sizes, calculate this value by taking the average data size, adding two,
and rounding up to the next multiple of 256. The amount of element storage required is two bytes
more than the data record size because of the length prefix on each item.
If data records are different sizes, round up each size first before you take the average. For example, if
half the records are 100 bytes and half are 300, round up the sizes to 256 and 512 respectively, then
average them. The resulting average rounded item size is 384, which is more accurate than using the
average item size of 200 and then rounding it up to 256.
Records in a contention model data table with a record length of up to 63 bytes are a special case.
These records are stored in the entry adjunct area, so for average record length purposes, the data
length is effectively zero.
Total records
The total number of records to be stored in all data tables.
Target usage percent
The percentage of the structure space that the given total number of items are expected to use.
Specify a number in the range of 1 to 100. The default is 75. This value ensures the following:
• Free space exists for temporary expansion.
• If the initial free space is not enough, there is time to expand the structure in response to warning
messages (which normally start at 80%).
• Activity to alter entry to element ratios is reduced.
Maximum expansion percent
The percentage that the structure can expand. If a non-zero value is specified, the maximum structure
size will be greater than the initial structure size by an amount such that the total amount of data can
increase by this percentage. For example, if the value 200 is specified, the initial size is enough to
store the specified total number of items, and the maximum size is enough to store three times that
number of items.
You use the results of these calculations to set the coupling facility resource manager (CFRM) INITSIZE
and SIZE parameters in the CRFM policy.
For information about the CICS reserved space parameters that enable the coupling facility data table
(CFDT) server to avoid a structure full condition, see “Reserved space parameters” on page 231 and
“Avoiding structure full conditions” on page 232.

Chapter 6. Setting up CICS data sharing servers 223

Defining and starting a coupling facility data table server region
You activate a coupling facility data table pool in an MVS image by starting up a coupling facility data table
server region for that pool.

About this task

You can start the server as a started task, started job, or as a batch job. The job or task must invoke the
coupling facility data table server region program, DFHCFMN, from an APF-authorized library. DFHCFMN
is in the CICS authorized library, CICSTS61.CICS.SDFHAUTH.

Procedure
1. Specify the DFHCFMN program either in a SYSIN data set defined in the JCL, or in the PARM parameter
on the EXEC statement.
2. Specify the mandatory and optional startup parameters for the DFHCFMN program.
If you specify a startup parameter in both the SYSIN data set and the PARM parameter, the PARM value
overrides the SYSIN value because the MVS START command can override the PARM value.
a) You must specify a SYSPRINT DD statement for the print file.
b) You must specify a SYSIN DD statement for the server parameters.
c) You must specify the TS pool name.
d) You must concatenate the license activation data set (the SDFHLIC library) to the STEPLIB DD
statement.
e) It is recommended that you specify the REGION parameter.
This parameter ensures that the coupling facility data table server region has enough storage to
process the maximum number of data table requests that can run concurrently.
f) It is recommended that you specify TIME=NOLIMIT.
The server task remains in a wait during most normal processing, because server processing is
performed under the TCB of the client CICS region. If you omit this parameter, your server job could
fail with abend S522 (wait limit exceeded), depending on the JWT value specified in the SMFPRMxx
member of SYS1.PARMLIB.
g) Specify additional parameters as required.
For example, you might want to control the maximum number of queues that are to be supported in
the pool and the number of buffers the server is to allocate.

Results
Tip: The easiest way to ensure that all pool-related parameters are consistent across MVS images is to
use the same SYSIN parameter data set, or an identical copy of it, for all servers accessing the same pool,
and to specify in the PARM field any parameters that vary between servers.

Coupling facility data table server JCL example

//PRODCFD1 JOB ...

//CFSERVER EXEC PGM=DFHCFMN,REGION=40M,TIME=NOLIMIT CICS CFDT Server
//STEPLIB DD DSN=CICSTS61.CICS.SDFHAUTH,DISP=SHR Authorized library
// DD DSN=CICSTS61.CICS.SDFHLIC,DISP=SHR License activation data set
//SYSPRINT DD SYSOUT=* Messages and statistics
//SYSIN DD *
POOLNAME=PRODCFD1 Pool name
MAXTABLES=100 Allow up to 100 tables
/*

Figure 43. Sample JCL to start a CFDT server address space

224 CICS TS for z/OS: Configuring CICS

Coupling facility data table server parameters
Parameters are specified in the form KEYWORD=value, where keywords can optionally be specified in
mixed case to improve readability.
If you specify more than one parameter in the PARM field or on the same SYSIN input line, the parameters
must be separated by a comma. Any text following one or more spaces is taken as a descriptive comment.
Any parameter line which starts with an asterisk or a space is assumed to be a whole line comment.
You can enter some parameter keywords in more than one form, such as in abbreviated or truncated form.
The main parameters are listed on the server print file during start-up.
The parameters are all valid as initialization parameters (in the SYSIN file or PARM field), and some can
also be modified by the SET command.

REGION parameter
The JCL REGION parameter ensures that the coupling facility data table server region has enough storage
to process the maximum number of data table requests that can run concurrently.
The number of coupling facility data table requests that each connected CICS region can have active at a
time is limited to about 10. Each request requires about 40 KB, therefore the REGION size should specify
at least 400 KB for each connected CICS region, plus a margin of about 10% for other storage areas. Thus,
for a server supporting up to five CICS regions, specify REGION=2200K.
During server initialization, the server acquires all the available storage above 16 MB, as determined by
the REGION parameter, then releases 5% of it for use by operating system services. It also acquires 5%
of the free storage below 16MB for use in routines that require 24-bit addressable storage, for example
sequential file read and write routines.
After initialization, the server uses AXM page allocation services to manage its storage. Server statistics
indicate how much storage is allocated and used within the storage areas above and below 16 MB, which
are called AXMPGANY and AXMPGLOW in the statistics.
If a task in the server region or a cross-memory request runs out of storage, this is likely to result in AXM
terminating that task or request using a simulated abend with system completion code 80A to indicate a
GETMAIN failure. Although the server can usually continue processing other requests in this case, running
out of storage in a critical routine can cause the server to terminate. Therefore, it is best to ensure that the
REGION size is large enough to eliminate this risk.

Pool name parameter

This parameter, POOLNAME, is always required:
POOLNAME=name
specifies the 8-character name of the coupling facility data table pool. This is appended by the server
to the prefix DFHCF to create its own server name, as in DFHCF.poolname, and also to the prefix
DFHCFLS_ to create the name of the coupling facility list structure, as in DFHCFLS_poolname.
This parameter is valid only at server initialization, and must always be specified.
This keyword can be abbreviated to POOL.

Security parameters
You can use the security parameters to specify whether to use the optional security mechanism that the
server provides, to check that CICS regions are authorized to open a coupling facility data table. You can
also use these parameters to override standard processing for this optional security.
SECURITY={YES|NO}
Specifies whether individual coupling facility data table security checks are required.
YES
The server performs a security check against each CICS region that attempts to open a coupling
facility data table. Access is controlled through profiles defined in the general resource class

Chapter 6. Setting up CICS data sharing servers 225

 named on the SECURITYCLASS parameter. This function requires RACF with its support for
FASTAUTH function in cross-memory mode.
NO
The server does not perform a security check against each CICS region that attempts to open a
coupling facility data table.
This is the only security check performed by the server that is optional. The other file security checks
are always performed by the server, as described in Security for coupling facility data tables.
This parameter is valid only at server initialization.
This keyword can be abbreviated to SEC.
SECURITYCLASS={FCICSFCT|class}
Specifies the name of the RACF general resource class that the server uses for security checks on
coupling facility data table access by CICS regions. The name can be up to 8 characters, and is the
name of the class in which the CFDT resource profile and its access list are defined.
This parameter is valid only at server initialization.
This keyword can be abbreviated to SECCLASS.
SECURITYPREFIX={NO|YES}
When SECURITY=YES is specified, specifies whether the resource name that is passed to RACF for the
coupling facility data table security check is prefixed with the server region user ID.
Note: For this security check, the resource name used by the server is the either the name specified
on the TABLENAME attribute of the CICS file resource definition, or the FILE name if TABLENAME is
not specified.
YES
The server prefixes the resource name with the server region user ID (the default) or an
alternative prefix specified on the SECURITYPREFIXID parameter.
NO
The server passes to RACF only the 8-character resource name, without any prefix.
This parameter is valid only at server initialization.
This keyword can be abbreviated to SECPREFIX or SECPRFX.
SECURITYPREFIXID=identifier
Specifies a prefix for the server to use for security checks on coupling facility data table access by
CICS regions, instead of the server region user ID. The prefix can be up to 8 characters, and should
correspond to the prefix used to define profile names of CFDTs to RACF. This parameter is effective
only when SECURITYPREFIX=YES is specified.
This parameter is valid only at server initialization.
This keyword can be abbreviated to SECPREFIXID.

Statistics parameters
Use the following parameters to specify server statistics options:
ENDOFDAY={00:00|hh:mm}
specifies the time of day, in hours and minutes, when the server is to collect and reset end-of-day
statistics.
Note: If the STATSOPTIONS parameter specifies NONE, the server still writes end-of-day statistics to
the print file.
The valid range of times is from 00:00 to 24:00.
This keyword can be abbreviated to EOD.

226 CICS TS for z/OS: Configuring CICS

STATSINTERVAL={03:00|hh:mm}
specifies the statistics collection interval, in the range 1 minute to 24 hours. This parameter is ignored
if the STATSOPTIONS parameter specifies NONE.
The time interval can range from 00:01 to 24:00.
This keyword can be abbreviated to STATSINT.
STATSOPTIONS={NONE|SMF|PRINT|BOTH}
specifies whether the server is to produce interval statistics, and the destination for the statistics it
produces.
NONE
The server does not produce any interval statistics.
SMF
The server produces interval statistics and writes them to the current SMF data set only.
PRINT
The server produces interval statistics and writes them to the server's print file only.
BOTH
The server produces interval statistics and writes them to the current SMF data set and to the
server's print file.
This keyword can be abbreviated to STATSOPT.

Automatic restart manager (ARM) parameters

During server initialization, the server unconditionally registers with ARM except when the server program
is invoked with either the UNLOAD or the RELOAD functions. The server will not start if the registration
fails.
Use the following parameters to override default processing for the automatic restart manager:
ARMELEMENTNAME=elementname
specifies the automatic restart manager element name, up to 16 characters, to identify the server to
ARM for automatic restart purposes. The permitted characters for the element name are A to Z 0-9 $
# @ and the underscore symbol (_).
The default identifier is of the form DFHCFnn_poolname, where CF represents the server type, nn is
the &SYSCLONE value for the system (which can be either one or two characters), and poolname is the
name of the pool served by the server.
This parameter is only valid at server initialization.
This keyword can be abbreviated to ARMELEMENT or ARMELEMNAME.
ARMELEMENTTYPE=elementtype
specifies the automatic restart manager element type, up to 8 characters for use in ARM policies as a
means of classifying similar elements. The permitted characters for the element type are A to Z 0-9 $
# and @.
The default element type is SYSCICSS.
This parameter is only valid at server initialization.
This keyword can be abbreviated to ARMELEMTYPE.

List structure parameters

The list structure parameters specify the attributes that are used only for initial allocation of the data
tables list structure for a for a coupling facility data table (CFDT) pool. Initial allocation occurs the first
time a server is started for the CFDT pool.
The list structure parameters are as follows:

Chapter 6. Setting up CICS data sharing servers 227

 MAXTABLES={1000|number}
Specifies the maximum number of data lists to be reserved when the structure is allocated, which
determines the maximum number of tables that can be stored in the structure. This parameter also
determines how many list headers are defined when the structure is created.
Specify a large enough number to handle all your data tables, but not so large that unused
preallocated list headers use a large amount of coupling facility storage.
You cannot change this number without reallocating the structure, which means first deleting the
existing structure (see “Deleting or emptying coupling facility data table pools” on page 239).
Therefore, if the structure is being allocated at less than its maximum size, the value here should
be based on the maximum possible size of the structure rather than its initial size.
This parameter corresponds to the "Maximum number of tables" value in the CFSizer tool (see
“Storage calculations for coupling facility data tables” on page 222).
This parameter is valid only at server initialization and is used only when the structure is first
allocated. The valid range is from 1 to 999999.
You can abbreviate this keyword to MAXT.
Note: In addition to the data lists defined by MAXTABLES there are control lists used internally by
CICS so the total number of lists is greater than the number specified in MAXTABLES.
POOLSIZE={0|number{K|M|G}}
Specifies the initial amount of coupling facility storage to be allocated for the pool list structure,
expressed as kilobytes (n K), megabytes (n M) or gigabytes (n G).
Usually, you can omit this parameter and specify the structure size by using the INITSIZE parameter
in the coupling facility resource manager (CFRM) policy. However, this parameter can be useful if the
structure is reallocated or reloaded but the CFRM policy has not been updated to reflect the required
size.
0
The special value 0 means that the server obtains an initial allocation using the parameters
specified in the CFRM policy. If the CFRM policy specifies an INITSIZE value for the structure,
this determines the initial allocation. Otherwise, the CFRM SIZE value (the maximum size of the
structure) is allocated.
number
A non-zero value specifies an initial amount of storage to be allocated, overriding the INITSIZE
parameter in the CFRM policy. This value is rounded up by MVS to the next storage increment for
the coupling facility level (CFLEVEL). For example, for CFLEVEL 16, the value is rounded up to the
nearest 1 MB.
The value must be less than the CFRM SIZE parameter, otherwise the value of POOLSIZE is
ignored and the initial allocation uses the parameters specified in the CFRM policy.
The valid range is from 0 to 16777215M. However, you must specify a value that is less than the
maximum size of a structure in z/OS, otherwise a z/OS error occurs. For more details, see the
information about CFRM parameters in z/OS MVS Setting Up a Sysplex.
This parameter is valid only at server initialization and is used only when the structure is first
allocated.

Debug trace parameters

These parameters are provided only for intensive debug tracing.
Using these options in a production environment could have a significant impact on performance and
cause the print file to grow very rapidly, using up spool space.
Trace messages from cross-memory requests can be lost if they are generated faster than the trace print
subtask can print them. In this event, the trace only indicates how many messages were lost.
CFTRACE={OFF|ON}
specifies the coupling facility interface debug trace option.

228 CICS TS for z/OS: Configuring CICS

 OFF
Coupling facility interface debug trace is disabled.
ON
Coupling facility interface debug trace produces trace messages on the print file, indicating the
main parameters to the coupling facility request interface, and the result from the IXLLIST macro.
This keyword can also be specified as TRACECF.
RQTRACE={OFF|ON}
specifies the table request debug trace option.
OFF
Table request debug trace is disabled.
ON
Table request debug trace produces trace messages on the print file, indicating the main
parameters on entry to each cross-memory request, and the results on exit.
This keyword can also be specified as TRACERQ=.

Tuning parameters
These parameters are provided for tuning purposes, but usually you can omit them and let the coupling
facility data table (CFDT) server use the default values.
ELEMENTRATIO={1|number}
An MVS coupling facility resource management (CFRM) parameter that specifies the element part of
the entry-to-element ratio when the structure is first allocated. This value determines the proportion
of the structure space that is initially set aside for data elements.
The ideal value for the entry-to-element ratio is the average size of data for each entry divided by the
element size. However, the server automatically adjusts the ratio according to the actual entry and
element usage.
This parameter is valid only at server initialization, and is used only when the structure is first
allocated. The valid range is from 1 to 255.
You can abbreviate this keyword to ELEMRATIO.
For further information about this parameter in the coupling facility, see z/OS MVS Programming:
Sysplex Services Guide.
ELEMENTSIZE={256|size}
An MVS CFRM parameter that specifies the data element size for the list structure, which must be a
power of 2. This parameter is used only for coupling facility log streams. For current coupling facility
implementations, there is no reason to use any value other than the default value of 256.
This parameter is valid only at server initialization and is only used when the structure is first
allocated. The valid range is from 256 to 4096.
You can abbreviate this keyword to ELEMSIZE.
ENTRYRATIO={1|number}
An MVS CFRM parameter that specifies the entry part of the entry-to-element ratio when the structure
is first allocated. This value determines the proportion of structure space that is initially set aside for
list entry controls.
It is not essential to specify this parameter because the server automatically adjusts the ratio, based
on actual usage, to improve space utilization if necessary.
This parameter is valid only at server initialization and is used only when the structure is first
allocated. The valid range is from 1 to 255.
For further information about this parameter in the coupling facility, see z/OS MVS Programming:
Sysplex Services Guide.

Chapter 6. Setting up CICS data sharing servers 229

 Lock wait parameters
Use these parameters to modify the time intervals for the server lock wait retry mechanism.
This is provided mainly as a "wake-up" mechanism to ensure that requests waiting for a record lock do
not wait indefinitely in certain rare cases where a system failure or structure full condition could cause a
lock release notification message to be lost. In addition, this mechanism also ensures that if a CICS task
is purged while it has a request waiting for a lock, the waiting request in the server is woken up as soon as
the lock wait retry interval expires. The request process then finds that the CICS task is no longer waiting
for it, therefore it terminates rather than continuing to wait and hold on to server resources until the lock
becomes free.
There are two times involved: a scan time interval and a wait time. The server starts its lock scan interval
timing when the first request is made to wait.
This mechanism has very little effect on normal processing and the default lock wait retry parameter
values are designed to suit the majority of installations.
LOCKSCANINTERVAL={5|number}
specifies the time interval after which requests waiting for record locks are scanned to check for lock
wait timeout.
This affects the overall duration of the lock wait timeout, because a request that starts waiting for a
lock during a given scan interval is timed as if from the start of the interval. The lock scan interval
should be less than the lock wait interval, and ideally should be such that the lock wait interval is an
exact multiple of the lock scan interval.
You can specify this value as a number of seconds or in the time format hh:mm:ss.
The valid range is from 1 (1 second) to 24:00 (24 hours).
This keyword can be abbreviated to LOCKSCANINT.
LOCKWAITINTERVAL={10|number}
specifies the maximum time that a request should wait for a record lock before being reinvoked to
retry. The actual time a request waits depends on how far into a scan interval it started its wait. For
example, in a server using the scan and wait default intervals, if 4 seconds have already elapsed when
a request starts to wait, the maximum time it can wait is 6 seconds. When the server checks the
timeout value for the request, it assumes that the request has been waiting for the full scan period.
Thus, for the default values, a request is reinvoked to retry after waiting between five and ten seconds.
This value can either be specified as a number of seconds or in time interval format hh:mm:ss.
The valid range is from 1 (1 second) to 24:00 (24 hours).
This keyword can be abbreviated to LOCKWAITINT.

Warning parameters
Use these parameters to modify the thresholds at which warning messages are issued, and an automatic
structure alter occurs, when the structure becomes nearly full.
ELEMENTWARN={80|number}
specifies the percentage of list structure elements in use at which warning messages and an
automatic structure alter should be first triggered.
The valid range is from 1 to 100 per cent.
This keyword can be abbreviated to ELEMWARN.
ELEMENTWARNINC={5|number}
specifies the percentage increase (or decrease) of elements in use before the next warning message
should be triggered (reduced to 1 when the next increase would otherwise reach 100). After the first
warning, additional messages are issued as the number of elements increases and decreases. These
messages stop when the number of elements in use has fallen at least this percentage below the
initial warning level.
The valid range is from 1 to 100 per cent.

230 CICS TS for z/OS: Configuring CICS

 This keyword can be abbreviated to ELEMWARNINC.
ENTRYWARN={80|number}
specifies the percentage of list structure entries in use at which warning messages and an automatic
structure alter action should be first triggered.
The valid range is from 1 to 100 per cent.
ENTRYWARNINC={5|number}
specifies the percentage increase (or decrease) of entries in use before the next warning message
should be triggered (reduced to 1 when the next increase would otherwise reach 100). After the first
warning, additional messages are issued as the number of elements increases and decreases. These
messages stop when the number of entries in use has fallen at least this percentage below the initial
warning level.
The valid range is from 1 to 100 per cent.

Automatic structure alter parameters

Use these parameters to modify the conditions under which the server attempts an automatic alter when
the structure becomes nearly full.
For information about the structure alter process, see “Coupling facility data table server automatic
structure alter” on page 233.

ALTERELEMMIN={100|number}
specifies the minimum number of excess elements that must be present to cause the server to issue
an automatic alter to convert those elements to entries.
The valid range is from 0 to 999999999.
ALTERELEMPC={5|number}
specifies the minimum percentage of excess elements that must be present to cause the server to
issue an automatic later to increase the proportion of entries.
The valid range is from 0 to 100 per cent.
ALTERENTRYMIN={100|number}
specifies the minimum number of excess entries that must be present to cause the server to issue an
automatic alter to convert those entries to elements.
The valid range is from 0 to 999999999.
ALTERENTRYPC={5|number}
specifies the minimum percentage of excess entries that must be present to cause the server to issue
an automatic alter to increase the proportion of elements.
The valid range is from 0 to 100 per cent.
ALTERMININTERVAL={00:10|hh:mm}
specifies the minimum time interval to be left between automatic structure alter attempts when
the structure is nearly full (above the element or entry warning level). This is to prevent excessive
numbers of alter attempts to try to optimize space when the structure is nearly full.
The valid range is from 00:00 to 24:00.
This keyword can be abbreviated to ALTERMININT.

Reserved space parameters

Use these parameters to control the amount of structure space that is reserved for rewrites and server
internal operations (such as tracking units of work and notifying other servers when a lock is released).
For information about the effect of these parameters, see “Avoiding structure full conditions” on page
232.

Chapter 6. Setting up CICS data sharing servers 231

 ELEMENTRESERVEMIN={300|number}
specifies the minimum number of list structure data elements (normally 256 bytes each) to be
reserved for rewrites and server internal operations.
The valid range is from 0 to 999999999.
This keyword can be abbreviated to ELEMRESERVEMIN.
ELEMENTRESERVEPC={5|number}
specifies the percentage of list structure data elements to be reserved for rewrites and internal
server use. If this percentage evaluates to less than the minimum number specified on the
ELEMENTRESERVEMIN parameter, the minimum number is used instead.
The valid range is from 0 to 100.
This keyword can be abbreviated to ELEMRESERVEPC or ELEMRESPC.
ENTRYRESERVEMIN={100|number}
specifies the minimum number of list structure entries to be reserved for rewrites and server internal
operations.
The valid range is from 0 to 999999999.
This keyword can be abbreviated to ENTRYRESMIN.
ENTRYRESERVEPC={5|number}
specifies the percentage of list structure elements to be reserved for rewrites and internal server use.
If this percentage evaluates to less than the minimum number specified on the ENTRYRESERVEMIN
parameter, the minimum number is used instead.
The valid range is from 0 to 100.
This keyword can be abbreviated to ENTRYRESPC.

Avoiding structure full conditions

If the coupling facility data table structure is allowed to become completely full, this not only prevents the
addition of new records or tables, but can also have a significant impact on performance and application
function.
In particular, rewrite requests can be rejected even when the size of the new data is less than or equal to
the original, and server internal operations can fail, causing internal timeouts and retries.
The parameters ELEMENTRESERVEMIN, ELEMENTRESERVEPC, ENTRYRESERVEMIN and
ENTRYRESERVEPC are provided to reduce the risk of the structure becoming totally full, by reserving
a number of entries and elements, which can only be used for operations that normally only need extra
space temporarily, such as rewrites or unit of work control operations. If a server is asked to write a
new record or create a new table when the number of entries or elements remaining in the structure (as
returned by each coupling facility access request) is less than or equal to the specified reserve level, the
request is rejected with an indication that no space is available. Before rejecting the request, the server
issues a dummy read request in order to find out the latest usage levels for the structure, in case more
space has recently become available.
Using the reserved space parameters means that, even if the structure fills up very rapidly (for example,
because a table is being loaded that is too large for the available space), enough space should remain
to allow rewrites of existing records and allow internal communication between servers to continue
normally.
Note that this mechanism cannot prevent the structure from eventually becoming totally full, as
recoverable rewrites are allowed to use the reserved space temporarily, and rewrites that increase the
data length will gradually use up the reserved elements. If action is not taken to prevent the structure
from becoming totally full, the following effects can occur:
• An attempt to close a table or change the table status could encounter a temporary structure full
condition. In this case, the attempt is retried indefinitely, because it must be completed in order to
preserve table integrity (the only alternative being to terminate the server). The retry process normally

232 CICS TS for z/OS: Configuring CICS

 succeeds quickly, but there is a theoretical case where this can cause a loop until another server causes
temporarily unavailable resources to be released.
• Rewrites with the same (or smaller) data size for a table using the contention update model are
retried indefinitely if they initially fail because of a structure full condition. This is done to protect the
application against having to handle this unexpected form of failure. Again, the retry should normally
succeed quickly, but there is a theoretical possibility that this could loop for a while.
• Rewrites for a table using the locking or recoverable update model could be rejected with a structure
full condition even if the data size is not increased. No retry is attempted in this case.
• Units of work can be backed out because the server is unable to create unit of work control entries for
commit processing.
• There may not be sufficient structure space to send lock release messages, in which case waiting tasks
are not woken up immediately but continue to wait for up to the timeout interval specified on the
LOCKWAITINTERVAL parameter before finding out that the lock has been released.

Coupling facility data table server automatic structure alter

The coupling facility data table server monitors the total number of elements and entries in use in the
structure, using information returned by the coupling facility on every request.
When the numbers in use exceed the specified warning thresholds, the server issues a warning message,
and this warning message is repeated each time the number in use increases beyond further thresholds.
Each time the server issues a warning, it also tests whether an automatic structure alter for the entry-to-
element ratio should be issued. If any form of alter has already been issued recently (by any server
or through an operator SETXCF ALTER command) and the structure space usage has remained above
warning levels since the previous attempt, any further structure alter attempt is suppressed until at least
the minimum interval (specified through the ALTERMININTERVAL parameter) has elapsed.
The server checks whether an automatic structure alter should be issued, by calculating how many
excess elements or entries will be left when the other runs out completely, based on the ratio between
the current numbers of elements and entries in use. If the number of excess elements or entries
exceeds the number specified in the ALTERELEMMIN or ALTERENTRYMIN parameter, and the same
number expressed as a percentage of the total exceeds the value specified in the ALTERELEMPC or
ALTERENTRYPC parameter, an IXLALTER request is issued to alter the entry to element ratio to the actual
current ratio between the number of entries and elements in use.
Only one alter request can be active at a time for a given structure. This means a server may well find
that another server has already started the structure alter process, in which case its own alter is rejected.
However, the system automatically notifies all servers when the structure alter is completed, giving the
new numbers of elements and entries so that each server can update its own status information.

Controlling coupling facility data table server regions

You can issue commands to control a coupling facility data table server, using the MVS MODIFY (F)
command to specify the job or started task name of the server region, followed by the server command.

About this task

The general form of a coupling facility data table server command, using the short form F, is as follows:

F job_name,command parameters... comments

You can use the following commands to control the coupling facility data table server region.

Procedure
• To modify the server initialization parameters, use the SET command:

SET keyword=operand[,keyword=operand,…]

Chapter 6. Setting up CICS data sharing servers 233

 The command can be abbreviated to T, as for the MVS SET command. See “The SET command
options” on page 234 for details.
• To display the values of one or more parameter values or statistics summary information on the
console, use the DISPLAY command:

DISPLAY keyword[=operand][,keyword[=operand,]…]

The valid keywords for DISPLAY are all the initialization parameters, plus an additional set described
under “DISPLAY and PRINT command options” on page 235.
The command can be abbreviated to D, as for the MVS DISPLAY command.
• To print the output that the DISPLAY command produces, use the PRINT command:

PRINT keyword[=operand][,keyword[=operand,]…]

The command produces the same output as DISPLAY, supporting the same keywords, but on the print
file only.
• To delete a table, use the DELETE TABLE=name command.
The table must not be in use for this command to succeed. You can abbreviate the command to DEL.
• To stop the server normally, use either the STOP command or the MVS STOP command.
The server waits for any active connections to end first and prevents any new connections while it is
waiting. The command can be abbreviated to P; for example P jobname.
• To request an automatic restart, use the CANCEL command.
This command terminates the server immediately. You can specify whether the server will
automatically restart. For information about CANCEL RESTART see “The CANCEL command options”
on page 216.
• The server also responds to XES events such as an operator SETXCF command to alter the structure
size.
If the server can no longer access the coupling facility, it automatically issues a server CANCEL
command to close itself down immediately.

The SET command options

You can use the SET command to modify groups of server initialization parameters.
These system initialization parameter groups are:
• The statistics parameters
• The debug trace parameters
• The lock wait parameters
• The warning parameters
• The automatic ALTER parameters.
The following SET keywords are used to modify the server's recovery status of an inactive CICS region
that had unresolved units of work when it last terminated:
RESTARTED=applid
Establish a temporary recoverable connection for the given APPLID. This resolves any units of work
that were in commit or backout processing when the region last terminated, and indicates whether
there are any remaining indoubt units of work.
This keyword can be abbreviated to RESTART or REST.
COMMITTED={applid|applid.uowid}
Establish a temporary recoverable connection for the specified APPLID and commit all indoubt units
of work, or, if uowid is also specified, commit that specific unit of work.

234 CICS TS for z/OS: Configuring CICS

 This command should be used only when it is not possible to restart the original CICS region to
resolve the work normally, because it can result in inconsistency between coupling facility data table
resources and other CICS resources updated by the same unit of work.
This keyword can be abbreviated to COMMIT or COMM.
BACKEDOUT={applid|applid.uowid}
Establish a temporary recoverable connection for the specified APPLID and back out all indoubt units
of work, or, if uowid is also specified, back out that specific unit of work.
This command should be used only when it is not possible to restart the original CICS region to
resolve the work normally, because it can result in inconsistency between coupling facility data table
resources and other CICS resources updated by the same unit of work.
This keyword can be abbreviated to BACKOUT or BACK.
Use the following SET parameters to modify options relating to a specific table:

TABLE=name
specifies the table to which the following table-related parameters in the same command are to be
applied. This parameter is required before any table-related parameters.
MAXRECS=number
Modify the maximum number of records that can be stored in the table specified by the preceding
TABLE parameter.
If the maximum number is set to a value less than the current number of records in the table, no new
records can be stored until records have been deleted to reduce the current number to within the
new maximum limit. For a recoverable table, this also means that records cannot be updated, because
the recoverable update process adds a new record on the rewrite operation then deletes the original
record when the transaction completes.
This keyword can also be specified as MAXNUMRECS.
AVAILABLE={YES|NO}
Specify whether the table named by the preceding TABLE parameter is available for new OPEN
requests. If the table is made unavailable, a CICS region that subsequently issues an OPEN request
for the table receives a response indicating that it is unavailable, but regions that currently have the
table open are not affected. Even when a table is marked as unavailable, a server can implicitly open it
on behalf of a CICS region to allow recoverable work to be resolved during restart processing.
This keyword can be abbreviated to AVAIL.
Examples of the SET command: The following example changes the statistics options:

SET STATSOPT=BOTH,EOD=21:00,STATSINT=06:00

The following example modifies the maximum number of records allowed in the specified table:

SET TABLE=PAYECFT1,MAXRECS=200000

DISPLAY and PRINT command options

You can use the DISPLAY (and PRINT) commands to display the values of any initialization parameters
plus some additional information.
Some of the parameters that provide additional information support generic names. You specify generic
names using the following wildcard characters:
• An * (asterisk symbol ). Use this anywhere in the parameter value to represent from 0 to 8 characters of
any value. For example, CICSH* to represent all the CICS APPLIDs in a CICSplex identified by the letter
H.
• A % (per cent symbol). Use this anywhere in the parameter value to represent only one character of any
value. For example, CICS%T* to represent all the TOR APPLIDs in all CICSplexes.

Chapter 6. Setting up CICS data sharing servers 235

 The parameters supported by the DISPLAY and PRINT commands are as follows:
APPLIDS
Display the APPLID and MVS system name for every CICS region that currently has a recoverable
connection to the pool. This command returns information not only for the server to which the
MODIFY command is issued, but for all other servers connected to the same pool.
This keyword can be abbreviated to APPLID, APPLS or APPL.
APPLID={applid|generic}
Display the APPLID and MVS system name for each region that currently has a recoverable connection
to the server's pool, and whose APPLID matches applid or generic. This command returns information
not only for the server to which the MODIFY command is issued, but for all other servers connected to
the same pool.
applid
Use this for a specific APPLID, which should match only one region in the sysplex.
generic
Use a suitable generic value when you want to obtain information about several regions.
If applid or generic is not specified, the server treats this as equivalent to the command DISPLAY
APPLIDS.
This keyword can also be specified as APPLIDS, APPLS or APPL.
ARMREGISTERED
Shows whether ARM registration was successful (YES or NO).
CONNECTIONS
Display the jobnames and applids of the regions currently connected to the server to which the
command is issued.
This keyword can be abbreviated to CONN.
TABLES
Display the names of all tables currently allocated in the pool.
TABLE={name|generic_name}
Display information about the attributes and status of a specific table, or of a set of tables whose
names match the generic name.
If no table name is specified, this is treated as equivalent to DISPLAY TABLES.
TABLEUSERS
Display the CICS APPLIDs of the regions that are currently using each of the tables currently defined
in the pool.
This keyword can be abbreviated to TABLEU.
TABLEUSERS={name|generic_name}
Display the CICS APPLIDs of the regions that are currently using the specified table, or using each of
the set of tables whose names match the generic name.
If no table name is specified, this is treated as equivalent to DISPLAY TABLEUSERS.
This keyword can be abbreviated to TABLEU
UOWIDS
Display the applids of all regions that currently have unresolved recoverable units of work, together
with the number of units of work that are currently in doubt, or are in the process of being committed
or backed out. The information displayed does not include units of work that have not yet started the
resolution process; that is, units of work that are still in flight.
This keyword can be abbreviated to UOWS.
UOWIDS={applid|generic_applid}∨{applid.*|generic_applid.*}
Display, for the specified regions if they currently have unresolved recoverable units of work,
information about those units of work. The information displayed does not include units of work that

236 CICS TS for z/OS: Configuring CICS

 have not yet started the resolution process; that is, units of work that are still in flight. The information
returned depends on the form of operand used.
applid|generic_applid
This form of operand displays the number of units of work that are currently in doubt, or are in the
process of being committed or backed out.
If you specify applid, the server displays UOW information for a specific APPLID, which should
correspond to only one region in the sysplex.
If you specify generic_applid the server displays UOW information for all the APPLIDs that match
the generic APPLID specified.
applid.*|generic_applid.*
This form of operand displays:
• The state and local UOWID of each individual unit of work, followed by
• A summary of the number of units of work that are currently in doubt, or are in the process of
being committed or backed out.
If you specify applid.*, the server displays the UOW information for a specific APPLID, which
should correspond to only one region in the sysplex.
If you specify generic_applid.*, the server displays UOW information for all the APPLIDs that match
the generic APPLID specified.
This keyword can be abbreviated to UOWS.
UOWID=applid.uowid
Display the state of an individual unresolved unit of work, identified by its applid and local unit of work
ID (UOWID). Enter the local UOWID as 16 hexadecimal digits.
This keyword can be abbreviated to UOW.

DISPLAY and PRINT options for statistics summaries

Use the following parameters to display or print statistics:
CFSTATS
Display statistics for coupling facility interface accesses and responses from the server.
This keyword can also be specified as CFST or STATSCF.
POOLSTATS
Display usage statistics for the pool list structure as a whole. This is based on information returned
by coupling facility access requests, therefore it is only as current as the most recent request made
through the server to which the command is issued.
This keyword can be abbreviated to POOLST.
TABLESTATS
Display statistics for requests, processed by the server to which the command is issued, for each table
plus a summary of all requests processed, including those that are not table-specific, such as unit of
work control.
Note that only tables with a non-zero number of requests since the start of the current statistics
interval are shown.
This keyword can also be specified as TABLEST.
TABLESTATS={name|generic_name}
Display request statistics for the specified table or tables.
name
A specific table name in the pool accessed by the server. Returns statistics for this table only.
generic_name
A generic name that you can use to obtain statistics about a number of tables. Returns statistics
for any table name that matches the generic name.

Chapter 6. Setting up CICS data sharing servers 237

 This keyword can be abbreviated to TABLEST.
STORAGESTATS
Display main storage allocation statistics for the server address space.
This keyword can be abbreviated to STORAGEST or STGST.

DISPLAY and PRINT options for combined lists of information

These keywords represent combined lists of information:
PARAMETERS
Display the main parameter values. These are POOLNAME, SECURITY, SECURITYPREFIX, statistics
options, and list structure options.
This keyword can be abbreviated to PARM or PARMS.
ALLPARAMETERS
Display all parameter values.
This keyword can be abbreviated to ALLPARMS.
STATISTICS
Display all available statistics.
This keyword can be abbreviated to STAT or STATS.
INITIALIZED
Display the parameters and statistics that are usually displayed when initialization is complete. This is
equivalent to PARM, POOLSTATS, STGSTATS.
This keyword can be abbreviated to INIT.
ARM
Display all ARM-related parameter values:
• ARMELEMENTNAME
• ARMELEMENTTYPE
• ARMREGISTERED
This keyword can be coded as ARMSTATUS.

The CANCEL command options

You can use the CANCEL command to request an automatic restart.
Specify the following parameter:
RESTART={NO∨YES}
Terminate the server immediately, specifying whether or not automatic restart should be requested.
The default is RESTART=NO.
If the server encounters an unrecoverable problem with the coupling facility connection, consisting
either of lost connectivity or a structure failure, it cancels itself using the CANCEL RESTART=YES
command. This terminates the existing connection and shuts down the server. A new instance of the
server job is then started.
A server can also be restarted explicitly using either the server command CANCEL RESTART=YES or
the MVS command CANCEL jobname,ARMRESTART.
You can also enter RESTART on its own for RESTART=YES, NORESTART for RESTART=NO.

238 CICS TS for z/OS: Configuring CICS

Deleting or emptying coupling facility data table pools
You can delete a coupling facility data table pool using the MVS SETXCF command to delete its coupling
facility list structure.

About this task

For example:

SETXCF FORCE,STRUCTURE,STRNAME=DFHCFLS_poolname

You can delete a structure only when there are no servers connected to the pool, otherwise MVS rejects
the command.
When you attempt to start a server for a pool that has been deleted (or attempt to reload the pool), it is
allocated as a new structure. The newly allocated structure uses size and location attributes specified by
the currently active CFRM policy, and other values determined by the server initialization parameters (in
particular, MAXTABLES).

Unloading and reloading coupling facility data table pools

You can unload, and reload, the complete contents of a coupling facility data table pool to and from a
sequential data set by invoking the server program with the FUNCTION parameter, using the UNLOAD and
RELOAD options.

About this task

You can use this function, for example, to do the following:
• Preserve the coupling facility data table pool during planned coupling facility maintenance, or
• Move the pool to a different coupling facility.
• Increase the size of the pool's list structure.
If the maximum number of tables specified in the original pool was too small, or the pool has reached
its maximum size and needs to be expanded further, unload the pool, then delete the structure so that
the reload process can reallocate it with more space.
Alternatively, you can use the system-managed rebuild facility to dynamically move a structure to another
coupling facility connected to the same system. This allows servers to remain active, but temporarily
suspends processing while the rebuild is in progress. For more information, see “System-managed list
structure rebuild” on page 273.
FUNCTION={UNLOAD|RELOAD}
Specify the function for which the server is being initialized.
UNLOAD
Unload the entire contents of the coupling facility data table pool specified on the POOLNAME
parameter to a sequential data set. When the unload processing has completed (normally or
abnormally) the server program terminates.
The UNLOAD function requires a DD statement for DDNAME DFHCFUL describing the sequential
data set to which the table pool is to be unloaded. The format of the unloaded data set is:

RECFM=F
LRECL=4096
BLKSIZE=4096

You can obtain an estimate of the upper limit for the total size of the data set, in bytes, from the
pool usage statistics produced by the server:

Chapter 6. Setting up CICS data sharing servers 239

 • From the statistics, multiply the number of elements in use by the element size (usually 256) to
get a total number of bytes for the data size, although the space needed to unload the data is
normally much less, because unused space in a data element is not unloaded.
• Add some space for the record keys, calculated using a two-byte prefix plus the keylength for
each record, plus about 100 bytes per table for table control information. Thus, the maximum
you should need for keys and control information is:

(18 bytes x number of entries) + (100 bytes x number of tables)

RELOAD
Reload, into the coupling facility data table pool named on the POOLNAME parameter, a previously
unloaded coupling facility data table pool.
You can reload a pool into a pool with a different name—it does not have to keep the same name
as the original pool. When the reload processing has completed (normally or abnormally) the
server program terminates.
The RELOAD function requires a DD statement for DDNAME DFHCFRL, describing the sequential
data set from which the table pool is to be reloaded.
The structure is allocated, if necessary, during reloading, in which case you can use the same
server parameters to control structure attributes as for normal server startup. The reload process
bypasses any tables or units of work that are already found in the pool (for example, because the
structure was too small and the reload job had to be restarted after using ALTER to increase the
structure size).
Note: If the unloaded pool structure was altered dynamically at any time after initial allocation (by
using the SETXCF command to increase the size), ensure that the increased size is allocated for
the reloaded pool. The recommended way is to update the INITSIZE parameter for the structure
in the current CFRM policy whenever you alter the structure size, and to activate the updated
policy using the SETXCF START ,POLICY command. Alternatively, you can specify the required
pool size in the POOLSIZE parameter in the reload JCL, but note that this does not override the
CFRM INITSIZE parameter if it is exactly equal to the maximum pool size.
Note: If you omit the FUNCTION parameter, the server program initializes a coupling facility data table
server address space.
For the UNLOAD and RELOAD function, the server program requires exclusive use of the list structure.
If the structure is currently being used by a normal server, the unload or reload attempt is rejected.
Similarly, if a normal server attempts to start while an unload or reload job is in progress, the attempt fails
because shared access to the structure is not available.
You can specify all normal server parameters when unloading or reloading, but some of these (for
example, security-related parameters) are ignored because they do not apply to unload or reload
processing.
Note that when a pool is nearly full (with less than about 5% free entries and elements) there is no
guarantee that it can be unloaded and reloaded into a structure of exactly the same size. This is because
the amount of space available is affected by the current ratio of entries to elements, which is controlled
only approximately by the automatic ALTER process.If the structure reaches the warning level during
reloading, the automatic ALTER process attempts to adjust the entry to element ratio. The reload process
automatically waits for the ALTER to complete if reloading runs out of space while an ALTER is still in
progress.
If reloading fails because it runs out of space, the resulting messages include the numbers of tables
reloaded and blocks read up to the time of the failure. You can compare these values with those in the
messages from the original unload job, to determine how many more tables and how much more data
remains to be loaded. If a table had been partially reloaded before running out of space, it is deleted
so that the whole table is reloaded again if the reload is retried later. If reloading is interrupted for any
other reason than running out of space, for example by an MVS system failure, reloading can still be
restarted using the partially reloaded structure, but in that case the structure space occupied by any

240 CICS TS for z/OS: Configuring CICS

 partially reloaded table will be unavailable, so it is normally better to delete the structure (using the MVS
SETXCF FORCE command) and start reloading again with a newly allocated structure.

//UNLDCFD1 JOB ...

//DTUNLOAD EXEC PGM=DFHCFMN CICS CF data table server program
//STEPLIB DD DSN=CICSTS61.CICS.SDFHAUTH,DISP=SHR Authorized library
//SYSPRINT DD SYSOUT=* Options, messages and statistics
//DFHCFUL DD DSN=CFDT1.UNLOADED.POOL, Unloaded data table pool
// DISP=(NEW,CATLG),
// SPACE=(4096,(10000,1000)) Estimated size in 4K blocks
//SYSIN DD *
FUNCTION=UNLOAD Function to be performed is UNLOAD
POOLNAME=PRODCFD1 Pool name
/*

Figure 44. Unload JCL example

//RELDCFD1 JOB ...

//DTRELOAD EXEC PGM=DFHCFMN CICS CF data table server program
//STEPLIB DD DSN=CICSTS61.CICS.SDFHAUTH,DISP=SHR Authorized library
//SYSPRINT DD SYSOUT=* Options, messages and statistics
//DFHCFRL DD DSN=CFDT1.UNLOADED.POOL,DISP=OLD Unloaded table pool
//SYSIN DD *
FUNCTION=RELOAD Function to be performed is RELOAD
POOLNAME=PRODCFD1 Pool name
POOLSIZE=50M Increased pool size
MAXTABLES=500 Increased max number of tables
/*

Figure 45. Reload JCL example

Setting up and running a region status server

You can use a CICS region status server to share CICS region status data in a sysplex rapidly to support
optimized workload management. A region status server services only region status requests, rather than
region status and user application requests.

About this task

CICS region status data is broadcast to the sysplex using a data table that is named after the hosting
CICSplex for the region. Each region in the CICSplex is described by a single record in the CICSplex data
table. The data tables are held in coupling facility structures, with access controlled by a coupling facility
data table (CFDT) server. You must set up one CFDT server for each pool in an MVS image.
You can put related groups of region status tables in separate pools. For example, you might have one
pool for production and another for test. A pool is defined as a list structure in the coupling facility
resource management (CRFM) policy. The pool name is used to form the server name with the prefix
DFHCF and is specified in the startup JCL for the server.
As best practice, your region status server and its pool name should be discrete from those used for user
application purposes. Do not share the region status server and pool with user applications.
Considerations on the region status server pool name
The default pool name as implemented by CICSPlex SM is DFHRSTAT. It is strongly recommended to
use the default region status server pool name. You might want to use a pool name other than the
default for the following scenarios:
• You already have duplicate CICSplex names on the same sysplex as the region status server.
• You are planning on having duplicate CICSplex names on the same sysplex as the region status
server.

Chapter 6. Setting up CICS data sharing servers 241

 • You have strict naming convention policies that prohibit use of the default pool name.
• You have an environment that has multiple environments (for example, a test environment and a
production environment) running on the same sysplex, requiring additional isolation.
When you do not use the default name DFHRSTAT, you must change the name before starting any
other regions in the CICSplex. CICSPlex SM will not prevent you from changing the pool name while
the CICSplex is active. If you make a change while the CICSplex is active, restart all CMAS and MAS
regions (both routers and targets) in the CICSplex as soon as possible. Before all routers and targets
have transferred over to the new region status server pool, WLM optimization is deactivated and
routing requests will be non-optimized, even though some regions that have completed the migration
might start showing as optimized. This means that you will see inconsistent data in the CICSPlex SM
WLM views until all the regions in the CICSplex are restarted.
In addition, ensure that the relevant authorization is provided. See Security for coupling facility data
tables.

Procedure
To set up a CICS region as a region status server, follow these steps:
1. Ensure that you have a list structure for a region status server pool.
Note: It is strongly recommended to use the default region status server pool name. You might want
to use a pool name other than the default for the scenarios described in “Considerations on the region
status server pool name” on page 241.
• For the best performance, define a new dedicated list structure for a region status server pool. For
detailed instructions, see “Defining a list structure for a region status server” on page 242.
• Optionally, you can use an existing CFDT pool to store your CICSplex data tables. However, the
throughput of your optimized workloads might be impeded by any user application activity to the
specified pool name, and any application throughput to the pool might be affected by the sysplex
optimized workloads.
2. Define a region status server start job and run the job in an MVS batch region.
For instructions, see “Starting a region status server” on page 244.

What to do next
Manage the region status server
After you have successfully started your region status server, you can control the region status server
by using MVS MODIFY commands. For more information, see “Controlling region status servers” on
page 245.
Delete a region status server
If required (for example, for a service upgrade, or for a clean sysplex restart), you can follow this
instruction to delete a region status server.

Defining a list structure for a region status server

The region status server pool is defined in the list structure for a coupling facility data table. You define
the list structure in a coupling facility resource manager (CFRM) policy.

About this task

You must allocate storage in the coupling facility to store CICS status.
CICS records the status of a CICS region in a coupling facility data table named after the CICSplex to
which the region belongs. That table must belong to a CFDT pool that is named in the CICSplex definition
for that CICSplex. The default name is DFHRSTAT. In each z/OS image, there must be a region status
server for each region status pool that will serve the CICS regions belonging to that CICSplex. A CICSplex
data table contains one region status record for each region in that CICSplex.

242 CICS TS for z/OS: Configuring CICS

Define the structure in the current coupling facility resource management (CFRM) policy by using the
IXCMIAPU utility. For an example of this utility, see member IXCCFRMP in the SYS1.SAMPLIB library. An
example of a policy statement for a region status server pool is shown in Figure 47 on page 244.
You must authorize server access to the list structure. For details, see Authorizing server access to a list
structure.

Procedure
1. Specify the name of the list structure.
The name is formed by adding the prefix DFHCFLS_ to your chosen pool name, giving
DFHCFLS_poolname.
The default pool name as implemented by CICSPlex SM is DFHRSTAT. It is strongly recommended to
use the default region status server pool name. You might want to use a pool name other than the
default for the following scenarios:
• You already have duplicate CICSplex names on the same sysplex as the region status server.
• You are planning on having duplicate CICSplex names on the same sysplex as the region status
server.
• You have strict naming convention policies that prohibit use of the default pool name.
• You have an environment that has multiple environments (for example, a test environment and a
production environment) running on the same sysplex, requiring additional isolation.
When you do not use the default name DFHRSTAT, you must change the name before starting any
other regions in the CICSplex. CICSPlex SM will not prevent you from changing the pool name while
the CICSplex is active. If you make a change while the CICSplex is active, restart all CMAS and MAS
regions (both routers and targets) in the CICSplex as soon as possible. Before all routers and targets
have transferred over to the new region status server pool, WLM optimization is deactivated and
routing requests will be non-optimized, even though some regions that have completed the migration
might start showing as optimized. This means that you will see inconsistent data in the CICSPlex SM
WLM views until all the regions in the CICSplex are restarted.
You define and modify CICSplexes using the EYUSTARTCPLEXDEF view set. Using the CPLEXDEF detail
view, you can modify the coupling facility (CF) tuning parameters for the region status (RS) server,
which provide sysplex optimized workload routing.
2. Specify the size of the list structure.
Although the record size and calculations shown in Figure 46 on page 244 can be useful for your
own information, you must use the CFSizer tool to calculate the INITSIZE and SIZE parameters. The
CFSizer tool takes minimums into consideration, but the calculations in Figure 46 on page 244 do not.
Failure to get valid sizing parameters using the CFSizer tool could result in a CICS runtime failure and
DFHCF0403, DFHCF0409, and DFHCF0481 messages.
When using the CFSizer tool, select CICS Data Tables list structure and specify the following values:
Maximum number of tables
Specify the number of CICSplexes that you have defined in CICSPlex SM and that will be using
Sysplex Optimized Workloads. This is usually a very low number.
Average rounded record size
40
Total records
Specify the total number of CICS regions that will connect to all CICSplexes.
Target usage percent
Use the default.
Maximum expansion percent
Use the default.
You can also specify ALLOWAUTOALT(YES), which enables automatic changes in the ratio of elements
to entries, to make better use of the space within the structure.

Chapter 6. Setting up CICS data sharing servers 243

 A region status record is approximately 40 bytes long.
If PLEX1 contains 100 regions, PLEX2 contains 300 regions, and PLEX3 contains 1000 regions, the
required structures are as follows:
• Poolname = DFHRSTAT, Table name = PLEX1, 100 regions x 40 bytes = 4 000 bytes total
• Poolname = DFHRSTAT, Table name = PLEX2, 300 regions x 40 bytes = 12 000 bytes total
• Poolname = DFHRSTAT, Table name = PLEX3, 1000 regions x 40 bytes = 40 000 bytes total
Figure 46. Example: Calculations of required structures

3. Specify the preference list of coupling facilities in which the policy can be stored.
4. When you have updated the CFRM new policy with the new structure definition, activate the policy
using the following MVS command:

SETXCF START,POLICY,POLNAME=policyname,TYPE=CFRM

Where policyname is the CFRM policy being started, for example, DFHCFLS_DFHRSTAT.
Note that defining the CFRM policy statements for a list structure does not create the list structure.
The structure is created the first time an attempt is made to connect to it, which occurs when the first
coupling facility data table (CFDT) server that refers to the corresponding pool is started.

Example

STRUCTURE NAME(DFHCFLS_DFHRSTAT)
SIZE(7168)
INITSIZE(6144)
PREFLIST(FACIL01,FACIL02)

Figure 47. Example definition of a list structure for region status servers

Starting a region status server

To start a region status server, you need to define a start job for the region status server and run the job in
an MVS batch region.

Before you begin

When you start a region status server, you activate a pool in an MVS image for that server. So before you
start a region status server region, you must define the region status server structure to be used for the
pool. For information, see “Defining a list structure for a region status server” on page 242.

About this task

You can start the server as a started task, started job, or as a batch job. This task explains how to start a
region status server job, to run in an MVS batch region. The job or task must start the region status server
program, DFHCFMN, from the CICS authorized library, CICSTS61.CICS.SDFHAUTH.

Procedure
1. Specify the DFHCFMN program either in a SYSIN data set defined in the JCL, or in the PARM parameter
on the EXEC statement.
2. Specify the mandatory and optional startup parameters for the DFHCFMN program.
If you specify a startup parameter in both the SYSIN data set and the PARM parameter, the PARM value
overrides the SYSIN value because the MVS START command can override the PARM value.
a) You must specify a SYSPRINT DD statement for the print file.
b) You must specify a SYSIN DD statement for the server parameters.

244 CICS TS for z/OS: Configuring CICS

 Tip: To ensure that all pool-related parameters are consistent across MVS images, you must use
the same SYSIN parameter data set, or an identical copy of it, for all servers accessing the same
pool, and to specify in the PARM field any parameters that vary between servers.
c) You must specify the region status pool name.
d) You must concatenate the license activation data set (the SDFHLIC library) to the STEPLIB DD
statement.
e) You can specify the REGION parameter.
This parameter ensures that the coupling facility data table server region has enough storage to
process the maximum number of data table requests that can run concurrently.
f) You can specify TIME=NOLIMIT.
The server task remains in a wait, during most normal processing, because server processing is
performed under the TCB of the client CICS region. If you omit this parameter, your server job might
fail with abend S522 (wait limit exceeded), depending on the JWT value specified in the SMFPRMxx
member of SYS1.PARMLIB.
g) Specify additional parameters as required.
For example, you might want to control the maximum number of queues that are to be supported
in the pool and the number of buffers that the server is to allocate. You might also need to add the
required security access. See Authorizing a CICS region to a coupling facility data table.

Results
The region status server is running, ready to receive and broadcast region status data to the CICS regions
connected to it. The CICS regions connect through the pool name that is specified in the CICSplex
definition.

Region status server JCL example

//PRODRSS1 JOB ...

//RSSERVER EXEC PGM=DFHCFMN,REGION=40M,TIME=NOLIMIT CICS CFDT Server for RS
//STEPLIB DD DSN=CICSTS61.CICS.SDFHAUTH,DISP=SHR Authorized library
// DD DSN=CICSTS61.CICS.SDFHLIC,DISP=SHR License activation data set
//SYSPRINT DD SYSOUT=* Messages and statistics
//SYSIN DD *
POOLNAME=DFHRSTAT Pool name
MAXTABLES=100 Allow up to 100 tables
/*

Figure 48. Sample JCL to start a region status server address space

For an example of security parameters, see Authorizing a CICS region to a coupling facility data table.

Controlling region status servers

You can issue commands to control a region status server, using the MVS MODIFY (F) command to
specify the job or started task name of the server region, followed by the server command.

About this task

The general form of an MVS modify command, using the short form F, is as follows:

F job_name,command parameters... comments

You use the MODIFY command to pass information to a job or started task. In this task, you use the
following commands to control the region status servers.

Procedure
• To modify the server initialization parameters, use the MVS SET command:

SET keyword=operand[,keyword=operand,…]

Chapter 6. Setting up CICS data sharing servers 245

 The SET command can be abbreviated to T, as for the MVS SET command. See “The SET command
options” on page 234 for details.
• To display the values of one or more parameter values or statistics summary information on the
console, use the DISPLAY command:

DISPLAY keyword[=operand][,keyword[=operand,]…]

The valid keywords for DISPLAY are all the initialization parameters, plus an additional set described
under “DISPLAY and PRINT command options” on page 235.
The DISPLAY command can be abbreviated to D, as for the MVS DISPLAY command.
• To print the output that the DISPLAY command produces, use the MVS PRINT command:

PRINT keyword[=operand][,keyword[=operand,]…]

The PRINT command produces the same output as DISPLAY, supporting the same keywords, but on
the print file only.
• To delete a table, use the DELETE TABLE=name command.
The table must not be in use for this command to succeed. You can abbreviate the command to DEL.
• To stop the server normally, use the STOP command.
The server waits for any active connections to end first, and prevents any new connections while it is
waiting. You can abbreviate the command to P. You can also use the MVS STOP command, which is
equivalent to issuing the server STOP command through the MVS MODIFY command. The syntax of the
STOP command is:

STOP|P [jobname.]identifier[,A=asid]

• To terminate the server immediately, use the CANCEL command.

You can also specify whether the server automatically restarts with the RESTART option. For
information about CANCEL RESTART see “The CANCEL command options” on page 216.
• The server also responds to Cross System Extended Services (XES) events such as an operator
SETXCF command to alter the structure size.
If the server can no longer access the coupling facility, it automatically issues a server CANCEL
command to close itself down immediately.

The SET command options

You can use the SET command to modify groups of server initialization parameters.
These system initialization parameter groups are:
• The statistics parameters
• The debug trace parameters
• The lock wait parameters
• The warning parameters
• The automatic ALTER parameters.
The following SET keywords are used to modify the server's recovery status of an inactive CICS region
that had unresolved units of work when it last terminated:
RESTARTED=applid
Establish a temporary recoverable connection for the given APPLID. This resolves any units of work
that were in commit or backout processing when the region last terminated, and indicates whether
there are any remaining indoubt units of work.
This keyword can be abbreviated to RESTART or REST.

246 CICS TS for z/OS: Configuring CICS

COMMITTED={applid|applid.uowid}
Establish a temporary recoverable connection for the specified APPLID and commit all indoubt units
of work, or, if uowid is also specified, commit that specific unit of work.
This command should be used only when it is not possible to restart the original CICS region to
resolve the work normally, because it can result in inconsistency between coupling facility data table
resources and other CICS resources updated by the same unit of work.
This keyword can be abbreviated to COMMIT or COMM.
BACKEDOUT={applid|applid.uowid}
Establish a temporary recoverable connection for the specified APPLID and back out all indoubt units
of work, or, if uowid is also specified, back out that specific unit of work.
This command should be used only when it is not possible to restart the original CICS region to
resolve the work normally, because it can result in inconsistency between coupling facility data table
resources and other CICS resources updated by the same unit of work.
This keyword can be abbreviated to BACKOUT or BACK.
Use the following SET parameters to modify options relating to a specific table:

TABLE=name
specifies the table to which the following table-related parameters in the same command are to be
applied. This parameter is required before any table-related parameters.
MAXRECS=number
Modify the maximum number of records that can be stored in the table specified by the preceding
TABLE parameter.
If the maximum number is set to a value less than the current number of records in the table, no new
records can be stored until records have been deleted to reduce the current number to within the
new maximum limit. For a recoverable table, this also means that records cannot be updated, because
the recoverable update process adds a new record on the rewrite operation then deletes the original
record when the transaction completes.
This keyword can also be specified as MAXNUMRECS.
AVAILABLE={YES|NO}
Specify whether the table named by the preceding TABLE parameter is available for new OPEN
requests. If the table is made unavailable, a CICS region that subsequently issues an OPEN request
for the table receives a response indicating that it is unavailable, but regions that currently have the
table open are not affected. Even when a table is marked as unavailable, a server can implicitly open it
on behalf of a CICS region to allow recoverable work to be resolved during restart processing.
This keyword can be abbreviated to AVAIL.
Examples of the SET command: The following example changes the statistics options:

SET STATSOPT=BOTH,EOD=21:00,STATSINT=06:00

The following example modifies the maximum number of records allowed in the specified table:

SET TABLE=PAYECFT1,MAXRECS=200000

DISPLAY and PRINT command options

You can use the DISPLAY (and PRINT) commands to display the values of any initialization parameters
plus some additional information.
Some of the parameters that provide additional information support generic names. You specify generic
names using the following wildcard characters:

Chapter 6. Setting up CICS data sharing servers 247

 • An * (asterisk symbol ). Use this anywhere in the parameter value to represent from 0 to 8 characters of
any value. For example, CICSH* to represent all the CICS APPLIDs in a CICSplex identified by the letter
H.
• A % (per cent symbol). Use this anywhere in the parameter value to represent only one character of any
value. For example, CICS%T* to represent all the TOR APPLIDs in all CICSplexes.
The parameters supported by the DISPLAY and PRINT commands are as follows:
APPLIDS
Display the APPLID and MVS system name for every CICS region that currently has a recoverable
connection to the pool. This command returns information not only for the server to which the
MODIFY command is issued, but for all other servers connected to the same pool.
This keyword can be abbreviated to APPLID, APPLS or APPL.
APPLID={applid|generic}
Display the APPLID and MVS system name for each region that currently has a recoverable connection
to the server's pool, and whose APPLID matches applid or generic. This command returns information
not only for the server to which the MODIFY command is issued, but for all other servers connected to
the same pool.
applid
Use this for a specific APPLID, which should match only one region in the sysplex.
generic
Use a suitable generic value when you want to obtain information about several regions.
If applid or generic is not specified, the server treats this as equivalent to the command DISPLAY
APPLIDS.
This keyword can also be specified as APPLIDS, APPLS or APPL.
ARMREGISTERED
Shows whether ARM registration was successful (YES or NO).
CONNECTIONS
Display the jobnames and applids of the regions currently connected to the server to which the
command is issued.
This keyword can be abbreviated to CONN.
TABLES
Display the names of all tables currently allocated in the pool.
TABLE={name|generic_name}
Display information about the attributes and status of a specific table, or of a set of tables whose
names match the generic name.
If no table name is specified, this is treated as equivalent to DISPLAY TABLES.
TABLEUSERS
Display the CICS APPLIDs of the regions that are currently using each of the tables currently defined
in the pool.
This keyword can be abbreviated to TABLEU.
TABLEUSERS={name|generic_name}
Display the CICS APPLIDs of the regions that are currently using the specified table, or using each of
the set of tables whose names match the generic name.
If no table name is specified, this is treated as equivalent to DISPLAY TABLEUSERS.
This keyword can be abbreviated to TABLEU
UOWIDS
Display the applids of all regions that currently have unresolved recoverable units of work, together
with the number of units of work that are currently in doubt, or are in the process of being committed

248 CICS TS for z/OS: Configuring CICS

 or backed out. The information displayed does not include units of work that have not yet started the
resolution process; that is, units of work that are still in flight.
This keyword can be abbreviated to UOWS.
UOWIDS={applid|generic_applid}∨{applid.*|generic_applid.*}
Display, for the specified regions if they currently have unresolved recoverable units of work,
information about those units of work. The information displayed does not include units of work that
have not yet started the resolution process; that is, units of work that are still in flight. The information
returned depends on the form of operand used.
applid|generic_applid
This form of operand displays the number of units of work that are currently in doubt, or are in the
process of being committed or backed out.
If you specify applid, the server displays UOW information for a specific APPLID, which should
correspond to only one region in the sysplex.
If you specify generic_applid the server displays UOW information for all the APPLIDs that match
the generic APPLID specified.
applid.*|generic_applid.*
This form of operand displays:
• The state and local UOWID of each individual unit of work, followed by
• A summary of the number of units of work that are currently in doubt, or are in the process of
being committed or backed out.
If you specify applid.*, the server displays the UOW information for a specific APPLID, which
should correspond to only one region in the sysplex.
If you specify generic_applid.*, the server displays UOW information for all the APPLIDs that match
the generic APPLID specified.
This keyword can be abbreviated to UOWS.
UOWID=applid.uowid
Display the state of an individual unresolved unit of work, identified by its applid and local unit of work
ID (UOWID). Enter the local UOWID as 16 hexadecimal digits.
This keyword can be abbreviated to UOW.

DISPLAY and PRINT options for statistics summaries

Use the following parameters to display or print statistics:
CFSTATS
Display statistics for coupling facility interface accesses and responses from the server.
This keyword can also be specified as CFST or STATSCF.
POOLSTATS
Display usage statistics for the pool list structure as a whole. This is based on information returned
by coupling facility access requests, therefore it is only as current as the most recent request made
through the server to which the command is issued.
This keyword can be abbreviated to POOLST.
TABLESTATS
Display statistics for requests, processed by the server to which the command is issued, for each table
plus a summary of all requests processed, including those that are not table-specific, such as unit of
work control.
Note that only tables with a non-zero number of requests since the start of the current statistics
interval are shown.
This keyword can also be specified as TABLEST.

Chapter 6. Setting up CICS data sharing servers 249

 TABLESTATS={name|generic_name}
Display request statistics for the specified table or tables.
name
A specific table name in the pool accessed by the server. Returns statistics for this table only.
generic_name
A generic name that you can use to obtain statistics about a number of tables. Returns statistics
for any table name that matches the generic name.
This keyword can be abbreviated to TABLEST.
STORAGESTATS
Display main storage allocation statistics for the server address space.
This keyword can be abbreviated to STORAGEST or STGST.

DISPLAY and PRINT options for combined lists of information

These keywords represent combined lists of information:
PARAMETERS
Display the main parameter values. These are POOLNAME, SECURITY, SECURITYPREFIX, statistics
options, and list structure options.
This keyword can be abbreviated to PARM or PARMS.
ALLPARAMETERS
Display all parameter values.
This keyword can be abbreviated to ALLPARMS.
STATISTICS
Display all available statistics.
This keyword can be abbreviated to STAT or STATS.
INITIALIZED
Display the parameters and statistics that are usually displayed when initialization is complete. This is
equivalent to PARM, POOLSTATS, STGSTATS.
This keyword can be abbreviated to INIT.
ARM
Display all ARM-related parameter values:
• ARMELEMENTNAME
• ARMELEMENTTYPE
• ARMREGISTERED
This keyword can be coded as ARMSTATUS.

The CANCEL command options

You can use the CANCEL command to request an automatic restart.
Specify the following parameter:
RESTART={NO∨YES}
Terminate the server immediately, specifying whether or not automatic restart should be requested.
The default is RESTART=NO.
If the server encounters an unrecoverable problem with the coupling facility connection, consisting
either of lost connectivity or a structure failure, it cancels itself using the CANCEL RESTART=YES
command. This terminates the existing connection and shuts down the server. A new instance of the
server job is then started.
A server can also be restarted explicitly using either the server command CANCEL RESTART=YES or
the MVS command CANCEL jobname,ARMRESTART.

250 CICS TS for z/OS: Configuring CICS

 You can also enter RESTART on its own for RESTART=YES, NORESTART for RESTART=NO.

Deleting region status server pools

You can delete a region status server pool by deleting its coupling facility list structure. You might do this
for a service upgrade, or when a clean sysplex restart is required.

Before you begin

You can delete a structure only when no servers are connected to the pool; otherwise, MVS rejects the
command.

About this task

For example:

SETXCF FORCE,STRUCTURE,STRNAME=DFHCFLS_poolname

You can verify that the pool has been successfully deleted by issuing the XCF command shown here:

D XCF STRUCTURE,STRNAME=DFHCFLS_poolname

Note that if you delete a region status server structure while CICS regions and workload are running, you
disable CICSPlex SM WLM optimized functions.

What to do next
When you attempt to start a server for a pool that has been deleted (or attempt to reload the pool), it is
allocated as a new structure. The newly allocated structure uses size and location attributes specified by
the currently active CFRM policy and other values determined by the server initialization parameters (in
particular, MAXTABLES).

Setting up and running a named counter server

CICS provides an efficient way to generate unique sequence numbers for use by applications in a Parallel
Sysplex environment; for example, to allocate a unique number for orders or invoices. A named counter
server maintains each sequence of numbers as a named counter.

About this task

The following procedure outlines the steps to set up and manage a named counter server. Details for each
step are in the topics that follow.

Procedure
1. Define a named counter options table.
2. Define a list structure.
3. Define and start a named counter server job, to run in an mvs batch region.
4. Manage named counter server regions.
• Issue commands to control a named counter server.
• Change the size of named counter pools.
• Delete or empty named counter pools.
• Unload and reload named counter pools.
• Dump named counter pool list structures.

Chapter 6. Setting up CICS data sharing servers 251

Named counter server overview
Each time a number is assigned, the corresponding named counter is automatically incremented so
that the next request gets the next number in sequence. Named counters are the Sysplex equivalent of
COUNTER in the Common System Area (CSA) of a single region CICS system.
A named counter server provides a full set of functions to define and use named counters. Each named
counter consists of:
• A 16-byte name
• A current value
• A minimum value
• A maximum value.
The values are internally stored as 8-byte (double word) binary numbers, but the user interface allows
them to be treated as any length from 1 to 8 bytes, typically 4 bytes.
Named counters are stored in a pool of named counters, where each pool is a small coupling facility
list structure, with keys but no data. The pool name forms part of the list structure name. Each named
counter is stored as a list structure entry keyed on the specified name, and each request for the next value
requires only a single coupling facility access.
Warning: The counters are lost if the coupling facility fails.

Named counter structures and servers

Within each MVS image, there must be one named counter server for each named counter pool accessed
by CICS regions and batch jobs in the MVS image.
Named counter pools are defined as a list structure in the coupling facility resource management (CFRM)
policy. The pool name, which is used to form the server name with the prefix DFHNC, is specified in the
startup JCL for the server.
Figure 49 on page 253 illustrates a parallel sysplex with three CICS AORs linked to a named counter
server.

252 CICS TS for z/OS: Configuring CICS

 MVS1 MVS2 MVS3
VTAM VTAM VTAM

TOR 1 TOR 2 TOR 3

AOR AOR AOR AOR AOR AOR AOR AOR AOR

DFHNCMN DFHNCMN DFHNCMN

NC server NC server NC server

Coupling
facility (CF1) F2)

Number
counter
pool

Figure 49. Conceptual view of a parallel sysplex with named counters

Application program access to named counters

CICS provides a command level API for the named counter facility. To reference a named counter, an
application program can specify either the actual name of the pool in which the named counter is stored,
or it can specify a dummy pool selection parameter. The dummy pool value is mapped to the actual pool
name by the POOL parameter that is specified in the options table, DFHNCOPT.
Specifying a dummy pool makes it easy to use a different pool (for example, to isolate test pools from
production pools) without having to change the pool selection parameter in the application program.
To vary the pool used by a CICS region, either load a different copy of the options table from STEPLIB,
or use a common options table where the pool name selection is conditional on the job name and CICS
APPLID, in addition to the pool name selection parameter. The options table also supports invocation of a
user-specified program to select the appropriate pool given the pool selection parameter.

Security
The server must be authorized to access the coupling facility list structure in which the named counter
pool is defined. The server must also be authorized to act as a named counter server.
For information on how to define the necessary authorizations see Authorizing access to named counter
pools and servers.
Note: You cannot control access to individual named counters.

Chapter 6. Setting up CICS data sharing servers 253

Defining a named counter options table
The named counter callable interface determines the actual pool name in response to a DFHNCTR call by
referring to the DFHNCOPT options table.

About this task

When a pool selector value is encountered for the first time, the pool name is determined via the options
table. The name is then saved and used for all subsequent requests for the same pool selector from the
same TCB. This continues for the life of the TCB or until the NC_FINISH function is used specifying that
pool selector value. CICS supplies a default DFHNCOPT in source form, which you can customize and
generate using the DFHNCO macro. A typical use of the options table is to enable production and test
regions to use a different counter pool without needing to change the pool name in application programs.
To avoid the need to maintain multiple versions of the options table, you can use table entries to select
pools based not only on the pool selection parameter specified on the DFHNCTR call, but also on the job
name and APPLID of the CICS region. You can also specify the name of a user exit program to be called to
make the pool selection.
Define an options table using one or more invocations of the DFHNCO macro. Each invocation generates
an options table entry that defines the pool name or user exit program to be used whenever any selection
conditions specified on the entry satisfy an application program request. The first entry automatically
generates the table header, including the CSECT statement. Follow the last entry with an END statement
specifying the table module entry point, DFHNCOPT.

The options table parameters

The DFHNCOPT options table parameters are illustrated in the following figure.

DFHNCO [POOLSEL={(generic_values)|*},]
[JOBNAME={(generic_values)|*},]
[APPLID={(generic_values)|*},]
{POOL={YES|NO|name} | CALL=programname}

Terminate the last DFHNCO entry with the

following END statement:

END DFHNCOPT

Figure 50. DFHNCOPT options table

The POOLSEL, JOBNAME, and APPLID parameters specify optional selection conditions to determine
whether the entry applies to the current request. You can specify each of these operands as
• A single generic name
• A list of names in parentheses, the list containing two or more generic names, each name separated by
a comma.
Each name comprises the characters that can appear on the appropriate parameter, plus the wild-card
characters * to match any sequence of zero or more non-blank characters, and % to match any single
non-blank character. When multiple generic name are specified, the selection condition is satisfied if any
one of them matches. A blank pool selector value can be matched using a null POOLSEL operand, for
example POOLSEL= or POOLSEL=().
POOLSEL={(generic1,generic2,…,…)∨* }
Specifies that this options table entry applies only when the pool selection parameter specified by the
application program matches one of the generic names specified on this parameter.
Specifying POOLSEL=, or POOLSEL=() is the equivalent of specifying 8 blanks.
If you omit the POOLSEL keyword, it defaults to *.

254 CICS TS for z/OS: Configuring CICS

JOBNAME={(generic1,generic2,…,…)∨* }
Specifies that this options table entry applies only when the caller's job name matches one of the
generic names specified on this parameter.
If you omit the JOBNAME keyword, it defaults to *.
APPLID={(generic1,generic2,…,…)∨* }
Specifies that this options table entry applies only when the caller's CICS APPLID matches one of the
generic names specified on this parameter.
If you omit the APPLID keyword, it defaults to *.
POOL={YES∨NO∨name}
Specifies the pool name to be used. This parameter is mutually exclusive with the CALL parameter.
The options are:
YES
specifies that the server is to use the pool selection parameter specified by the application
program as the actual pool name. An all-blank pool selection parameter means the server is to
use the default pool name. For the call interface, the default name is DFHNC001. For the EXEC
CICS API, the default name is specified by the NCPLDFT system initialization parameter.
NO
specifies that the server is not to use any pool and is to reject the request with an error.
name
specifies the actual pool name that the server is to use. If name is omitted, this indicates that the
default pool is to be used. (For the CALL interface, the default pool is always DFHNC001, but for
the EXEC CICS interface you can specify the default pool using the NCPLDFT system initialization
parameter.)
CALL=programname
specifies the name of a user exit program to be called to determine the actual pool name to be used.
This parameter is mutually exclusive with the POOL parameter.
The program named can be link-edited with the options table, which generates a weak external
reference (WXTRN), or it can be loaded dynamically the first time it is used. The program is called
using standard MVS linkage in AMODE 31, with a standard save area and parameter list pointing to
four fields, in the following order:
• The 8-byte actual pool name result field
• The 8-byte pool selection parameter.
• The 8-byte job name
• The 8-byte APPLID if running under CICS, otherwise blanks
The end-of-list bit is set in the last parameter address.
The program should be reentrant and should be linked with RMODE ANY, so that it (and the option
table if linked with the program) can be loaded above the line. Temporary working storage can be
acquired and released using MVS GETMAIN and FREEMAIN. As this program is only called when a
new pool selection value is used, the use of GETMAIN and FREEMAIN should not affect performance.
The exit program cannot use any CICS services. If it is used in a CICS region, it must avoid using
any MVS services which could result in a long wait, as it will normally be executed under the CICS
quasi-reentrant (QR) TCB.
The user exit program indicates its result by setting one of the following return codes in register 15:
0
Use the pool name that is successfully set, in the first field of the parameter list, by the user exit
program.
4
The program cannot determine the pool name on this invocation. Continue options table
processing at the next entry, as for the case where selection conditions were not met.

Chapter 6. Setting up CICS data sharing servers 255

 8
Reject the request (as if POOL=NO was specified).
The default options table, supplied in CICSTS61.CICS.SDFHLINK, contains the following entries:

DFHNCO POOLSEL=DFHNC*,POOL=YES
DFHNCO POOL=
END DFHNCOPT

With the default options table in use, any pool selector parameter that specifies a string beginning with
DFHNC is taken to be an actual pool name, indicated by POOL=YES in the table entry. Any other value,
including a value of all spaces, is assigned the default pool name, indicated by the POOL= table entry
without a POOLSEL parameter.
The source for this default table is supplied in CICSTS61.CICS.SDFHSAMP.

Making an options table available to CICS

To ensure that your CICS region can load the named counter options table, install the link-edited table
into an APF-authorized library in STEPLIB. Alternatively you can install the table in a suitable library in the
LINK list.

Defining a list structure for a named counter server

Define one or more coupling facility list structures for the named counter facility, where each list structure
represents a pool of named counters. Each named counter pool is accessed through a cross-memory
server region.

Before you begin

A coupling facility structure contains both stored data and the information needed to manage and access
that data, in a similar way to a key-sequenced data set. The amount of internal control information
depends on the level of functionality and performance of the coupling facility control code for the current
coupling facility level (CFLEVEL), and might increase for a higher CFLEVEL. Ensure that you consider
storage requirements for your list structures. For more information, see “Named counter list structure
storage” on page 257.

About this task

Define the structure in the current coupling facility resource management (CFRM) policy by using the
utility IXCMIAPU. For an example of this utility, see member IXCCFRMP in the SYS1.SAMPLIB library (see
Administrative data utility for CFRM policy data in z/OS MVS Setting Up a Sysplex).

Procedure
1. Specify the name of the list structure.
The name is formed by adding the prefix DFHNCLS_ to your chosen pool name, giving
DFHNCLS_poolname.
2. Specify the size of the list structure.
You can allocate an initial and maximum size using the INITSIZE and SIZE parameters in the CRFM
policy definition. For an accurate estimate of storage requirements, use the IBM CFSizer tool. See
CFSizer.
3. Specify the preference list of coupling facilities in which the policy can be stored.
An example definition of a coupling facility list structure for named counters is as follows:

STRUCTURE NAME(DFHNCLS_PRODNC1)
SIZE(2048)
INITSIZE(1024)
PREFLIST(FACIL01,FACIL02)

256 CICS TS for z/OS: Configuring CICS

 4. When you have updated the CFRM new policy with the new structure definition, activate the policy
using the following MVS command:

SETXCF START,POLICY,POLNAME=policyname,TYPE=CFRM.

Results
You have defined the CFRM policy statements for a list structure. This action does not create a list
structure. The structure is created the first time an attempt is made to connect to it, which occurs when
the first named counter server that refers to the corresponding pool is started.
Before you start the named counter server, ensure that you have defined and started the authorized
cross-memory (AXM) server environment (see “Defining and starting AXM system services” on page 203).

Named counter list structure storage

You can use thez Systems Coupling Facility Structure Sizer (CFSizer) tool to calculate storage
requirements for named counter list structures in a coupling facility. If you increase or decrease the
structure size, consider whether you need to update other parameters.
A coupling facility structure contains both stored data and the information needed to manage and access
that data, in a similar way to a key-sequenced data set. The amount of internal control information
depends on the level of functionality and performance of the coupling facility control code for the current
coupling facility level (CFLEVEL), and might increase for a higher CFLEVEL. For more information, see
“Coupling facility storage management” on page 268.
CFSizer is a web-based application that takes these factors into account and communicates with a
coupling facility at a current CFLEVEL to calculate storage requirements. See CFSizer.
If you enter the number of counters you require, the CFSizer tool calculates the size of a structure that
can contain at least that number of counters. However, for practical operation, some free space must be
available so that the structure does not become full, and to avoid warning messages about low space.
It is advisable to use no more than approximately 75% of the structure size. Estimate the maximum
number of counters that you require, then increase that number by a third to include the free space in the
calculation.
The space required for a named counter pool depends on the number of different named counters that
you need, but the minimum size can be enough for most needs. For example, for CFLEVEL 16, a 1 MB
structure can hold up to 1000 named counters.
All structure sizes are rounded up to the next storage increment for the coupling facility level (CFLEVEL) at
allocation time. For example, sizes are rounded up to the nearest 1 MB for CFLEVEL 16.
Provided that space is available in the coupling facility, you can use the MVS SETXCF command to
increase the structure size dynamically from its initial size towards its maximum size, making the new
space available immediately to any currently active servers. If too much space is allocated, you can
reduce the structure size to free up coupling facility storage for other purposes. However, this could take
some time if the coupling facility has to move existing data out of the storage that is being freed. If you
alter the size in this way, update the INITSIZE parameter in the coupling facility resource management
(CFRM) policy to reflect the new size, so that the structure does not revert to its original size if it is
subsequently re-created or reloaded.

Defining and starting a named counter server region

You activate a named counter pool in an MVS image by starting up a named counter server region for that
pool.

About this task

You can start the server as a started task, started job, or as a batch job. The job or task must invoke
the named counter server region program, DFHNCMN, and must run from an APF-authorized library.
DFHNCMN is in the CICS authorized library, CICSTS61.CICS.SDFHAUTH.

Chapter 6. Setting up CICS data sharing servers 257

 Procedure
1. Specify the DFHNCMN program either in a SYSIN data set defined in the JCL, or in the PARM parameter
on the EXEC statement.
2. Specify the mandatory and optional startup parameters for the DFHNCMN program.
If you specify a startup parameter in both the SYSIN data set and the PARM parameter, the PARM value
overrides the SYSIN value because the MVS START command can override the PARM value.
a) You must specify a SYSPRINT DD statement for the print file.
b) You must specify a SYSIN DD statement for the server parameters.
c) You must specify the TS pool name.
d) You must concatenate the license activation data set (the SDFHLIC library) to the STEPLIB DD
statement.
e) It is recommended that you specify the REGION parameter.
This parameter ensures that the coupling facility data table server region has enough storage to
process the maximum number of data table requests that can run concurrently.
f) It is recommended that you specify TIME=NOLIMIT.
The server task remains in a wait during most normal processing, because server processing is
performed under the TCB of the client CICS region. If you omit this parameter, your server job could
fail with abend S522 (wait limit exceeded), depending on the JWT value specified in the SMFPRMxx
member of SYS1.PARMLIB.
g) Specify additional parameters as required.
For example, you might want to control the maximum number of queues that are to be supported in
the pool and the number of buffers the server is to allocate.
Tip: A good way to ensure that all pool-related parameters are consistent across MVS images is to use
the same SYSIN parameter data set, or an identical copy of it, for all servers accessing the same pool,
and to specify any parameters that vary between servers in the PARM field.

Example

//MVSnNC1 JOB ...

//NCSERVER EXEC PGM=DFHNCMN,REGION=32M,TIME=NOLIMIT named counter server
//STEPLIB DD DSN=CICSTS61.CICS.SDFHAUTH,DISP=SHR Authorized library
// DD DSN=CICSTS61.CICS.SDFHLIC,DISP=SHR License activation data set
//SYSPRINT DD SYSOUT=* Messages and statistics
//SYSIN DD *
POOLNAME=MVSnNC1 Pool name
/*

Figure 51. Sample JCL to start a named counter server address space

Named counter server parameters

Parameters are specified in the form KEYWORD=value, where keywords can optionally be specified in
mixed case to improve readability.
If you specify more than one parameter in the PARM field or on the same SYSIN input line, the parameters
must be separated by a comma. Any text following one or more spaces is taken as a descriptive comment.
Any parameter line which starts with an asterisk or a space is assumed to be a whole line comment.
You can enter some parameter keywords in more than one form, such as in abbreviated or truncated form.
The main parameters are listed on the server print file during startup.

258 CICS TS for z/OS: Configuring CICS

Named counter server REGION parameter
Use the JCL REGION parameter to ensure that the named counter server region has enough storage to
process the maximum number of named counter requests that can be executing concurrently.
The named counter server typically uses less than one megabyte of storage above 16 MB but below 2 GB,
and less than 20 KB below 16 MB.
During server initialization, the server acquires all the available storage above 16 MB but below 2 GB, as
determined by the REGION parameter, then releases 5% of it for use by operating system services. It also
acquires 5% of the free storage below 16 MB for use in routines that require 24-bit addressable storage.
After initialization, the server uses AXM page allocation services to manage its storage. Server statistics
indicate how much storage is allocated and used in the storage areas above and below 16 MB, which are
called AXMPGANY and AXMPGLOW in the statistics.
If a task in the server region or a cross-memory request runs out of storage, this is likely to result in AXM
terminating that task or request using a simulated abend with system completion code 80A to indicate a
GETMAIN failure. Although the server can usually continue processing other requests in this case, running
out of storage in a critical routine can cause the server to terminate. Therefore, it is best to ensure that the
REGION size is large enough to eliminate this risk.

Pool name parameter

This parameter, POOLNAME, is always required.
POOLNAME=name
Specifies the 8-character name of the named counter pool. This is appended by the server to the
prefix DFHNC to create its own server name, as in DFHNC.poolname, and also to the prefix DFHNCLS_
to create the name of the coupling facility list structure, as in DFHNCLS_poolname.
This parameter is valid only at server initialization, and must always be specified.
This keyword can be abbreviated to POOL.

Statistics parameters
Use the following parameters to specify server statistics options:
ENDOFDAY={00:00|hh:mm}
specifies the time of day, in hours and minutes, when the server is to collect and reset end-of-day
statistics.
Note: If the STATSOPTIONS parameter specifies NONE, the server still writes end-of-day statistics to
the print file.
The valid range of times is from 00:00 to 24:00.
This keyword can be abbreviated to EOD.
STATSINTERVAL={03:00|hh:mm}
specifies the statistics collection interval, in the range 1 minute to 24 hours. This parameter is ignored
if the STATSOPTIONS parameter specifies NONE.
The time interval can range from 00:01 to 24:00.
This keyword can be abbreviated to STATSINT.
STATSOPTIONS={NONE|SMF|PRINT|BOTH}
specifies whether the server is to produce interval statistics, and the destination for the statistics it
produces.
NONE
The server does not produce any interval statistics.
SMF
The server produces interval statistics and writes them to the current SMF data set only.
PRINT
The server produces interval statistics and writes them to the server's print file only.

Chapter 6. Setting up CICS data sharing servers 259

 BOTH
The server produces interval statistics and writes them to the current SMF data set and to the
server's print file.
This keyword can be abbreviated to STATSOPT.

Automatic restart manager (ARM) parameters

During server initialization, the server unconditionally registers with ARM except when the server
program is invoked with either the UNLOAD or the RELOAD functions. The server will not start if the
registration fails. You can use the ARMELEMENTNAME and ARMELEMENTTYPE parameters to override
default processing for the automatic restart manager.
ARMELEMENTNAME=elementname
specifies the automatic restart manager element name, up to 16 characters, to identify the server to
ARM for automatic restart purposes. The permitted characters for the element name are A to Z 0-9 $
# @ and the underscore symbol (_).
The default identifier is of the form DFHNCnn_poolname, where NC represents the server type, nn is
the &SYSCLONE value for the system (which can be either one or two characters), and poolname is the
name of the pool served by the server.
This parameter is only valid at server initialization.
This keyword can be abbreviated to ARMELEMENT or ARMELEMNAME.
ARMELEMENTTYPE=elementtype
specifies the automatic restart manager element type, up to 8 characters for use in ARM policies as a
means of classifying similar elements. The permitted characters for the element type are A to Z 0-9 $
# and @.
The default element type is SYSCICSS.
This parameter is only valid at server initialization.
This keyword can be abbreviated to ARMELEMTYPE.

List structure parameter

The list structure parameter specifies the attribute that is used only for initial allocation of resources
when the list structure is created for a named counter pool. Initial allocation occurs the first time a server
is started for the named counter pool.
POOLSIZE={0|number{K|M|G}}
Specifies the initial amount of coupling facility storage to be allocated for the pool list structure,
expressed as kilobytes (n K), megabytes (n M) or gigabytes (n G).
Usually, you can omit this parameter and specify the structure size by using the INITSIZE parameter
in the coupling facility resource manager (CFRM) policy. However, this parameter can be useful if the
structure is reallocated or reloaded but the CFRM policy has not been updated to reflect the required
size.
0
The special value 0 means that the server obtains an initial allocation using the parameters
specified in the CFRM policy. If the CFRM policy specifies an INITSIZE value for the structure,
this determines the initial allocation. Otherwise, the CFRM SIZE value (the maximum size of the
structure) is allocated.
number
A non-zero value specifies an initial amount of storage to be allocated, overriding the INITSIZE
parameter in the CFRM policy. This value is rounded up by MVS to the next storage increment for
the coupling facility level (CFLEVEL). For example, for CFLEVEL 16, the value is rounded up to the
nearest 1 MB.
The value must be less than the CFRM SIZE parameter, otherwise the value of POOLSIZE is
ignored and the initial allocation uses the parameters specified in the CFRM policy.

260 CICS TS for z/OS: Configuring CICS

 The valid range is from 0 to 16777215M. However, you must specify a value that is less than the
maximum size of a structure in z/OS, otherwise a z/OS error occurs. For more details, see the
information about CFRM parameters in z/OS MVS Setting Up a Sysplex.
This parameter is valid only at server initialization and is used only when the structure is first
allocated.

Debug trace parameters

These parameters are provided only for intensive debug tracing.
Using these options in a production environment could have a significant impact on performance and
cause the print file to grow very rapidly, using up spool space.
Trace messages from cross-memory requests can be lost if they are generated faster than the trace print
subtask can print them. In this event, the trace only indicates how many messages were lost.
CFTRACE={OFF|ON}
specifies the coupling facility interface debug trace option.
OFF
Coupling facility interface debug trace is disabled.
ON
Coupling facility interface debug trace produces trace messages on the print file, indicating the
main parameters to the coupling facility request interface, and the result from the IXLLIST macro.
This keyword can also be specified as TRACECF.
RQTRACE={OFF|ON}
specifies the request debug trace option.
OFF
Request debug trace is disabled.
ON
Request debug trace produces trace messages on the print file, indicating the main parameters on
entry to each cross-memory request, and the results on exit.
This keyword can also be specified as TRACERQ=.

Warning parameters
Use these parameters to modify the thresholds at which warning messages are issued when the structure
becomes nearly full.
ENTRYWARN={80|number}
specifies the percentage of list structure entries in use at which warning messages should be first
triggered.
The valid range is from 1 to 100 per cent.
ENTRYWARNINC={5|number}
specifies the percentage increase (or decrease) of entries in use before the next warning message
should be triggered (reduced to 1 when the next increase would otherwise reach 100). After the first
warning, additional messages are issued as the number of elements increases and decreases. These
messages stop when the number of entries in use has fallen at least this percentage below the initial
warning level.
The valid range is from 1 to 100 per cent.

Chapter 6. Setting up CICS data sharing servers 261

Controlling named counter server regions
You can issue commands to control a named counter server, using the MVS MODIFY (F) command to
specify the job or started task name of the server region, followed by the server command.

About this task

The general form of a named counter server command, using the short form F, is as follows:

F server_job_name,command
parameters... comments

SET keyword=operand[,keyword=operand,…]
Change one or more server parameter values.

Procedure
• To change one or more server parameter values, use the SET command.
You can abbreviate the command to T, as for the MVS SET command. See “The SET command
options” on page 262 for details.
• To display one or more parameter values or statistics summary information on the console, use the
DISPLAY command.
The syntax is as follows:

DISPLAY keyword[=operand][,keyword[=operand,]…]

The valid keywords for DISPLAY are all the initialization parameters, plus an additional set described
under “DISPLAY and PRINT command options” on page 263. You can abbreviate the command to D, as
for the MVS DISPLAY command.
• To print the parameter values, use the PRINT command.
This command produces the same output as the DISPLAY command, supporting the same keywords,
but on the print file only.
• To stop the server normally, use the STOP command.
The server waits for any active connections to end first, and prevents any new connections while it is
waiting. You can abbreviate the command to P. You can also use the MVS STOP command, which is
equivalent to issuing the server STOP command through the MVS MODIFY command. The syntax of the
STOP command is:

STOP|P [jobname.]identifier[,A=asid]

• To terminate the server immediately, use the CANCEL command.

You can also specify whether the server automatically restarts with the RESTART option. For
information about CANCEL RESTART see “The CANCEL command options” on page 216.
• The server also responds to XES events such as an operator SETXCF command to alter the structure
size.
If the server can no longer access the coupling facility, it automatically issues a server CANCEL
command to close itself down immediately.

The SET command options

You can use the SET command to modify groups of server initialization parameters.
The groups of server initialization parameters are as follows:
• The statistics parameters
• The debug trace parameters
• The warning parameters

262 CICS TS for z/OS: Configuring CICS

See “Named counter server parameters” on page 258 for details of these keywords.
Examples of the SET command: The following example changes the statistics options:

SET STATSOPT=BOTH,EOD=21:00,STATSINT=06:00

DISPLAY and PRINT command options

You can use the DISPLAY and PRINT commands to display the values of any initialization parameters
plus some additional information.
The parameters supported by the DISPLAY and PRINT commands are as follows:
ARMREGISTERED
Shows whether ARM registration was successful (YES or NO).
CONNECTIONS
Display the job names and APPLIDs of the regions currently connected to the server to which the
command is issued.
This keyword can be abbreviated to CONN.
COUNTERS
Display the names of all the named counters currently allocated in a pool.
COUNTERS={name|generic_name}
Display the details of a specific named counter, or set of named counters whose names match the
generic name. Generic names are specified using the wildcard characters * (asterisk symbol) and %
(per cent symbol).
If no named counter is specified, this is treated as equivalent to DISPLAY COUNTERS.
This keyword can be abbreviated to COUNTER.

DISPLAY and PRINT options for statistics summaries

Use the following parameters to display or print statistics:
CFSTATS
Display statistics for coupling facility interface accesses and responses from the server.
This keyword can also be specified as CFST or STATSCF.
POOLSTATS
Display usage statistics for the pool list structure as a whole. This is based on information returned
by coupling facility access requests, therefore it is only as current as the most recent request made
through the server to which the command is issued.
This keyword can be abbreviated to POOLST.
STORAGESTATS
Display main storage allocation statistics for the server address space.
This keyword can be abbreviated to STORAGEST or STGST.

DISPLAY and PRINT options for combined lists of information

These keywords represent combined lists of information:
PARAMETERS
Display the main parameter values:
• POOLNAME
• STATSOPT
• ENDOFDAY
• STATSINTERVAL

Chapter 6. Setting up CICS data sharing servers 263

 • POOLSIZE
This keyword can be abbreviated to PARM or PARMS.
ALLPARAMETERS
Display all parameter values, which are those listed for PARAMETERS, as well as the following:
• CFTRACE
• RQTRACE
• ENTRYWARN
• ENTRYWARNINC
This keyword can be abbreviated to ALLPARMS.
STATISTICS
Display all available statistics. This keyword can be abbreviated to STAT or STATS.
INITIALIZED
Display the parameters and statistics that are usually displayed when initialization is complete, which
are those listed for PARAMETERS, as well as the following:
• POOLSTATS
• STGSTATS
This keyword can be abbreviated to INIT.
ARM
Display all ARM-related parameter values:
• ARMELEMENTNAME
• ARMELEMENTTYPE
• ARMREGISTERED
This keyword can be coded as ARMSTATUS.

The CANCEL command options

You can use the CANCEL command to request an automatic restart.
Specify the following parameter:
RESTART={NO∨YES}
Terminate the server immediately, specifying whether or not automatic restart should be requested.
The default is RESTART=NO.
If the server encounters an unrecoverable problem with the coupling facility connection, consisting
either of lost connectivity or a structure failure, it cancels itself using the CANCEL RESTART=YES
command. This terminates the existing connection and shuts down the server. A new instance of the
server job is then started.
A server can also be restarted explicitly using either the server command CANCEL RESTART=YES or
the MVS command CANCEL jobname,ARMRESTART.
You can also enter RESTART on its own for RESTART=YES, NORESTART for RESTART=NO.

Deleting or emptying named counter pools

You can delete a named counter pool using the MVS SETXCF command to delete its coupling facility list
structure.

About this task

For example:

SETXCF FORCE,STRUCTURE,STRNAME=DFHNCLS_poolname

264 CICS TS for z/OS: Configuring CICS

 You can delete a structure only when there are no servers connected to the pool, otherwise MVS rejects
the command.
When you attempt to start a server for a pool that has been deleted (or attempt to reload the pool), it is
allocated as a new structure. The newly allocated structure uses size and location attributes specified by
the currently active CFRM policy.

Changing the size of named counter pools

If the structure is becoming full, and the current pool size is less than the maximum, you can use the
SETXCF START,ALTER command to increase the pool size.

About this task

For example:

SETXCF START,ALTER,STRNAME=DFHNCLS_poolname,SIZE=size

SIZE is expressed in kilobytes.

Unloading and reloading named counter pools

You can unload, and reload, the complete contents of a named counter pool to and from a sequential data
set by invoking the server program with the FUNCTION parameter, using the UNLOAD and RELOAD options.

About this task

You can use this function, for example, to:
• Preserve the named counter pool during planned coupling facility maintenance, or
• Move the pool to a different coupling facility.
FUNCTION={UNLOAD|RELOAD}
Specify the function for which the server is being initialized.
UNLOAD
Unload the entire contents of the named counter pool specified on the POOLNAME parameter to
a sequential data set. When the unload processing has completed (normally or abnormally) the
server program terminates.
The UNLOAD function requires a DD statement for DDNAME DFHNCUL describing the sequential
data set to which the table pool is to be unloaded. The format of the unloaded data set is:

RECFM=F
LRECL=4096
BLKSIZE=4096

RELOAD
Reload, into the named counter pool named on the POOLNAME parameter, a previously unloaded
named counter pool.
The RELOAD function requires a DD statement for DDNAME DFHNCRL, describing the sequential
data set from which the table pool is to be reloaded.
The structure is allocated, if necessary, during reloading, in which case you can use the same
server parameters to control structure attributes as for normal server startup. The reload process
bypasses named counters that are already found in the pool (for example, because the structure
was too small and the reload job had to be restarted after using ALTER to increase the structure
size).
Note: If the unloaded pool structure was altered dynamically at any time after initial allocation (by
using the SETXCF command to increase the size), ensure that the increased size is allocated for
the reloaded pool. The recommended way is to update the INITSIZE parameter for the structure

Chapter 6. Setting up CICS data sharing servers 265

 in the current CFRM policy whenever you alter the structure size, and to activate the updated
policy using the SETXCF START,POLICY command. Alternatively, you can specify the required pool
size in the POOLSIZE parameter in the reload JCL.
Note: If you omit the FUNCTION parameter, the server program initializes a named counter server
address space.
For the UNLOAD and RELOAD function, the server program requires exclusive use of the list structure.
If the structure is currently being used by a normal server, the unload or reload attempt is rejected.
Similarly, if a normal server attempts to start while an unload or reload job is in progress, the attempt fails
because shared access to the structure is not available.
You can specify all normal server parameters when unloading or reloading, but some of these (for
example, statistics-related parameters) are ignored because they do not apply to unload or reload
processing.
If reloading fails because it runs out of space, the resulting messages include the numbers of named
counters reloaded and blocks read up to the time of the failure. You can compare these values with those
in the messages from the original unload job, to determine how many more named counters remain to be
loaded.

Unload JCL example

The JCL in the following example shows you how to unload a named counter pool.

//UNLDNCD1 JOB ...

//NCUNLOAD EXEC PGM=DFHNCMN CICS named counter server program
//STEPLIB DD DSN=CICSTS61.CICS.SDFHAUTH,DISP=SHR Authorized library
//SYSPRINT DD SYSOUT=* Options, messages and statistics
//DFHNCUL DD DSN=NC1.UNLOADED.POOL, Unloaded named counter pool
// DISP=(NEW,CATLG),
// SPACE=(4096,(10000,1000)) Estimated size in 4K blocks
//SYSIN DD *
FUNCTION=UNLOAD Function to be performed is UNLOAD
POOLNAME=PRODNC1 Pool name
/*

Figure 52. Unload JCL example

Reload JCL example

This JCL example shows you how to reload a named counter pool.

//RELDNCD1 JOB ...

//NCRELOAD EXEC PGM=DFHNCMN CICS named counter server program
//STEPLIB DD DSN=CICSTS61.CICS.SDFHAUTH,DISP=SHR Authorized library
//SYSPRINT DD SYSOUT=* Options, messages and statistics
//DFHNCRL DD DSN=NC1.UNLOADED.POOL,DISP=OLD Unloaded pool
//SYSIN DD *
FUNCTION=RELOAD Function to be performed is RELOAD
POOLNAME=PRODNC1 Pool name
/*

Figure 53. Reload JCL example

Dumping named counter pool list structures

You can use the MVS DUMP command to obtain a dump of the coupling facility list structure for a named
counter pool.
For information on dumping and formatting a list structure, see Using dumps in problem determination.

266 CICS TS for z/OS: Configuring CICS

Coupling facility server operations
The operations that you can perform on all three CICS coupling facility servers, for temporary storage,
coupling facility data tables and named counters, are similar and the following information describes all
three unless otherwise indicated.

Monitoring coupling facility server messages

The server issues various messages during execution, some of which might indicate that serious problems
are developing, for example that the coupling facility structure is becoming full.
It is important to understand the types of messages that the server issues and to ensure that system
status messages are monitored for possible problems.

Server messages
Messages that are issued by the server code itself start with the five-letter server prefix (DFHXQ, DFHCF
or DFHNC).
These messages fall into the following groups:
• Operator console system status messages, which are issued by WTO (Write To Operator) with routing
codes 2 (operator information) and 11 (programmer information), and descriptor code 4 (system
status).
These messages provide information about important status changes, primarily about the beginning and
end of server initialization and the beginning and end of server termination, and about problems.
Any server message that is issued in this way during normal running indicates a potentially serious
problem, and should not be ignored. If this process is automated, a simple rule is to ignore the specific
list of status messages for normal initialization and termination, and to treat any other server message
as a warning.
These messages can be issued either from the server address space or from a client address space.
If the server code that requests the message is running in cross-memory mode, the message is
passed back to a routine that issues the WTO in primary mode in the client address space. This
avoids restrictions which apply to WTO messages that are issued in cross-memory mode. For example,
cross-memory mode WTO messages do not appear in any job log.
• Command responses, which are issued by WTO with routing codes 2 and 11 and descriptor code 5
(immediate command response).
These messages contain responses to server commands that are issued via the system MODIFY or
STOP command, for example to display statistics.
• Job log messages:
These messages typically contain diagnostic information, for example details of an abend or an
attempted security violation. They are written to the job log, by WTO with routing code 11 (programmer
information).
• Trace and statistics messages:
These messages are written only to the server SYSPRINT file.
All messages that are issued by the server code, whether they are running under the server address space
or in cross-memory mode from the client address space, are also copied to the server SYSPRINT file.

AXM messages
The AXM environment code issues operator messages from the server and client address spaces and
from the main address space during AXM system services initialization.
These messages are issued using WTO with routing codes 2 (operator information) and 11 (programmer
information, not used when running in the main address space), and descriptor code 4 (system status).
AXM message numbers are of the form "AXMxxnnnns", where the first five characters "AXMxx" are the

Chapter 6. Setting up CICS data sharing servers 267

 name of the module issuing the message, "nnnn" is the numeric part of the message number, and "s" is
the suffix letter. The suffix letter is "I" if the message is a routine informational message, or is omitted if
the message indicates an error. The suffix letter can be used by automation tools to distinguish routine
informational messages from error situations.
AXM messages that are issued from the server environment (via AXM run-time environment routines
linked with the server load module), are copied to the server SYSPRINT file as well. AXM also writes
informational messages to the SYSPRINT file. These contain information such as initialization information
and closedown statistics for storage management, and the main procedure entry point of the server
module for diagnostic purposes.

Coupling facility storage management

The type of coupling facility structure that CICS uses for its temporary storage data sharing pools,
coupling facility data table pools, and named counter pools is a keyed list structure.
A coupling facility list structure contains an array of numbered lists that contain entries with 16-byte keys.
Each list is like a keyed file. Each entry has a fixed prefix area that contains its key and other control
information, which includes an adjunct area of 64 bytes for program use. The prefix is followed by a chain
of up to 128 256-byte data elements. The maximum data size is 32K bytes.
For named counters, the structure contains a single list, each entry uses only the prefix area, and there
are no data elements.
Storage for entry prefixes, known as entry controls, and data elements is allocated from two storage pools
within the structure, which are shared between all lists in the structure.
The storage in a list structure can be divided into two types:
• Fixed controls.
Storage for fixed controls is preallocated at a fixed size for the life of the structure. This storage contains
structure control information, including data buffer space, and an array of list headers, up to the
maximum number of lists defined when the structure was created. For CICS, this number is the small
number of lists used for CICS internal purposes, and the value specified for the parameters MAXQUEUES
or MAXTABLES.
The fixed controls include enough internal control areas to manage the maximum number of elements
and entries that can exist in the structure, given the maximum structure size and the range of possible
ratios of entries to elements, and an array of list headers to handle the maximum number of lists that
can exist in the structure.
You cannot increase the maximum size or the maximum number of lists without reallocating the
structure, so you must be careful to specify large enough values when the structure is first allocated.
However, if you specify a relatively large maximum size or number of lists, a large amount of storage is
preallocated for fixed controls, so the initial size of the structure needed to store a given amount of data
will be significantly larger than it would be with less generous allowance for expansion.
• Variable controls.
Variable controls are partitioned into storage areas for entry controls (one per entry) and for data
elements. You can adjust this partitioning dynamically by altering the ratio of entries to elements,
converting storage for one type to the other type. CICS automatically issues a request to alter the ratio
when one type of variable storage is running out but there is enough storage of the other type. You can
alter the total size of the storage for variable controls dynamically by changing the size of the structure.
This size must be within the range of sizes that are defined for the structure in the active coupling
facility resource management (CFRM) policy, which are set at the time that the structure is created.
You can change the structure size by using the system operator command SETXCF ALTER,SIZE.
Alternatively, the operating system can change the structure size, depending on the automatic alter
options that are specified in the CFRM policy when the structure is allocated.
In the CICS pool structures, each queue item, data table record, or named counter normally occupies
one entry in the structure, together with the appropriate number of data elements. CICS uses additional
entries for internal control purposes to maintain the index of currently defined queues or data tables, and

268 CICS TS for z/OS: Configuring CICS

 to track which lists are currently in use and which previously used lists are now free and available for
reuse. Even after all queues or data tables in a pool have been deleted, some entries in the control lists
might remain in use.
The amount of storage required for internal control information depends on the level of functionality and
performance of the coupling facility control code for the current coupling facility level (CFLEVEL). The
storage requirements can increase for a higher CFLEVEL.

Using the IBM CFSizer tool to calculate storage requirements

A good way to calculate storage requirements for the CICS pool structures is to use the web-based IBM
CFSizer tool. See CFSizer. This tool works as follows:
1. It prompts for parameters that describe the amount of information to be stored in the structure.
2. It converts this information to numbers of lists, entries, and elements.
3. It communicates with a coupling facility at a current CFLEVEL to determine the amount of storage
required to store the information with the specified amount of free space and room for expansion.
All structure sizes are rounded up to the next storage increment for the coupling facility level (CFLEVEL) at
allocation time. For example, sizes are rounded up to the nearest 1 MB for CFLEVEL 16.

Find out more

For information about the CPC support for different CFLEVELs and the function in each CFLEVEL, see CF
levels.
For more information about calculating storage requirements, see the following topics:
• “Storage calculations for temporary storage data sharing” on page 206
• “Storage calculations for coupling facility data tables” on page 222
• “Named counter list structure storage” on page 257

Managing the pool structure

It is important to watch out for signs that the pool structure is becoming full, as this might have a serious
impact on all the applications that are using the pool.

Monitoring pool structure usage levels

Use the DISPLAY POOLSTAT server command to display the current usage level of the pool structure.
The DISPLAY POOLSTAT command produces messages DFHXQ0432I, DFHF0432I or DFHNC0432I. The
most important information in these messages is the maximum percentage of lists, entries, and elements,
used during the current statistics interval. For the named counter server, message DFHNC0432I only
shows the number of entries because there is always one list and no elements.

Operator messages reporting on pool structure usage

Messages to the operator are issued when threshold levels are reached for the numbers of entries
or elements used. Further messages are issued if the pool becomes full. You can set up automated
operations processes to watch for these messages and alert your operators to the situation, or take
corrective action, if necessary.
For example, if you are using a temporary storage server, when the percentage of entries or elements in
use in a pool structure reaches a specified threshold, DFHXQ0422 or DFHXQ0423 is issued giving you the
actual usage percentage at the time; when the percentage of entries or elements in use drops below a
threshold, DFHXQ0420 or DFHXQ0421 is issued giving you the actual usage percentage at the time.
Note that the warning threshold is increased to the next higher level or decreased to the previous lower
level, depending on whether the usage is increasing or decreasing.

Chapter 6. Setting up CICS data sharing servers 269

 What to do if a pool structure is approaching full
You can use the MVS operator command SETXCF ALTER,START with an increased SIZE option, to expand
the structure, if the structure has not yet reached the maximum size that is defined in the CFRM policy.

Use of CFRM automatic ALTER to increase pool structure size

The coupling facility resource management (CFRM) policy can specify the keyword ALLOWAUTOALT(YES).
This allows the operating system to issue an ALTER command automatically when the structure is near
to becoming full, to increase its size or to adjust the ratio of elements to entries. The threshold at
which this happens is specified by the FULLTHRESHOLD keyword in the policy. The default threshold is
80%, which is the same as the default threshold at which the server itself issues an automatic ALTER
command to optimize the ratio of entries to elements. The server's automatic ALTER process is more
sophisticated, because it takes into account the peak usage of the structure within the current statistics
interval, rather than just the current usage. Therefore it is best to ensure that the server's automatic
ALTER process is triggered first, by making sure that the percentage values of the server's ENTRYWARN
and ELEMENTWARN parameters are at least 5 percent less than the percentage value of the CFRM
FULLTHRESHOLD keyword.

Using system-managed rebuild to increase pool structure size

If the structure has not many entries or elements left, but it has already reached its maximum size, you
can still use system-managed rebuild to expand it dynamically without closing down the servers, if all the
systems using the structure are at a level which supports this function.
First update the CFRM policy to increase the size to the required value, and then activate the updated
policy using SETXCF START,POLICY. After this, you can rebuild the structure. The rebuild allocates a new
instance of the structure that uses the updated policy, copies across the existing data, and then discards
the old instance.

Increasing the number of data lists

If the number of data lists specified via the MAXQUEUES or MAXTABLES server parameter is too small, an
attempt to allocate a new data list will fail with message DFHXQ0443 or message DFHCF0443.
There is no way to increase the number of lists without deleting and recreating the structure, which
necessitates closing down all of the servers temporarily. You cannot use system-managed rebuild to
increase the number of data lists because it copies this number from the existing structure.
You can preserve existing data by using the server program to unload it to a sequential file, and then using
SETXCF FORCE to delete the existing structure. You can then use the server program again to reload the
data, and allocate a new structure with the appropriate MAXQUEUES or MAXTABLES parameter.

Deleting or emptying the pool structure

If the pool structure is no longer required, or all of the data in the structure is to be discarded, you can
delete a pool by closing down all the servers for that pool, and then using the SETXCF FORCE command to
delete the structure.
If the server is subsequently started again for the same structure name, an empty structure will be
created using the information in the active CFRM policy and the server initialization parameters.

Server connection management

A client CICS region establishes a cross-memory connection to a server the first time that a request refers
to the pool for that server. A single connection is established to each server, regardless of the number of
tables, queues, or counters that are accessed in the pool.
For coupling facility data table and temporary storage queue servers, a multi-threaded asynchronous
connection is established. This connection allows requests to be overlapped up to a fixed maximum

270 CICS TS for z/OS: Configuring CICS

number of concurrent requests. Requests that exceed this maximum number are queued within the CICS
region until a request thread becomes available.
For named counters, requests are processed synchronously, so only one request can be active at a time
for a given client region TCB.
For information about managing failures in coupling facility connectivity, see the section about handling
coupling facility connectivity failures in z/OS MVS Setting Up a Sysplex.

Terminating server connections

Each connection has a client side and a server side. If either side is terminated separately, the connection
is no longer usable, although the other side might not be terminated until some time later.
For QUASIRENT applications, the connection is associated with the CICS quasi-reentrant (QR) TCB, and
so a connection normally remains active until CICS is closed down when the QR TCB is terminated. For
threadsafe applications, the connection can be associated with an open TCB and so will remain open until
the open TCB is terminated. A connection is closed automatically as part of the resource management
termination processing for a TCB. During resource management termination, the connection termination
routine on the client side issues a cross-memory call to the server to terminate the connection on the
server side as well.
If you want to close down a server after all the CICS regions that are using it have terminated, for example
when you are preparing to close down the system, first quiesce the server and then terminate it using the
server STOP command (or the equivalent MVS STOP command). Use of the STOP command prevents any
new CICS regions from connecting to the server and terminates the server as soon as all the CICS regions
that are using it have been terminated.
If you need to close down a server immediately, while CICS regions are still connected to it, use the
server CANCEL command, because the normal server STOP command (or the MVS STOP command) is not
effective until the connections are terminated. You can also use the MVS CANCEL command to terminate
the server, but this prevents the server from going through normal closedown processing.
Note that CICS cannot terminate the client side of the connection automatically. CICS has no way of
knowing that the server wants to close down, because although the connection allows CICS to make
cross-memory calls to the server, it does not provide any means for the server to notify CICS of
asynchronous events. Currently, CICS does not provide any means of terminating a connection on demand
except in the case of the named counter server CALL interface which provides a FINISH function for this
purpose, but this function is primarily for batch use.
If you terminate the server with CANCEL, the server side of each connection is terminated immediately,
but the client side is not affected. The next request from CICS to use the original connection fails
and CICS tries to establish a new connection instead. This succeeds if the server has been restarted.
However, CICS does not close the old connection explicitly, so when it eventually terminates, messages
are produced not only for the termination of any active connection, but also for the termination of any
previous connections to the same server.

Failed server connections

If CICS terminates abruptly, without going through the normal resource manager termination processing
for the quasi-reentrant TCB, for example because of a FORCE command or system completion code 40D,
an end-of-memory resource manager routine cleans up the client side of the connection.
Because this routine does not run in the CICS region itself, it cannot use the cross-memory connection
to notify the server. Therefore, if CICS terminates without carrying out the normal resource manager
termination processing for the quasi-reentrant TCB, the server side of the connection might remain active.
For coupling facility data tables this might cause problems because the server does not allow the original
CICS region to resynchronize after restart if its APPLID is already in use.
From time to time the server checks the client status for each connection, and cleans up the server side of
the connection if the client has gone away. This check is done once a minute, and it is also triggered each
time a new connection is to be established. Therefore, any connections which have failed are normally
cleaned up before the new connection attempts to resynchronize. Because the clean-up processing that

Chapter 6. Setting up CICS data sharing servers 271

 terminates the server side of a connection is asynchronous, and might take one or two seconds, the
clean-up processing might not be finished in time for the resynchronization from the original CICS region
to succeed immediately, but if the resynchronization does not succeed on the first attempt, it should
succeed when it is next retried.

Restarting a server
All three types of CICS data-sharing server (temporary storage, coupling facility data tables, and named
counters) support automatic restart using the services of the Automatic Restart Manager (ARM).
The servers also have the ability to wait during start-up, using an Event Notification Facility (ENF) exit, for
the coupling facility structure to become available if the initial connection attempt fails.
The server normally registers at start-up with ARM, so that it will be restarted automatically if it fails,
subject to any rules in the installation ARM policy. If ARM registration fails for any reason except for ARM
being unavailable, the server cannot be started. If ARM is unavailable, the server starts normally but has
to be restarted manually if it fails.
The servers recognize the ARM return code that indicates that the ARM couple data set has not been
formatted for the current MVS system, as being equivalent to ARM being unavailable.
A server does not start if registration fails with return code 8 or above.
When a server starts up, if it is unable to connect to its structure because of some environmental
error such as a structure failure, it automatically waits for the structure to become available, using the
Event Notification Facility (ENF) to watch for events relating to its structure. This wait occurs before the
cross-memory interface is enabled, so the server is not visible to client regions at this time and will
appear to be unavailable. While it is waiting, the server can be cancelled using the MVS CANCEL command
if it is no longer required.
If the server is running normally, but the coupling facility interface reports a loss of connectivity or a
structure failure, the server immediately terminates itself. This disconnects it from the coupling facility,
and terminates the server side of any current cross-memory connections from client regions. The server
will normally be restarted immediately by the ARM, but will continue to be unavailable to client regions
until the coupling facility structure is available again (possibly as a new empty instance of the structure).
An abrupt coupling facility failure such as a power failure may result in a loss of connectivity indication
even though the structure has failed, because the operating system cannot determine the state of the
structure in that case. This could prevent a new structure from being allocated until the operating system
can determine the status of the existing structure, for example after the failed coupling facility has been
successfully restarted. If it is certain that the old structure has been lost, but the system has not yet
recognized the fact, the operator may be able to save some time by issuing the SETXCF FORCE command
to delete the old structure, allowing the system to go ahead and create a new instance of the same
structure in a different coupling facility.
You can find more information about automatic restart of coupling facility servers in Automatic restart of
CICS data-sharing servers

CICS server support for system-managed processes

The three servers, temporary storage data sharing, coupling facility data tables, and named counters,
support system-managed processes for coupling facility list structures.
These system-managed processes are:
• “System-managed list structure rebuild” on page 273
• “System-managed list structure duplexing” on page 274

272 CICS TS for z/OS: Configuring CICS

System-managed list structure rebuild
System-managed rebuild allows z/OS to manage the moving of coupling facility structures used for shared
temporary storage, coupling facility data tables, and named counter server pools, without recycling the
CICS system using them.
Before this, you could move a structure by using server functions to UNLOAD to a sequential data set and
then RELOAD elsewhere from the data set, but the switch caused errors in CICS such that restart was
recommended, which in some situations was an unacceptable outage.
System-managed rebuild rebuilds the contents of a coupling facility list structure to a new location. The
only impact when rebuild occurs is that requests are temporarily suspended within MVS during the few
seconds or tens of seconds needed for rebuild processing. The system-managed rebuild process rebuilds
only from one structure to another. Therefore, it is not applicable when the original structure has been
lost or damaged. It is very useful for planned maintenance and is used for recovery purposes where
connectivity to the structure has been lost from one or more systems but at least one system still has
access to the original structure. For a loss of connectivity, the system does not initiate a system-managed
rebuild automatically, regardless of connectivity options in the policy, but a rebuild can be requested
using an operator command.
Any pending requests are made to wait during system-managed rebuild. Apart from the time delay,
the application should not notice anything unusual when a system-managed rebuild occurs. For more
information about system-managed rebuild, see z/OS MVS Programming: Sysplex Services Guide.
CICS supports the MVS system-managed rebuild facility, provided that the SUSPEND=FAIL option of the
IXLCONN macro is available. The CICS servers detect automatically whether this support is available.
• If SUSPEND=FAIL support is available, a server connects to its list structure specifying the
ALLOWAUTO=YES option of the IXLCONN macro.
• If SUSPEND=FAIL is not available, a server connects with ALLOWAUTO=NO, and the system-managed
rebuild facility is not used.
When a server is active, you can use the MVS operator DISPLAY XCF,STR command to display the
connection details in message IXC360I.
For example, to look at the connection details for structure DFHXQLS_PRODTSQ1, use the following
command:

Display XCF,STR,STRNAME=DFHXQLS_PRODTSQ1,CONNAME=ALL

To look at the connection details for coupling facility data tables structure DFHCFLS_DTPOOL1, use the
following command:

Display XCF,STR,STRNAME=DFHCFLS_DTPOOL1,CONNAME=ALL

To look at the connection details for the named counter structure DFHNCLS_PRODNC1, use the following
command:

Display XCF,STR,STRNAME=DFHNCLS_PRODNC1,CONNAME=ALL

For any of these start commands, the resulting IXC360I message output contains the following lines
(in the CONNECTION information section), indicating that system-managed rebuild is enabled for the
connection:

ALLOW AUTO : YES

SUSPEND : FAIL

Chapter 6. Setting up CICS data sharing servers 273

 TS data sharing and CFDT servers
For temporary storage data sharing and coupling facility data tables, any pending requests are made
to wait during system-managed rebuild. Apart from the time delay, the application should not notice
anything unusual when a system-managed rebuild occurs.

Timeout considerations
The wait-time for a system-managed rebuild is expected to vary from a few seconds for a small structure
to a few tens of seconds for a large structure. This means that transactions can be purged by DTIMOUT, or
by an operator command, while waiting on the rebuild.
To minimize the risk of unnecessary problems caused by timeouts during syncpoint processing, the CICS
wait exit for CFDT unit of work control functions specify that the wait is not purgeable.

Named counter server

Requests issued using the CALL interface to the named counter server are not made to wait during
rebuild, but instead the server returns a new environment error return code with value 311, under the
NC_ENVIRONMENT_ERROR category.
An EXEC interface request during rebuild waits using a timer wait and retry loop which can be interrupted
by an operator purge command but is not eligible for DTIMOUT, since the wait is definitely known not to
be caused by any form of deadlock.
The named counter client region interface module DFHNCIF normally resides in a linklist library and
should be at the highest level of CICS TS in use within a z/OS image.

System-managed list structure duplexing

System-managed coupling facility duplexing provides a general-purpose, hardware-assisted mechanism
for duplexing coupling facility structure data.
It is a robust mechanism that provides recovery from failures such as loss of a single structure or coupling
facility, or from loss of connectivity, by a rapid switch to the other structure in a duplex pair.
Unlike system-managed rebuild, which can rebuild only from one structure to another, and is not
applicable when the original structure has been lost or damaged, system-managed duplexing creates
and maintains a duplexed copy of a structure in advance of any failure. It is largely transparent to the
users of the structure, and is available for both planned and unplanned outages of a coupling facility or
structure. Before duplexing, coupling facility data tables and temporary data sharing structures contained
mostly scratch-pad information that was not critical to recover. With duplexing, you can use the coupling
facilities to store more critical information.
Transactions that are accessing a duplexed structure might experience delays, which could result in the
DTIMOUT threshold being reached, when:
• A structure is quiesced by MVS while duplexing is being established.
• A structure is quiesced as a result of an operator command to stop or start duplexing.
• A structure is switched to the secondary structure or back to the primary structure.
A newly-started data sharing server is not allowed to connect to a structure during any phase of a
duplexing rebuild until the duplex established phase is reached.
System-managed duplexing is built on the system-managed rebuild function. You also need to specify
the DUPLEX option, in the CFRM policy information for the structure, as either DUPLEX(ENABLED) or
DUPLEX(ALLOWED). If you specify DUPLEX(ENABLED), MVS will initiate and attempt to maintain a user-
managed duplexing operation for the structure. If you specify DUPLEX(ALLOWED), an operator can start
duplexing, using the SETXCF START,REBUILD,DUPLEX command. You also need to ensure that coupling
facilities that are taking part in duplexing operations communicate with one another through a peer link.
For more information about system-managed duplexing, see z/OS MVS Programming: Sysplex Services
Guide and z/OS MVS Setting Up a Sysplex.

274 CICS TS for z/OS: Configuring CICS

Chapter 7. Defining resources
After you have installed CICS, you must define and install all the resources that your CICS regions require
to run user transactions.
For a list of resources, see CICS resources: listing, syntax, and attributes.
To know about how you can define CICS resources, see How you can define CICS resources.
If you want to use the Resource definition online (RDO) transaction CEDA to define resources to your CICS
system, see CEDA - resource definition online for details.

Defining resources with DFHCSDUP

The CSD update batch utility program DFHCSDUP is an offline utility program that you can use to
define CICS resources. See How you can define CICS resources for an introduction to DFHCSDUP and
a comparison with alternative methods of resource definition. You can use DFHCSDUP to read from and
write to a CICS system definition file (CSD), either while CICS is running or while it is inactive.
Restriction: DFHCSDUP opens the CSD in non-RLS mode, even when you request RLS access on your
JCL. This means that, if you access the CSD from CICS in RLS mode, it cannot be open when you run
DFHCSDUP. The reason for the restriction is that DFHCSDUP does not have the capabilities that are
needed in order to open a recoverable file in RLS mode. The restriction also applies, however, if your CSD
is nonrecoverable.

What you can do by using DFHCSDUP commands

Resource management utility DFHCSDUP commands lists the available commands. You can use
DFHCSDUP to perform the following tasks:
• Add a group to the end of a named list in a CSD file (ADD command)
• Alter attributes of an existing resource definition. on the CSD (ALTER command)
• Append a group list from one CSD file to a group list in another, or in the same, CSD file (APPEND
command)
• Copy all of the resource definitions in one group to another group in the same, or in a different, CSD file
(COPY command)
• Copy a single resource definition from one group to another group (COPY command)
• Define a single resource, or a group of resources, on the CSD (DEFINE command)
• Delete from the CSD a single resource definition, all of the resource definitions in a group, or all of the
group names in a list (DELETE command)
• Extract data from the CSD and pass it to a user program for processing (EXTRACT command)
• Initialize a new CSD file, and add to it the CICS-supplied resource definitions (INITIALIZE command)
• List selected resource definitions, groups, and lists (LIST command)
• Process an APAR—that is, apply maintenance for a specific APAR to the CSD (PROCESS command)
• Remove a single group from a list on the CSD file (REMOVE command)
• Scan all IBM-supplied and user-defined groups for a resource (SCAN command)
• Service a CSD file when necessary (SERVICE command)
• Upgrade the CICS-supplied resource definitions in a primary CSD file for a new release of CICS
(UPGRADE command)
• Define resources using a set of user-defined default values (USERDEFINE command)
• Verify a CSD file by removing internal locks on groups and lists (VERIFY command)

© Copyright IBM Corp. 1974, 2022 275

 How to invoke DFHCSDUP
You can invoke DFHCSDUP in two ways:
• As a batch program
You can edit and use this sample job to invoke DFHCSDUP as a batch program.
• From a user program running either in batch mode or in a TSO environment
For details, see Invoking DFHCSDUP from a user program.
You can also write your own programs that modify or extend DFHCSDUP. See User programs for the
system definition utility program (DFHCSDUP).

Error handling
The reaction of DFHCSDUP to an error (with return code 8 or greater) depends on the nature of the error
and on how DFHCSDUP is invoked.
As a batch program
If the error occurs during connection of the CSD, no subsequent commands are completed. If the
error occurs elsewhere, no subsequent commands are executed other than LIST commands. The
put-message-exit routine is not applicable if DFHCSDUP runs as a batch program.
From a user program
DFHCSDUP exits can be used to control error processing. See User programs for the system definition
utility program (DFHCSDUP). If you provide a put-message-exit routine for DFHCSDUP, it is invoked
whenever a message is issued. If an error is detected while DFHCSDUP is receiving commands from a
get-command exit, all subsequent commands are processed if possible.

Security for DFHCSDUP

DFHCSDUP requires batch access to the CSD. Ensure that only authorized users are allowed to update
the CSDs. Restrict the access list on the CSD data set profile to the CICS region user IDs and other
authorized users only. For more information, see Protecting data sets in z/OS Security Server RACF
Security Administrator's Guide.

Automating the process of defining CICS application resources with CICS

Transaction Server resource builder
CICS Transaction Server resource builder is a DevOps utility, complementary to the CSD update batch
utility program DFHCSDUP, that provides a way to automate the creation and maintenance of CICS
application resource definitions by using a configuration-as-code approach. With CICS resource builder,
system programmers can create resource models in YAML that enforce best practices and organization
standards, for application developers to use in their IDEs to create valid, compliant application resource
definitions, while application developers can enjoy a guided and controlled experience for defining CICS
resources in which they can have the confidence to be standards-compliant and pre-approved. This
approach means that CICS application resources are stored with the application code.

Overview of automated resource definition workflow

Based on the resource model schema supplied by CICS resource builder, system programmers create
a resource model in YAML that describes which resources and attributes developers are allowed to
specify and how to specify them (for example, by enforcing naming conventions on particular attributes).
System programmers provide application developers with these resource standards by generating a
resource definition schema from the resource models, which is used by developers in their IDEs to create
valid application resource definitions in YAML. Resource model artifacts can be stored in source control
management (SCM) for version control and automation within, for example, a DevOps pipeline.
Application programmers configure their IDEs to use the resource definition schema, and then create or
update application resource definitions in YAML, based on the schema.

276 CICS TS for z/OS: Configuring CICS

CICS resource builder builds the application resource definitions that are in YAML into a DFHCSDUP
commands file that can then be consumed by the CSD update batch utility program DFHCSDUP, which
runs to update the CICS system definitions data set (CSD) for a CICS region.
Figure 54 on page 277 illustrates the use of CICS resource builder for automating the process of defining
application resources in a DevOps pipeline.

System CICS Application

programmer’s Associate resource builder Generate Associate developer’s IDE
IDE
Resource Resource
model definition
schema schema

Create
Create

Resource
model YAML Resource
definition YAML

Build
z/OS LPAR

System programmer’s IDE Submit Update CSD

CICS resource builder DFHCSDUP

DFHCSDUP CICS region
commands file
Application developer’s IDE

Figure 54. Automated application resource definition workflow

In addition, CICS resource builder provides an import capability that allows system programmers to
identify the standards used for resource definitions in an existing CSD and migrate these standards into
CICS resource builder resource models and resource definitions. This capability also makes it possible
to apply existing resource definition standards to additional applications. For simplicity, this capability is
omitted in Figure 54 on page 277.
For more information about CICS resource builder, see the CICS resource builder product documentation.

Supported resource types

CICS resource builder supports the following resource types:

A-J J-P S-W

ATOMSERVICE JVMSERVER SESSIONS

BUNDLE LIBRARY TCPIPSERVICE
CONNECTION LSRPOOL TDQUEUE
DB2CONN MAPSET TERMINAL
DB2ENTRY MQCONN TRANCLASS
DB2TRAN MQMONITOR TRANSACTION
DOCTEMPLATE PARTITIONSET TSMODEL
DUMPCODE PARTNER TYPETERM
ENQMODEL PIPELINE URIMAP
FILE PROCESSTYPE WEBSERVICE
IPCONN PROFILE
JOURNALMODEL PROGRAM

Chapter 7. Defining resources 277

Sharing the CSD between CICS Transaction Server for z/OS, Version 6
Release 1 and earlier releases
You can share the CICS system definition file (CSD) between different CICS releases to enable you to
share common resource definitions by using the appropriate compatibility groups. See CSD compatibility
between different CICS releases in Upgrading. There are changes to resource definition attributes
between releases of CICS (see Changes to resource definitions) so, when you upgrade CICS TS, you must
upgrade the CSD. If the CSD is shared, you must update it from the higher level region - CICS Transaction
Server for z/OS, Version 6 Release 1.

Procedure
• Use the ALTER command on definitions that specify obsolete attributes.
This does not cause the loss of these attributes in CICS Transaction Server for z/OS, Version 6 Release
1, so you can safely update resource definitions from a CICS TS for z/OS, Version 6.1 region.
• If you are sharing the CSD between a CICS TS for z/OS, Version 6.1 region and a region at an earlier
release of CICS, you can use the CICS TS for z/OS, Version 6.1 CSD update batch utility program
DFHCSDUP to update resources that specify obsolete attributes.
a) Specify if you want to use the compatibility option. Use the PARM parameter on the EXEC
PGM=DFHCSDUP statement, using the option COMPAT.
The default is NOCOMPAT, which means that you cannot update obsolete attributes. (See Sample
job for invoking DFHCSDUP as a batch program.)
b) You cannot use the DFHCSDUP EXTRACT command in this release when the COMPAT option is
specified.

Sample job for invoking DFHCSDUP as a batch program

An example job is provided for you to invoke DFHCSDUP as a batch program. You edit this job to meet
your requirements.

About this task

This is the sample code that is provided:

//CSDJOB JOB accounting info,name,MSGLEVEL=1

//STEP1 EXEC PGM=DFHCSDUP,REGION=0M,
// PARM='CSD(READWRITE),PAGESIZE(60),NOCOMPAT'
//STEPLIB DD DSN=CICSTS61.CICS.SDFHLOAD,DISP=SHR
//DFHCSD DD DISP=SHR,DSN=CICSTS61.CICS.DFHCSD
//SECNDCSD DD UNIT=SYSDA,DISP=SHR,DSN=CICSTS61.CICS.SECNDCSD
//indd DD UNIT=SYSDA,DISP=SHR,DSN=extract.input.dataset
//outdd DD UNIT=SYSDA,DISP=SHR,DSN=extract.output.dataset
//* or
//outdd DD SYSOUT=A
//SYSPRINT DD SYSOUT=A
//SYSIN DD *
⋮
DFHCSDUP commands
/*
//

Procedure
Customize the sample job based on your use case as follows:
1. Change the EXEC statement to specify a suitable REGION size and a PARM parameter:
Use the PARM parameter to specify any of the following options:
UPPERCASE
Specifies that you want all output from DFHCSDUP to be in uppercase. If you want all output to be
in mixed case (the default), do not code this option.

278 CICS TS for z/OS: Configuring CICS

 CSD({READWRITE|READONLY})
Specifies whether you want read and write access or read-only access to the CSD from this batch
job. The default value is READWRITE.
PAGESIZE(nnnn)
Specifies the number of lines per page on output listings. Values for nnnn are 4 - 9999. The default
value is 60.
NOCOMPAT|COMPAT
Specifies whether the DFHCSDUP utility program is to run in compatibility mode (that is, whether
it can update definitions that are obsolete in CICS Transaction Server for z/OS, Version 6 Release
1). The default is NOCOMPAT, which means that you cannot update obsolete attributes. For more
information about this option, see Sharing the CSD between versions of CICS Transaction Server
for z/OS.
2. If you specify the FROMCSD parameter on an APPEND, COPY, or SERVICE command, add a SECNDCSD
DD statement to specify the secondary CSD.
The ddname for this DD statement is the name that you specify on the FROMCSD parameter. The
secondary CSD must be a different data set from the primary; you must not define primary and
secondary DD statements that reference the same data set.
3. If you specify the EXTRACT command, you might need to take one or both of the following actions:
a) Concatenate with STEPLIB the libraries that contain your USERPROGRAM programs.
b) Include a DD statement for any input data set that is defined in your user program. This statement
is represented in the figure with the ddname indd.
For example, the supplied user program, DFH$CRFA, needs a DD statement with a ddname of
CRFINPT.
The input file that is specified by CRFINPT is needed by the user programs DFH$CRFx (where x=A
for Assembler or x=P for PL/I) and DFH0CRFC (for COBOL) to supply the list of resource types or
attributes for which you want a cross-reference listing. You can specify (in uppercase) any resource
type that is known to CEDA, one resource type per line (starting in column 1). For example, your
CRFINPT file might contain the following resource types (one per line) to be cross referenced:

PROGRAM
TRANSACTION
TYPETERM
XTPNAME
DSNAME

For programming information about the use of the CRFINPT file by the programs DFH$CRFx or
DFH0CRFC (for COBOL), see The sample EXTRACT programs.
4. If you specify the EXTRACT command, include the DD statements for any data sets that receive output
from your extract program. The sample shows two options: to write the data set to disk or to SYSOUT.
The ddname is whatever ddname you define in the user program. The sample uses the ddname outdd.
The sample programs that are supplied with CICS need DD statements for the following ddnames:

Table 33. DD statements for the supplied sample programs

program name ddname example DD statement
CRFOUT //CRFOUT DD SYSOUT=A
DFH$CRFx or
DFH0CRFC (COBOL)

FOROUT //FOROUT DD SYSOUT=output.dataset

DFH$FORx or
DFH0FORC (COBOL)

DFH0CBDC CBDOUT //CBDOUT DD SYSOUT=A

SYSABOUT //SYSABOUT DD SYSOUT=A

Chapter 7. Defining resources 279

 5. The output data sets in these examples are opened and closed for each EXTRACT command that is
specified in SYSIN.
• If you are writing the output to a sequential disk data set, specify DISP=MOD to ensure that data is
not overwritten by successive EXTRACT commands.
• Alternatively, provided you do not specify SYSOUT on the DD statement, you can change the OPEN
statement in the program (for example, in the COBOL versions, to OPEN EXTEND).
For programming information about the user programs that are supplied with CICS, see The sample
EXTRACT programs.
6. In the SYSIN data set, you can code commands and keywords by using abbreviations and mixed case,
as given in the syntax box in the description of each command. If you prefer, you can use a data set or
a partitioned data set member for your commands, rather than coding them in the input stream.
Keyword values can be longer than one line, if you use the continuation character (an asterisk) at the
end of a line (in column 72). Subsequent lines start in column 1.
For example, you can use this facility to specify XTPNAME values of up to 128 hexadecimal characters.
If you enter an ambiguous command or keyword, the DFHCSDUP program issues a message to
indicate the ambiguity.

Autoinstall
Autoinstall is a method of creating and installing CICS resources dynamically as they are required. You
can use autoinstall for SNA LUs, MVS consoles, APPC connections, IPIC connections, programs, map sets,
partition sets, and journals. With autoinstall, you do not have to define and install every resource that
you intend to use. Instead, CICS dynamically creates and installs a definition for you, based on a model
definition that you provide, when a resource is requested.
You must provide at least one model definition for each type of resource to be autoinstalled. You can have
more than one model definition, depending on what properties you want the autoinstalled resources to
have. You set up model definitions using either RDO or DFHCSDUP.
You can use an autoinstall control program to control the way autoinstall operates in your CICS region.
This program is responsible for, among other things, providing the model name or names to CICS and,
providing z/OS Communications Server information to CICS for autoinstall for terminals, and so on. CICS
provides several autoinstall control programs (listed below). You can use the CICS-supplied ones or you
can customize them to suit your installation.
• “The autoinstall control program for connections” on page 295
• The autoinstall control program for VTAM terminals
• “The autoinstall control program for MVS consoles” on page 292
• The autoinstall control program for programs, map sets, and partition sets

Autoinstalling z/OS Communications Server terminals

Deciding which terminals to autoinstall

This section will help you to decide which terminal devices to autoinstall.

Automatic transaction initiation

If a BMS ROUTE message is sent to a terminal that has a TCT entry but is not logged on, CICS saves the
message for subsequent delivery.
In addition, if the TCT entry so specifies, CICS attempts to acquire the terminal and log it on for that
purpose. CICS attempts to satisfy other ATI requests (EXEC CICS START or a transient data trigger level)
in the same way.

280 CICS TS for z/OS: Configuring CICS

The use of autoinstall for printers is severely limited because almost all transactions for printers are
initiated automatically. It is possible to autoinstall printers, however, if you arrange for them to be logged
on. Entering VARY NET,...,LOGON as a console command does this.
For an autoinstalled terminal, a TCT entry may be available even when the terminal is logged off. This
happens only if the terminal has been logged on earlier in the CICS run, and depends on the TYPETERM
definition, the system initialization parameters, and the SNT entry for the last user of the terminal. For
details, see “Automatic sign-off, logoff, and TCTTE deletion” on page 288. If a TCT entry exists, an
autoinstalled terminal can accept an ATI request just like an individually defined terminal.
If you choose autoinstall for terminals that might receive ATI requests, make use of the AUTOCONNECT
attribute on the TYPETERM definition for your models. AUTOCONNECT(YES) means that the terminal is
logged on to CICS automatically at an emergency restart (see Figure 58 on page 290), by CICS requesting
a z/OS Communications Server SIMLOGON (simulated logon). (Because this requires a TCT entry, it does
not happen at cold or warm start.)
You may find that setting up a printer-owning region is the best approach, especially if you have
distributed printing with many small printers.
Whether or not you autoinstall your printers, you can associate a printer and an alternate printer with
a display device. The association is made when the display device is autoinstalled. Definitions for these
printers need not have been installed at the time the display device is autoinstalled, but they must exist at
the time of use.

The TCT user area (TCTUA)

The TCT user area is an optional extension to the TCT entry.
The TCTUA is available for application use (the rest of the TCT entry belongs to CICS). It has traditionally
been used for two purposes:
• To pass data from one transaction of a pseudo-conversational sequence to the next.
• To maintain user profile information and statistics during a terminal session. (This is not necessarily a
z/OS Communications Server session, but a period of access to a particular application, as defined by
the application.)
The first use has gradually been supplanted by COMMAREA and other CICS facilities, but the second
is still fairly common. An application may store statistics, such as teller totals, in the TCTUA, which
is initialized by a PLTPI program at the beginning of execution and retrieved by a PLTSD program at
termination (shutdown). Autoinstall does not provide the ability to save this information between logoff
and logon, because the TCTUA does not exist then. In addition, the TCTUA is not available to PLTPI and
PLTSD programs at system initialization and termination. A new technique must be devised to allow the
initialization of TCTUA and user data when the user logs on or logs off.
As noted earlier, the autoinstall process creates the TCT entry (including the TCTUA) before the first
transaction is executed at the terminal, but after the autoinstall control program has done its initial
execution. Thus you cannot access the TCTUA in the autoinstall control program and so any TCTUA
initialization must be done later. You could write your own 'good morning' transaction to do this, or use the
first transaction of the application in question.
Furthermore, the autoinstall control program does not have access to the TCTUA at logoff either,
because CICS deletes the TCT entry (including the TCTUA) before invoking this program. Therefore, if an
application needs to capture statistics or other information from such a TCTUA, it must get access before
CICS does this. The place to do this is in the node error program (NEP), the user-written component of
the terminal error processing routines, because CICS drives the NEP exit before it deletes the TCT entry.

The terminal list table (TLT)

A terminal list table is a list of terminals, defined either by four-character CICS terminal names or by
three-character CICS operator identifiers.
It is used principally for routing messages to multiple destinations and for giving limited operational
control of a group of terminals to a supervisor. Both of these uses must be rethought in an autoinstall
environment. If a TLT lists terminals that do not have TCT entries, because they are not logged on at the

Chapter 7. Defining resources 281

 time the TLT is used, supervisory operations against those terminals fails. For example, you cannot put a
nonexistent TCT entry into or out of service.
Similarly, message routing works differently for individually defined terminals and for autoinstalled
terminals. When a message is sent to an individually defined terminal that is not logged on, the message
is saved in temporary storage, and delivered when the terminal logs on. When a message is sent to a
terminal that is not defined because it is an autoinstalled terminal and is not logged on, CICS gives a route
fail condition, indicating that it knows nothing of that terminal. Indeed, if terminal names are generated
and assigned randomly, as they may be in an autoinstall environment, the whole TLT mechanism breaks
down.

Transaction routing
An autoinstall request to a local system overrides an autoinstall request for the same definition shipped
from a different system.
If transaction routing can occur between two CICS systems, any terminal that can log on to both should
be installed in both in the same way. Such a terminal should be:
• Autoinstalled in both systems, or
• Defined to each system at initialization

Autoinstall and output-only devices

Most of the benefits of autoinstall apply more to display devices than to printers.
Displays initiate transactions in CICS; usually, any transaction output is returned to the input terminal, so
that neither CICS nor the application needs to know any other NETNAME than that of the display, which
identifies itself in the process of logging on.
On the other hand, when output is directed to output-only printers, either CICS or the application must
know what NETNAME to use, and this implies that some knowledge of the network is maintained
somewhere. The primary and alternate printer names in an individually-defined TCT entry constitute
this kind of information, as maintained by CICS. In the case of autoinstalled terminals, corresponding
information—if it is required—must be maintained in tables or files, embedded in the application,
supplied by z/OS Communications Server ASLTAB and ASLENT model terminal support (MTS), or supplied
dynamically by the user.

Autoinstall and z/OS Communications Server

This topic explains how autoinstall works with z/OS Communications Server. It is intended to help you
understand the processing that takes place when you use autoinstall.

The process of logging on to CICS using autoinstall

(The process is illustrated in Figure 55 on page 284 and Figure 56 on page 285.) CICS supports the
model terminal support (MTS) function of z/OS Communications Server. Using MTS, you can define the
model name, the printer (PRINTER), and the alternate printer (ALTPRINTER) for each terminal in a z/OS
Communications Server table. CICS captures this information as part of autoinstall processing at logon,
and uses it to create a TCTTE for the terminal. If you are using MTS, you must use a version of DFHZATDX
that is suitable for use on CICS Transaction Server for z/OS. See Writing a program to control autoinstall of
LUs for programming information about the user-replaceable autoinstall program.
1. z/OS Communications Server receives your request, determines that you want to use CICS, and
passes your request to CICS.
2. CICS extracts the NETNAME name of your terminal from the logon data. CICS searches the TCT for an
entry with the same NETNAME.
3. If it finds such an entry, CICS issues an OPNDST to z/OS Communications Server to establish a
session between CICS and the terminal. This is the normal CICS logon process.
4. If it fails to find a matching entry, CICS checks the system initialization parameters that were
specified in the SIT, or reset by using CEMT, to check whether it can allow an autoinstall.

282 CICS TS for z/OS: Configuring CICS

 5. If the system initialization parameters allow an autoinstall, CICS checks the terminal data that is
passed by z/OS Communications Server, to check whether the terminal is eligible for autoinstall.
6. If the terminal is eligible, CICS examines the bind image to see whether it carries sufficient
information.
7. If the z/OS Communications Server bind image data proves sufficient, CICS searches the autoinstall
model table (AMT) in sorted ascending order, and autoinstalls the terminal in one of the following
ways:
• If z/OS Communications Server supplies CICS with a valid model name, CICS passes this
name to the autoinstall control program. (If the logon request comes to CICS through z/OS
Communications Server, and if you supply z/OS Communications Server with names of model
terminals, CICS can obtain the name of the model terminal from the logon data.)
• If z/OS Communications Server does not supply CICS with a valid model name, CICS searches the
AMT for suitable autoinstall models and passes them to an autoinstall control program, together
with z/OS Communications Server logon data. If z/OS Communications Server supplies CICS with
an invalid model name, message DFHZC6936 results.
8. The autoinstall control program (either the CICS-supplied program or one written by you) selects one
of the models and provides the rest of the information necessary to complete a TCT entry for the
terminal.
9. When the autoinstall control program returns control, CICS builds a TCT entry by using the autoinstall
model, the data returned by the autoinstall control program, and the z/OS Communications Server
logon data for the terminal. CICS then adds the new entry to the TCT and issues an OPNDST to z/OS
Communications Server to establish a session between CICS and the terminal.
10. If the TYPETERM definition so specifies, CICS uses the QUERY function to find out about some of the
features of the terminal. (These features are listed in TYPETERM resources.)

Chapter 7. Defining resources 283

 VTAM receives logon
request from terminal and
passes it to CICS

CICS extracts NETNAME

from LOGON data

Is
there an Yes
entry for this
NETNAME?

No

Is Is
Is terminal VTAM
Yes Yes Yes
autoinstall eligible for information
operative? autoinstall? enough?

No

AUTOINSTALL

CICS asks VTAM to

establish a terminal session

VTAM establishes a CICS

Logon is rejected
terminal session

Figure 55. The process of logging on to CICS using autoinstall

284 CICS TS for z/OS: Configuring CICS

 Start

Has
VTAM
Yes
supplied a
valid model
name?

No

CICS finds eligible CICS uses MTS

AUTIN STMODELS model name

Autoinstall program
Autoinstall program CICS creates a
chooses one Finish
assigns a terminal name terminal entry
AUTIN STMODEL name

Figure 56. How CICS autoinstalls a terminal

What happens when the user logs off

1. CICS issues a CLSDST to ask the z/OS Communications Server to end the session.
2. CICS attempts to delete the TCT entry after a delay specified in the AILDELAY system initialization
parameter.
The TCT entry cannot be deleted if there is a lock effective at the time. For instance, CEMT INQUIRE
TERMINAL or an outstanding ATI request locks the TCT entry.
3. CICS gives control to the autoinstall control program in case it has any further processing to do; for
example, to free the TERMINAL name it gave to the terminal.
If the TYPETERM definition of the terminal specifies SIGNOFF(LOGOFF) and the RACF segment specifies
timeout, expiry of the timeout period causes the terminal to be logged off and the user to be signed off.
After this automatic logoff, the delay period commences, leading to deletion of the TCT entry unless the
terminal logs on again before the period ends. For details, see “Automatic sign-off, logoff, and TCTTE
deletion” on page 288.

Implementing z/OS Communications Server autoinstall

You need to perform a number of steps to set up autoinstall for your z/OS Communications Server
terminals.

Procedure
1. Determine whether your terminals are eligible for autoinstall.
The following terminals can be autoinstalled:
• z/OS Communications Server locally attached 3270 terminals (non-SNA), both displays and printers
• z/OS Communications Server logical unit type 0 terminals
• z/OS Communications Server logical unit type 1 terminals, including SCS printers
• z/OS Communications Server logical unit type 2 terminals

Chapter 7. Defining resources 285

 • z/OS Communications Server logical unit type 3 terminals
• z/OS Communications Server logical unit type 4 terminals
• z/OS Communications Server logical unit type 6.2 single-session terminals
• TLX or TWX terminals using NTO
The following terminals cannot be autoinstalled:
• Pipeline terminals
• Automatic teller machines (3614 and 3624)
• Non-z/OS Communications Server resources
• z/OS Communications Server logical unit type 6.1 ISC and MRO sessions
2. Decide whether you can benefit from using autoinstall.
You are likely to benefit from autoinstall if your system has:
• A significant number of z/OS Communications Server terminals
• Frequent changes to your network
• Many z/OS Communications Server terminals logged off much of the time
• Many z/OS Communications Server terminals using other applications much of the time
• Many z/OS Communications Server terminals that need access to multiple, but unconnected, CICS
systems
Autoinstall might be less beneficial if you have:
• A small, static network
• Many terminals more or less permanently logged on to one CICS system
• Many terminals logging on and off frequently
• Many terminals logging on and off at the same time
3. Decide which devices to autoinstall.
This decision depends on how you use your z/OS Communications Server terminals. For example,
a terminal that is logged on all the time can be autoinstalled, but you might choose to define it
individually.
An autoinstall logon is slower than a logon to a terminal individually defined to CICS, so if you switch
continually between applications and have to log on to CICS frequently, you may require individual
definitions for some terminals.
You should also consider your use of automatic transaction initiation (ATI), terminal list tables (TLTs),
and the intercommunication methods in use in your installation. See “Deciding which terminals to
autoinstall” on page 280.
4. Create your TYPETERM and model TERMINAL definitions.
CICS supplies some TERMINAL and TYPETERM definitions; these are listed in TYPETERM definitions in
group DFHTYPE and Model TERMINAL definitions in group DFHTERM. You can use these definitions if
they are suitable; if not, create your own using CEDA or DFHCSDUP.
Define an autoinstall model for each different kind of terminal to be autoinstalled. Try to keep the
number of definitions to a minimum, so that the autoinstall control program can be as simple as
possible.
When you create your definitions, consider whether you want to use the QUERY structured field (see
TYPETERM attributes). It can help the autoinstall control program to choose which model on which to
base a definition, and so speed up the autoinstall process.
5. Redefine DFHZCQ.
For every region using autoinstall, redefine DFHZCQ to be RESIDENT(YES). (DFHZCQ is in the CICS-
supplied group DFHSPI). See Defining programs as resident, nonresident, or transient for guidance on
why you should consider making programs resident.

286 CICS TS for z/OS: Configuring CICS

6. Ensure that your z/OS Communications Server LOGMODE table entries are correct.
“Autoinstall and z/OS Communications Server” on page 282 explains the relationship between CICS
autoinstall and z/OS Communications Server. For programming information, including a list of z/OS
Communications Server LOGMODE table entries, see Coding entries in the VTAM LOGON mode table.
7. Design and write an autoinstall control program.
The terminal autoinstall control program is invoked by CICS every time there is a valid request for a
TCT entry to be autoinstalled, and every time an autoinstalled TCT entry is deleted.
For programming information about the autoinstall control program, see Writing a program to control
autoinstall of LUs.
Before beginning your program, look at the CICS-supplied autoinstall control program DFHZATDX in
group DFHSPI to see if it is suitable for what you want to do with autoinstall.
8. Enable terminal autoinstall.
You can enable autoinstall for terminals either by specifying suitable system initialization parameters,
or by using the EXEC CICS or CEMT SET and INQUIRE SYSTEM commands.
Five system initialization parameters relate to terminal autoinstall:
AIEXIT
specifies the name of the autoinstall program to be used. It defaults to DFHZATDX, the name of the
IBM-supplied autoinstall control program.
AIQMAX
specifies the maximum number of terminals that can be queued concurrently for autoinstall. When
this limit is reached, CICS requests z/OS Communications Server to stop passing LOGON and BIND
requests to CICS until CICS has processed one more autoinstall request.
The purpose of the limit is to protect the system from uncontrolled consumption of operating
system storage by the autoinstall process, as a result of some other abnormal event. Normally, in
the process of autoinstall, the principal consumer of CICS storage is the autoinstall task (CATA)
itself. The amount of CICS storage consumed by the autoinstall process during normal operation
can therefore be controlled by creating an appropriate TRANCLASS definition to limit the number
of autoinstall tasks that can exist concurrently.
AILDELAY
specifies the time interval, expressed as hours, minutes, and seconds (hhmmss), which elapses
after an autoinstall terminal logs off before its TCTTE is deleted. The default value is 0, indicating
that TCTTEs are deleted at logoff time and at warm shutdown as CLSDST is issued for the
autoinstall terminals still in session. Specifying an AILDELAY interval permits the TCTTE to be
reused should the terminal log back on before the interval has expired.
AIRDELAY
specifies the time interval, expressed as hours, minutes, and seconds (hhmmss), which elapses
after emergency restart before terminal entries are deleted if they are not in session. The default
value is 700, indicating a restart delay of 7 minutes.
GRPLIST
specifies the list or lists containing the group or groups of autoinstall models created.
For information on how to specify these system initialization parameters, see Specifying CICS system
initialization parameters.
Three options relate to terminal autoinstall on the INQUIRE and SET AUTOINSTALL command:
CUR(value)
specifies the number of autoinstall logon requests that are currently being processed.
MAXREQS(value)
specifies the largest number of autoinstall requests that are allowed to queue at one time, in the
range 0-999.

Chapter 7. Defining resources 287

 You can prevent more terminals from logging on through autoinstall by setting this value to 0.
This allows autoinstalled entries for terminals currently logged on to be deleted by the autoinstall
program when they log off.
PROGRAM(pgrmid)
specifies the name of the user program that is controlling the autoinstall process. The default is the
CICS-supplied program DFHZATDX.

Recovery and restart of autoinstalled terminal definitions

This topic explains what happens to autoinstalled terminal definitions at logoff and system restart times.

What happens at CICS restart

At an emergency restart, autoinstalled TCT entries are recovered unless you specify a restart delay period
of zero in the AIRDELAY system initialization parameter.
Users can log on again after an emergency restart without going through the autoinstall process. Those
terminals with AUTOCONNECT(YES) specified in their TYPETERM definition are automatically logged on
during the restart process, without the need for operator intervention. The recovery of autoinstalled TCT
entries avoids the performance impact of many concurrent autoinstall requests following a CICS restart. A
terminal user logging on after restart uses the TCT entry created for that terminal's NETNAME during the
previous CICS run. It is just as if that terminal had an individual TERMINAL definition installed in the TCT.
Because this could pose a threat to security, CICS checks for operator activity after recovery. After a
delay, all autoinstalled TCT entries that were recovered but are not in session again are deleted. As well
as improving security, this ensures that CICS storage is not wasted by unused TCT entries. You can specify
the length of the delay using the system initialization parameters.
If z/OS Communications Server persistent sessions support is in use for the CICS region and AIRDELAY is
not equal to zero, autoinstalled TCT entries are treated exactly like other TCT entries.
At a warm start, TCT entries that were previously autoinstalled are lost, unless you logoff and CICS is shut
down before the AILDELAY time has expired.
If a TCTTE is recovered during emergency restart, a specification of AUTOCONNECT(YES) prevents
deletion of the TCTTE by AIRDELAY. If you want the TCTTE storage to be deleted in this case, specify
AUTOCONNECT(NO).

Automatic sign-off, logoff, and TCTTE deletion

If a session ends through expiry of the user's TIMEOUT period, the terminal entry is deleted as described
in the preceding section only if SIGNOFF(LOGOFF) is specified in the TYPETERM definition of the model.
Table 34 on page 288 summarizes the automatic deletion and recovery of TCTTEs for autoinstalled
terminals.
Figure 57 on page 289 shows how automatic sign-off, logoff, and TCTTE deletion occur if a session
is timed out. Figure 58 on page 290 shows how logon and TCTTE deletion occur if, at a warm start
or emergency restart, a TCTTE exists for an autoinstalled terminal. Table 35 on page 290 shows how
automatic TCTTE deletion occurs if a session ends for any reason other than timeout.

Table 34. AUTOINSTALL—summary of TCTTE recovery and deletion

CICS RUNNING:
Restart delay = 0 TCTTE entries are not cataloged and therefore cannot be recovered in a
subsequent run.
Restart delay > 0 TCTTE entries are cataloged. If they are not deleted during this run or at shutdown,
they can be recovered in a subsequent emergency restart.
SHUTDOWN:

288 CICS TS for z/OS: Configuring CICS

Table 34. AUTOINSTALL—summary of TCTTE recovery and deletion (continued)
CICS RUNNING:
Warm Terminals are logged off and their TCTTEs are deleted, except for those terminals
which were logged off before shutdown but whose AILDELAY has not expired.
Immediate No TCTTEs are deleted. All can be recovered in a subsequent emergency restart.
Abnormal termination No TCTTEs are deleted. All can be recovered in a subsequent emergency restart.
STARTUP:
Cold No TCTTEs are recovered.
Warm No TCTTEs are recovered.
Emergency restart when No TCTTEs are recovered (but see note in Figure 58 on page 290). This session is
restart delay = 0 unbound if it persists.
Emergency restart when TCTTEs are recovered. For details see Figure 58 on page 290. This session is
restart delay > 0 recovered if it persists.

TIMEOUT No No automatic
specified? signoff or logoff

Yes

TYPETERM Yes
SIGNOFF(NO)?

No

Yes At expiry of TIMEOUT

SIGNOFF(YES)? after last terminal activity,
user is signed off

No

Yes At expiry of TIMEOUT On expiry of deleted

SIGNOFF
after last terminal activity, delay period after end of
(LOGOFF)?
user is logged off TIMEOUT, TCTTE is deleted

Figure 57. Automatic sign-off, logoff and deletion of autoinstalled terminals

Chapter 7. Defining resources 289

Table 35. AUTOINSTALL
AUTOINSTALL—automatic TCTTE deletion after non-automatic logoff

<---------Delete delay period---------> TCTTE entry

Non-automatic LOGOFF:
z/OS Communications Server informs
CICS of a session outage, terminal logs
off, or transaction disconnects terminal
deleted.
The terminal can log on during this period
without repeating the autoinstall process.

Restart Yes Terminal

delay
logged on?
expired?

No No

Terminal available
Delete TCTTE
for reuse

Figure 58. AUTOINSTALL—automatic logoff and TCTTE deletion after an emergency restart

Autoinstalling MVS consoles

Commands issued at an MVS console (or in a job stream) can be directed to a CICS region running as
a started task, or job, using the MVS MODIFY command. Before CICS can accept the MVS command, it
needs an entry in the terminal control table for the console issuing the command, which CICS terminal
control can use to display a response.
This is how CICS handles commands (transaction invocations) it receives from an MVS operator console:
Pre-installed console definitions
When MVS receives your request, it identifies the CICS region from the task or job name, and passes
your request to CICS.
CICS extracts the console's name from the MODIFY data, and searches the terminal control table
(TCT) for a CONSNAME entry that matches the console name. If CICS finds a matching entry, it starts
the transaction specified on the MODIFY command, and the transaction can send the results to the
console using the termid of the console's entry in the terminal control table.
Autoinstalled console definitions
If CICS fails to find a matching entry, it checks the autoinstall status for consoles to determine
whether it can perform an autoinstall for the console.
If autoinstall for consoles is active, CICS searches the autoinstall model table (AMT) and initiates the
autoinstall process for the console. CICS either:
• Passes a list of autoinstall model definitions to the autoinstall control program, together with
information about the console, or
• Automatically uses the first console model definition it finds, or a console model with the same
name as the console, and autoinstalls the console using a CICS-generated termid, without calling
your autoinstall control program.

290 CICS TS for z/OS: Configuring CICS

 Which of these options CICS takes is determined by the autoinstall status for consoles. The autoinstall
status for consoles is either set at startup by the AICONS system initialization parameter, or
dynamically by a CEMT (or EXEC CICS) SET AUTOINSTALL CONSOLES command.
The terminal autoinstall control program
You use the same autoinstall control program for console autoinstall as for z/OS Communications
Server terminals and APPC connections, specifying the name of the control program on the AIEXIT
system initialization parameter.
If the autoinstall control program is invoked (either the CICS-supplied program or your own) it selects
one of the models and provides the rest of the information necessary to complete a TCT terminal
entry for the console. When the autoinstall control program returns control, CICS builds a terminal
control table terminal entry (TCTTE) for the console using the autoinstall model, the termid, and other
data returned by the autoinstall control program, and MVS console data. CICS then adds the new
entry to the TCT and starts the transaction specified on the MODIFY command.
Preset security for autoinstalled consoles
If the model terminal specifies USERID(*FIRST) or USERID(*EVERY), CICS uses the user ID passed by
MVS on the MODIFY command to sign on the console, in effect using the MVS-passed user ID as the
preset userid for the new console.
Automatic deletion of autoinstalled consoles
CICS automatically deletes autoinstalled consoles if they are unused for a specified delay period (the
default is 60 minutes). As part of the installation function, the autoinstall control program can set a
'delete-delay' value for the console. The delete-delay period is the length of time (in minutes) that
an autoinstalled console can remain installed without being used before CICS deletes it. Setting this
value to 0 inhibits automatic deletion. Autoinstalled consoles are not recorded on the catalog and not
recovered at restart. Note that a console is deleted even if there is a currently signed-on user.

Implementing autoinstall for MVS consoles

To implement autoinstall for MVS consoles, define appropriate resource definitions and configure system
initialization parameters.

About this task

To autoinstall MVS consoles, you must ensure that the required model resource definitions are installed.
The autoinstall models supplied in DFHLIST do not contain models suitable for console autoinstallation.
The supplied group DFHTERMC contains an autoinstall model definition for a console, but it is not
included in DFHLIST.
You can optionally write an autoinstall control program if you want to have additional control over the
autoinstall process; for example, you might want to restrict the consoles that can be autoinstalled in a
production environment. The autoinstall program must be able to handle console installation and delete
requests. For information about writing an autoinstall program for consoles, see Writing a program to
control autoinstall of consoles .

Procedure
1. Define a console terminal definition with the following attributes:
• Specify AUTINSTMODEL(YES), or AUTINSTMODEL(ONLY)
• Specify the CONSNAME(name)
• Reference a TYPETERM that specifies DEVICE(CONSOLE)
You can use the model console definition defined in the group DFHTERMC, which is added to your CSD
by the INITIALIZE and UPGRADE commands.
Note: When a model terminal definition is used by the console autoinstall function, CICS ignores the
console name specified on the model definition.

Chapter 7. Defining resources 291

 2. Install the model console definition. You can either add its group to a group list and perform a cold
start or install the resource by using CICS Explorer.
3. If you provide your own program to control the autoinstall of MVS consoles, set the AICONS system
initialization parameter to YES.
You can define this value in the SIT or override it dynamically using the SET AUTOINSTALL
CONSOLES(PROGAUTO) command.
4. To use the autoinstall control program that is supplied with CICS, set the AICONS system initialization
parameter to AUTO.
You can define this value in the SIT or override it dynamically using the SET AUTOINSTALL
CONSOLES(FULLAUTO) command. With the AUTO option, CICS allocates the TERMID automatically.
5. Ensure that the required autoinstall programs and transactions are installed. These resources are
your autoinstall control program, the transactions CATA and CATD, and the programs DFHZATD and
DFHZATA.
You must have the following resources installed:
• PROGRAM resource for your autoinstall control program
• TRANSACTION resources for CATA and CATD
• PROGRAM resources for DFHZATD and DFHZATA
The supplied autoinstall control program, DFHZATDX or DFHZATDY, accepts a request from any
console, provided an autoinstall model for a console is found in the AMT. Use the model definition
supplied in group DFHTERMC, or alternatively create your own autoinstall console models (see “The
autoinstall control program for MVS consoles” on page 292).

Defining model TERMINAL definitions for consoles

Whenever CICS receives a command from an unknown console, and autoinstall for consoles is active,
CICS searches the AMT for autoinstall models that describe a console.
These models must specify a CONSNAME, and reference a TYPETERM definition that specifies
DEVICE(CONSOLE). The console name in a model definition is a dummy value in the case of autoinstall,
and is ignored by CICS, which passes a list of AUTINSTNAME attribute values to the autoinstall control
program, so that it can choose one of them.

Specifying automatic preset security

One attribute that your autoinstall control program may require in a model definition is a USERID that
provides the correct preset security.
Selecting a model that has preset security defined ensures that the operator's security authority is
predetermined. This avoids an operator having to logon to CICS, using the CESN signon transaction,
in order to issue a MODIFY command. Two special operands of the USERID parameter provide for an
automatic signon of consoles:
• USERID(*EVERY) means that CICS is to use the userid passed on the MVS MODIFY command every time
a MODIFY command is received. The console is signed on using the MVS userid as the preset userid
for the console being autoinstalled. The console remains signed on with this userid until the console
is deleted or another MODIFY command is received with another userid. If a MODIFY command is
received without a userid, CICS signs on the default CICS userid until a MODIFY command is received
that has a valid userid. For non-console terminals, or if security is not enabled, this value is ignored.
• USERID(*FIRST) means that CICS is to use the userid passed on the first MVS MODIFY command
that requires the console to be autoinstalled. The console is signed on with the MVS userid as
the preset userid. The console remains signed on with this userid until the console is deleted. If a
MODIFY command is received without a userid, CICS signs on the default CICS userid. For non-console
terminals, or if security is not enabled, this value is ignored.

The autoinstall control program for MVS consoles

The console name and other MVS data about the console are not sufficient to build a terminal control
table terminal entry (TCTTE) for the console. The autoinstall control program must create a CICS terminal

292 CICS TS for z/OS: Configuring CICS

 identifier (termid) for the console, and choose a suitable model from the list of models passed by CICS in
the communications area.
IBM supplies two assembler versions of an autoinstall control program (DFHZATDX and DFHZATDY in
SDFHLOAD) that perform the basic functions, but it these may not perform all the functions that you
require. For example, you may have your own conventions for terminal names and their relationship
to console names. Terminal names are up to four characters long, and console names are up to eight
characters long, hence it is often not possible to derive one from the other.
In addition to providing the termid, you can code your program to perform other functions associated with
console definition. For example, your program could:
• Perform security checks
• Monitor the number of autoinstalled consoles currently logged on.
The autoinstall control program runs in a transaction environment as a user-replaceable program, rather
than as a CICS exit. This means that you can read files, and issue other CICS commands, to help you
determine the terminal name. The TCTTE entry for the console, however, does not exist at either of the
times that the program is invoked, because (1) for the installation function it has not yet been created,
and (2) for the delete function it has already been deleted. The program therefore runs in transaction-
without-terminal mode.
You can write an autoinstall control program in the following languages: assembler language, C, COBOL,
or PL/I. The CICS-supplied autoinstall program source is available in all four languages. The assembler
version, which is used by default, is also shipped in executable form in SDFHLOAD. If you decide to write
your own program, you can use one of the IBM-supplied programs as a pattern.
You specify the name of your autoinstall control program on the AIEXIT system initialization parameter.
CICS supports only one autoinstall control program at a time, and therefore your program must handle
console and terminal autoinstall requests if support for both is required.
When you test your autoinstall control program, you will find that CICS writes install and delete messages
to the transient data destination, CADL, each time CICS installs and deletes a TCT entry. If there are no
autoinstall models installed for consoles, CICS does not call the autoinstall control program, and fails the
autoinstall request.
For information on implementing the CICS-supplied autoinstall control program, or designing and writing
your own program, see Writing a program to control autoinstall of consoles

Autoinstalling APPC connections

You are most likely to benefit from autoinstall for connections if you have large numbers of workstations
all with the same characteristics. Follow this instruction to implement APPC connection autoinstall.

Procedure
1. Decide whether to use autoinstall for connections.
The main benefits of using autoinstall for connections are that cold, warm, and emergency restarts
are faster, you have fewer CSD file definitions to manage, and less storage is taken up by unused
definitions.
However, some possible restrictions are discussed in “Recovery and restart for connection autoinstall”
on page 296.
2. Decide which sessions to autoinstall.
You can use autoinstall for CICS-to-CICS connections, but it is intended primarily for workstations.
3. Create your model connection definitions.
A model definition provides CICS with one definition that can be used for all connections with the
same properties. See “Model definitions for connection autoinstall” on page 295.
4. Design and write an autoinstall control program.

Chapter 7. Defining resources 293

 The autoinstall control program provides CICS with the extra information it needs to complete an
autoinstall request, such as the autoinstall model name. See “The autoinstall control program for
connections” on page 295.
For programming information about the autoinstall control program, see Writing a program to control
autoinstall of LUs.
5. Enable autoinstall for connections.
Autoinstall for connections is enabled when you enable autoinstall for terminals; see “Implementing
z/OS Communications Server autoinstall” on page 285 for information about the system initialization
parameters and the CEMT and EXEC CICS INQUIRE and SET options used.
If terminal autoinstall has been enabled but you want to prevent autoinstall for connections, set
the model connection out of service by using the SET CONNECTION(connection-name) OUTSERVICE
command. For details, see CEMT SET CONNECTION and SET CONNECTION. When the model
connection is out of service, the autoinstall control program cannot access it and copy it, so the
autoinstall function for connections is effectively disabled.

Deciding whether to use autoinstall for APPC connections

When you decide whether to use autoinstall for connections, there are several factors to consider.
Security
Before using autoinstall for connections, consider whether the security considerations are suitable for
your purposes.
The autoinstalled connection inherits the security attributes specified in the model. The security
attributes from the CONNECTION definition are as follows:
• SECURITYNAME
• ATTACHSEC
• BINDSECURITY
If you are using compatibility mode to share a CSD file with an earlier release of CICS, the
BINDPASSWORD attribute is also inherited. See SESSIONS attributes for information on these
attributes.
From the SESSIONS definition, the autoinstalled connection inherits the preset security attribute
USERID. If you are attempting to autoinstall an attachsec verify connection from a non-EBCDIC based
system, see Implementing LU6.2 security.
Model terminal support (MTS)
MTS is not supported for connection autoinstall. This means that you must code the routines yourself
to select the model definition name; you cannot get z/OS Communications Server to do it for you. MTS
is described in “Autoinstall and z/OS Communications Server” on page 282.
Deletion of autoinstalled connections
Unlike autoinstalled terminal definitions, autoinstalled connection definitions are not deleted when
they are no longer in use. This means that they continue to occupy storage.
The rules for cataloging and deletion of autoinstalled APPC connections have changed in CICS
Transaction Server for z/OS. All autoinstalled connections are now cataloged, depending on the
AIRDELAY system initialization parameter. If AIRDELAY=0, synclevel 1 connections are not cataloged.
The rules for deletion are as follows:
• Autoinstalled synclevel 1 connections are deleted when they are released.
• If CICS is not registered as a generic resource, autoinstalled synclevel 2 connections are not
deleted.
• If CICS is registered as a generic resource, autoinstalled synclevel 2 and limited resources
connections are deleted when the affinity is ended.

294 CICS TS for z/OS: Configuring CICS

If autoinstall is enabled, and an APPC BIND request is received for an APPC service manager
(SNASVCMG) session that does not have a matching CICS CONNECTION definition, or a BIND is received
for a single session, a new connection is created and installed automatically.

Model definitions for connection autoinstall

Model definitions for connection autoinstall are different from those for terminal autoinstall in that they
do not have to be defined explicitly as models. Any installed connection definition can be used as a
“template” for an autoinstalled connection.
For performance reasons, use an installed connection definition that is not otherwise in use. The
definition is locked while CICS copies it and, if you have a very large number of sessions autoinstalling, the
delay may be noticeable.
You can set the model connection definition out of service by using the CEMT or EXEC CICS SET
CONNECTION OUTSERVICE command. This effectively disables autoinstall for connections, because the
autoinstall control program cannot access and copy the model definition.
For CICS-to-CICS connection autoinstall, the MAXIMUM attribute in the SESSIONS definition of the model
connection should be large enough to accommodate the largest device using the model.
When creating model connections, you must ensure that the usergroup modenames specified in the
session's MODENAME field match the usergroup modenames in the connection to be autoinstalled.

The autoinstall control program for connections

The autoinstall control program is invoked at installation for APPC single- and parallel-session
connections initiated by a BIND. The autoinstall control program provides CICS with any extra information
it needs to complete an autoinstall request. For APPC parallel sessions, the control program provides a
SYSID for the new definition.
When an APPC BIND request is received by CICS, CICS receives the partner's z/OS Communications
Server NETNAME and passes it to the autoinstall control program. The control program uses the
information contained in the partner's NETNAME and in the z/OS Communications Server BIND to select
the most appropriate model on which to base a new connection. In order to return the name of the most
suitable model to CICS, the control program must know the NETNAME or SYSID of every model.
CICS supplies a sample control program, DFHZATDY, for connection autoinstall. You can use DFHZATDY
unchanged if both of the following conditions are met:
• Your model connections are called CCPS, CBPS, or CBSS
• You use the last four characters of the NETNAME as the SYSID or terminal name
If these conditions are not met, you have to change DFHZATDY to suit your installation. Its source is
supplied in CICSTS61.SDFHSAMP.DFHZATDY is defined as follows:

DEFINE PROGRAM(DFHZATDY) GROUP(DFHAI62) LANGUAGE(ASSEMBLER)

RELOAD(NO) RESIDENT(NO) STATUS(ENABLED) CEDF(NO)
DATALOCATION(ANY) EXECKEY(CICS)

The definitions for the supplied model connections and sessions are:

DEFINE CONNECTION(CBPS) GROUP(DFHAI62) NETNAME(TMPLATE1)

ACCESSMETHOD(VTAM) PROTOCOL(APPC) SINGLESESS(NO)
DEFINE SESSION(CBPS) GROUP(DFHAI62) CONNECTION(CBPS)
MODENAME(LU62PS) PROTOCOL(APPC) MAXIMUM(10,5)

DEFINE CONNECTION(CBSS) GROUP(DFHAI62) NETNAME(TMPLATE2)

ACCESSMETHOD(VTAM) PROTOCOL(APPC) SINGLESESS(YES)
DEFINE SESSION(CBSS) GROUP(DFHAI62) CONNECTION(CBSS)
MODENAME(LU62SS) PROTOCOL(APPC) MAXIMUM(1,0)

DEFINE CONNECTION(CCPS) GROUP(DFHAI62) NETNAME(TMPLATE3)

ACCESSMETHOD(VTAM) PROTOCOL(APPC) SINGLESESS(NO)

Chapter 7. Defining resources 295

 DEFINE SESSION(CCPS) GROUP(DFHAI62) CONNECTION(CCPS)
MODENAME(LU62PS) PROTOCOL(APPC) MAXIMUM(10,5)

If you want to use these definitions, you must add group DFHAI62 to your group list. Do not try to use the
terminal autoinstall exit DFHZATDX to autoinstall connections; any sessions installed by DFHZATDX are
terminated and message DFHZC6921 is issued.
Note: VTAM is now the z/OS Communications Server.
For programming information on customizing the autoinstall control program, see Writing a program to
control autoinstall of LUs.

Recovery and restart for connection autoinstall

Information about autoinstalled connections are recovered in some, but not all, restart situations.
Because autoinstalled connections are not cataloged, they cannot benefit from persistent sessions
support. This means that when a session does persist, any autoinstalled connections relating to it are
unbound.
Autoinstalled connections are recovered only at a cold start of CICS; they are not recovered at warm and
emergency restarts.
Unit-of-recovery descriptors (URDs) for autoinstalled connections are recovered after cold, warm, and
emergency restarts, as long as the SYSIDs of the connections are consistent.
The SYSIDs of the autoinstalled connections must be consistent if you are using recoverable resources.

Autoinstalling IPIC connections

Unlike autoinstalling other resources, autoinstalling an IPCONN does not require a model definition
(although this is recommended).
Unlike the model definitions used to autoinstall terminals, the definitions used to autoinstall IPCONNs
do not need to be defined explicitly as models. Instead, CICS can use any previously-installed IPCONN
definition as a template for a new definition.
For more information on autoinstalling IPCONNs, see Autoinstalling IPIC connections; preliminary
considerations.

Autoinstalling programs, map sets, and partition sets

If autoinstall for programs is active, and an implicit or explicit load request is issued for a previously
undefined program, map set, or partition set, CICS dynamically creates a definition, and installs it and
catalogs it as appropriate.
An implicit or explicit load occurs in the following situations:
• CICS starts a transaction.
• An application program issues one of the following commands:
EXEC CICS LINK (without a SYSID)
EXEC CICS XCTL
EXEC CICS LOAD
EXEC CICS ENABLE (for global user exit, or task-related user exit, program)
• After an EXEC CICS HANDLE ABEND PROGRAM(…), a condition is raised and CICS transfers control to
the named program.
• CICS calls a user-replaceable program for the first time.
• An application program issues one of the following commands:
EXEC CICS RECEIVE or SEND MAP
EXEC CICS SEND PARTNSET
EXEC CICS RECEIVE PARTN

296 CICS TS for z/OS: Configuring CICS

Applications deployed on platforms can make an implicit or explicit load request that causes a program,
map set, or partition set to be auto-installed. A program that is auto-installed by a task for an application
that is deployed on a platform is private to that version of the application. Private resources are not
available to any other application or version installed on the platform, and they are not available to
other tasks in the CICS region. For more information about private resources for applications, see Private
resources for application versions.

Implementing program autoinstall

The only program that cannot be autoinstalled is the program autoinstall control program.

Procedure
1. Decide whether your programs are eligible for autoinstall
All other programs can be autoinstalled, including:
• All other user-replaceable programs
• Global user exits (GLUEs) and task-related user exits (TRUEs)
• PLT programs
User-replaceable programs and PLT programs are autoinstalled on first reference. GLUEs and TRUEs
are autoinstalled when enabled.
2. Decide whether to use autoinstall for programs
Using autoinstall for programs can save time spent on defining individual programs, mapsets, and
partitionsets. Savings can also be made on storage, because the definitions of autoinstalled resources
do not occupy space until they are referenced.
Use of autoinstall for programs can reduce the number of definitions to be installed on a COLD start,
thereby reducing the time taken.
3. Decide which programs to autoinstall
Depending on your programs, you can choose to use a mixture of RDO and autoinstall. A suggested
way to manage program autoinstall is to continue to use RDO for existing program definitions and
for installing groups containing related programs. Use autoinstall as you develop and install new
applications, and in test environments, where you might otherwise install large numbers of programs
at CICS startup.
4. Enable autoinstall for programs
You can enable autoinstall for programs either by specifying system initialization parameters by using
the SET SYSTEM command.
Three system initialization parameters relate to program autoinstall:
PGAICTLG
The PGAICTLG parameter specifies whether autoinstalled program definitions are cataloged. See
“Cataloging for program autoinstall” on page 298.
PGAIPGM
The PGAIPGM parameter specifies whether the program autoinstall function is active or inactive.
PGAIEXIT
The PGAIEXIT parameter specifies the name of the program autoinstall exit.
Three options relate to program autoinstall on the SET SYSTEM command:
PROGAUTOCTLG
The PROGAUTOCTLG option specifies whether autoinstalled program definitions are to be
cataloged. See “Cataloging for program autoinstall” on page 298.
PROGAUTOEXIT
The PROGAUTOEXIT option specifies the name of the program autoinstall exit.

Chapter 7. Defining resources 297

 PROGAUTOINST
The PROGAUTOINST option specifies whether the program autoinstall function is active or inactive.
For programming information on how to specify EXEC CICS commands, see Introduction to System
programming commands, and for information on how to use CEMT, see CEMT - main terminal.
5. Create your model program definitions
A model definition provides CICS with one definition that can be used for all programs with the same
properties. See “Model definitions for program autoinstall” on page 298
6. Design and write an autoinstall control program
The autoinstall control program provides CICS with the extra information it needs to complete an
autoinstall request, such as the autoinstall model name. You can write your autoinstall program in any
language supported by CICS, with full access to the CICS application programming interface. See “The
autoinstall control program for programs” on page 299.

Cataloging for program autoinstall

You can specify whether an autoinstalled program definition is cataloged (that is, whether the definition
is retained over a warm or emergency start) by using the PGAICTLG system initialization parameter.
Alternatively, you can use the PROGAUTOCTLG option of the CEMT INQUIRE SYSTEM command, or the
CTLGALL, CTLGMODIFY, or CTLGNONE option of the CEMT SET SYSTEM command.
The values you can specify for PGAICTLG are:
ALL
Autoinstalled program definitions are written to the global catalog at the time of the autoinstall, and
following any subsequent modification.
MODIFY
Autoinstalled program definitions are cataloged only if the program definition is modified by a SET
PROGRAM command subsequent to the autoinstall.
NONE
Autoinstalled program definitions are not cataloged. This gives a faster CICS restart (warm and
emergency) compared with the MODIFY or ALL options, because CICS does not reinstall definitions
from the global catalog. Definitions are autoinstalled on first reference.
The setting that you specify for cataloging of autoinstalled programs has no effect on programs that
are autoinstalled by a task for an application that is deployed on a platform. These programs are never
cataloged.
The effects of specifying cataloging for program autoinstall apply mainly to recovery and restart. See
“Program autoinstall and recovery and restart” on page 299.

Model definitions for program autoinstall

Model definitions for program autoinstall are different from those for terminal autoinstall in that they do
not have to be defined explicitly as models. Any installed program, mapset, or partitionset definition can
be used as a “template” for program autoinstall.

If you do not want to use your own definitions, you can use the CICS-supplied model definitions. These
are:
• DFHPGAPG for programs
• DFHPGAMP for mapsets
• DFHPGAPT for partitionsets
They are listed in Supplied resource definitions, groups, and lists.
Note: Although the DFHPGAPG definition does not specify a program language, the CICS autoinstall
routine detects the program language from the program being loaded.

298 CICS TS for z/OS: Configuring CICS

The autoinstall control program for programs
The program autoinstall facility uses model definitions, together with a user-replaceable control program,
to create explicit definitions for programs, map sets, and partition sets that need to be autoinstalled. CICS
calls this autoinstall control program with a parameter list that gives the name of the appropriate model
definition. On return from the program (depending on the return code), CICS creates a resource definition
from information in the model and from parameters which the program returns.
Note: CICS does not call the user-replaceable program for any CICS programs, map sets, or partition sets
(that is, any objects beginning with the letters DFH).
You specify the name of the control program you want to use in the PGAIEXIT system initialization
parameter, or use the INQUIRE SYSTEM or SET SYSTEM command or its CEMT equivalent.
For detailed programming information about the autoinstall control program for programs, see Writing a
program to control autoinstall of LUs.

When the autoinstall control program is invoked

For programs:
The autoinstall control program is invoked in the following situations:
• Any of these commands references a previously undefined program:
EXEC CICS LINK
EXEC CICS XCTL
EXEC CICS LOAD
• The program is the first program in a transaction.
• An EXEC CICS ENABLE is issued for a GLUE or a TRUE.
• An abend occurs after an EXEC CICS HANDLE ABEND PROGRAM command is issued and CICS
invokes the named program.
• CICS calls a user-replaceable program.
For map sets:
The autoinstall control program is invoked when an EXEC CICS SEND MAP or EXEC CICS RECEIVE
MAP refers to a previously undefined map set.
For partition sets:
The autoinstall control program is invoked when an EXEC CICS SEND PARTNSET or EXEC CICS
RECEIVE PARTN command refers to a previously undefined partition set.

Sample programs
CICS supplies the following sample programs for the program autoinstall exit:
• DFHPGADX—assembler program
• DFHPGAHX—C program
• DFHPGALX—PL/I program
• DFHPGAOX—COBOL definition
The source for these programs is supplied in the CICSTS61.SDFHSAMP sample library, but only the
assembler version is supplied in executable form, in the CICSTS61.SDFHLOAD load library.

Program autoinstall and recovery and restart

There is a difference in performance between warm and emergency restarts using program autoinstall
without cataloging, and warm and emergency restarts using autoinstall with cataloging.
If you are using autoinstall with cataloging, restart times are similar to those of restarting a CICS region
that is not using program autoinstall. This is because, in both cases, resource definitions are reinstalled

Chapter 7. Defining resources 299

 from the catalog during the restart. The definitions after the restart are those that existed before the
system was terminated.
If you are using autoinstall without cataloging, CICS restart times are improved because CICS does
not install definitions from the CICS global catalog. Instead, definitions are autoinstalled as required
whenever programs, mapsets, and partitionsets are referenced following the restart.

Autoinstalling model terminal definitions

If you define a model terminal for autoinstall, you install it just as you would an ordinary resource
definition; that is, by installing the group containing it.
However, terminal definitions specified as AUTINSTMODEL(ONLY) are stored only in the autoinstall model
table (AMT) at this time; they do not result in a TCTTE on the active CICS system. These model terminal
definitions are stored in the AMT until needed by CICS to create a definition for an actual terminal
logging on through the z/OS Communications Server using autoinstall. The resulting terminal definition is
“automatically installed” at this time.
This is what happens when you install a TERMINAL definition, either at system initialization or using
INSTALL:
AUTINSTMODEL(NO)
A TCT entry is created for the terminal.
AUTINSTMODEL(YES)
A TCT entry is created for the terminal, and the model definition is stored for later use by the
autoinstall process.
AUTINSTMODEL(ONLY)
The model definition is stored for later use by the autoinstall process.
If you install two model TERMINAL definitions with the same AUTINSTNAME, the second one replaces the
first.
For further information about autoinstall and model TERMINAL definitions, see “Autoinstalling z/OS
Communications Server terminals” on page 280.

Autoinstalling journals
CICS writes journal data to journals or logs on log streams managed by the MVS system logger, or to SMF.
You must define JOURNALMODELs so that the connection between the journal name, or identifier, and
the log stream, or SMF log, can be made. You can use RDO, DFHCSDUP, or an EXEC CICS CREATE
JOURNALMODEL command to define a journalmodel.
CICS resolves the link between the log stream and the journal request by using user-defined
JOURNALMODELs or, in the situation where an appropriate JOURNALMODEL does not exist, by using
default names created by resolving symbolic names. See JOURNALMODEL attributes for more information
about this.
Journals are not user-definable resources.

Defining CICS resources with macros

There are some resources that must be defined in CICS control tables. The control tables and their
resource definitions are created by macros. You must use macros to define non-z/OS Communications
Server networks and terminals, non-VSAM files, databases, and resources for monitoring and system
recovery. For all other resources, use alternative methods.
See How you can define CICS resources for an introduction to resource definition with macros and a
comparison with alternative methods of resource definition.
For each of the CICS tables listed in Defining control tables to CICS, complete the following steps:
1. Code the resource definitions that you need. See Format of macros.

300 CICS TS for z/OS: Configuring CICS

 2. Assemble and link-edit the definitions of all but the PLT, using the CICS-supplied procedure
DFHAUPLE, to create a load module in the required CICS load library. The load library is either
CICSTS61.SDFHLOAD or CICSTS61.SDFHAUTH, which you must specify by the NAME parameter of the
DFHAUPLE procedure. See Assembling and link-editing control tables: the DFHAUPLE procedure. The
exception is the PLT which does not need to be assembled.
3. Name the suffix of the load module with a system initialization parameter. For most of the CICS tables,
if you do not require the table, you can code the SIT parameter that represents the table to NO. The
exceptions to this rule are as follows:
• CLT: specifying CLT=NO causes CICS to try and load DFHCLTNO. The CLT is used only in the alternate
CICS, when you are running CICS with XRF, and is always required in that case.
• SIT: specifying SIT=NO causes CICS to try and load DFHSITNO. The SIT is always needed, and you
can specify the suffix by coding the SIT system initialization parameter.
• TCT: specifying TCT=NO causes CICS to load a dummy TCT, DFHTCTDY.
• TLT: terminal list tables are specified by program entries in the CSD, and do not have a system
initialization parameter.
• MCT: specifying MCT=NO causes the CICS monitoring domain to dynamically build a default
monitoring control table. This ensures that default monitoring control table entries are always
available for use when monitoring is on and a monitoring class (or classes) are active.
4. If you are running CICS with XRF, the active and the alternate CICS regions share the same versions
of tables. However, to provide protection against DASD failure, you could run your active and alternate
CICS regions from separate sets of load libraries—in which case, you should make the separate copies
after generating your control tables.

Format of macros
The CICS macros are written in assembler language and, like all assembler language instructions, must be
written in a standard format.

Name Operation Operand Comments

Blank or symbol DFHxxxx One or more operands
separated by commas

TYPE=INITIAL (control section)

Most of the tables must start with a TYPE=INITIAL macro. The TYPE=INITIAL macro establishes the
control section (CSECT) for the CICS system table, and produces the necessary linkage editor control
statements. CICS automatically generates the address of the entry point of each table through the DFHVM
macro that is generated from each TYPE=INITIAL macro. The entry point label of the table is DFHxxxBA.
Only the END statement need be specified.
The TYPE=INITIAL section is not relevant to program list tables, DFHPLT. The DFHPLT can contain a
TYPE=INITIAL statement, but the statement has no effect.
For some tables, you can provide information that applies to the whole table, on the TYPE=INITIAL
macro.

Naming and suffixing the tables

You can have more than one version of a table by using a suffix in the table name. Each table has a name
consisting of six fixed characters followed by a two character suffix. For a list of the table names, see
Defining control tables to CICS
The first six characters of the name of each table are fixed. Except for program list tables (DFHPLT), you
can specify the last two characters of the table name, using the SUFFIX operand. The SUFFIX operand is
specified on the TYPE=INITIAL macro for each table. Because the TYPE=INITIAL section is not relevant
to program list tables, for the DFHPLT, CICS determines the suffix of the table from the characters

Chapter 7. Defining resources 301

 following DFHPLT in the name of the PARMLIB or DFHTABLE member. For more information, see Program
list table (PLT)
A suffix consists of one or two characters. The acceptable characters are: A-Z 0-9 @. (Do not use NO or
DY.) Select the version of the table to be loaded into the system during system initialization, by specifying
the suffix in the appropriate system initialization parameter operand.
For example:

DFHSIT...,FCT=MY,...

Note: The TYPE=INITIAL macros have a STARTER operand that is not listed in the descriptions of the
individual macros. Coding STARTER=YES enables you to use the $ and # characters in your table suffixes.
The default is STARTER=NO. This operand should be used only with starter system modules.

TYPE=FINAL (end of table)

Most of the tables, with the exception of the SIT, must end with a TYPE=FINAL macro. The TYPE=FINAL
macro creates a dummy entry to signal the end of the table. It must be the last statement before the
assembler END statement.

DFHxxT TYPE=FINAL

Defining control tables to CICS

CICS is configured under your control during system initialization. You select a system initialization
table (SIT), which is required for CICS operation. Through the SIT, CICS selects other control tables.
These tables are required only if you use the corresponding CICS facilities. Each control table is created
separately and can be re-created at any time before system initialization. You prepare the required
control tables by coding the appropriate macros. For each table, the macros automatically generate the
necessary linkage editor control statements.
The CICS table macros contain linkage editor control statements that determine whether CICS loads a
table above or below 16MB (above the line or below the line). All tables, other than the TCT, are loaded
above the 16MB line.
You can generate several versions of each CICS control table by specifying SUFFIX=xx in the macro that
generates the table. See Format of macros.
The control tables that can be assembled, link-edited, and installed in CICS libraries by macros are shown
in Table 36 on page 302. These tables are compiled into a library included in the STEPLIB concatenation.
The Program List Table (PLT) is a special case. It provides a list of related programs: for example, to
specify a list of programs that are to be executed in the initialization programs phase of CICS startup;
executed during the first or second quiesce stages of controlled shutdown; or both, or enabled or disabled
as a group by a CEMT ENABLE or DISABLE command. The PLT used to be a member of the table below
but PLTs no longer need to be assembled. CICS reads the source code for PLTs and uses it to define the
required PLT processing. The source code of any required PLTs, including any copy members referenced
by the source, must reside in PARMLIB or DFHTABLE concatenations. See Program list table (PLT).
Table 36. Control tables that can be defined by macros

Control table Contents Module Abbreviati Required Loaded More information

name on load above the
library line?

Command list table Sets of commands and messages for an XRF DFHCLTxx CLT SDFHAUT Yes Command list table
(CLT) takeover. The command list table (CLT) is used H (CLT)
for XRF (extended recovery facility). If you are
using XRF, you must have a CLT; it is used only
by the alternate CICS system. The CLT contains a
list of commands that are passed to JES or MVS
for execution. It also provides the authorization for
canceling the active CICS system.

302 CICS TS for z/OS: Configuring CICS

Table 36. Control tables that can be defined by macros (continued)

Control table Contents Module Abbreviati Required Loaded More information

name on load above the
library line?

Data conversion table A data conversion table might be needed if the DFHCNV CNV SDFHLOAD Defining the conversion
CICS system is using ISC to communicate with a table
member of the CICS family that runs on a hardware
platform that does not use EBCDIC. The conversion
table defines how data is to be changed from ASCII
format at the workstation to EBCDIC format at the
CICS host.

DL/I directories (PDIR) Databases and program specification blocks. If DFHPSBxx PSB SDFHLOAD No PDIR: DL/I directory
you use CICS-IMS DBCTL (database control)
exclusively to manage your CICS system's use of
DL/I, you need not define the DL/I directory (PDIR)
using CICS.
The PDIR is a directory of all the remote program
specification blocks (PSBs) that are accessed by
the CICS system.
If you function-ship requests to a remote database
manager (remote DL/I), you need only one
directory, the PDIR.

File control table (FCT) BDAM file definitions. The file control table (FCT) is DFHFCTxx FCT SDFHLOAD No File control table (FCT)
retained to allow you to define BDAM files.

Monitoring control table Monitoring actions (data collection) to be taken at DFHMCTxx MCT SDFHLOAD Yes Monitoring control table
(MCT) each user event monitoring point (EMP). Different (MCT)
actions can be specified for each monitoring class
at each EMP.

Recoverable service Sets of recoverable service elements. The DFHRSTxx RST SDFHAUT Yes Recoverable service
table (RST) recoverable service table (RST) is used for IBM H table (RST)
CICS IMS DBCTL (database control) support. If
you are using XRF and DBCTL, you must have an
RST: it is used by the active CICS system. The RST
contains a list of recoverable service elements that
define the DBCTL configuration. It defines which
DBCTL CICS connects to.

System initialization Parameters used by the system initialization DFHSITxx SIT SDFHAUT Specifying CICS system
table (SIT) process. In particular, the SIT identifies (by suffix H initialization parameters
characters) the versions of CICS system control
programs and CICS tables that you have specified
are to be loaded.

System recovery table A list of codes for abends that CICS intercepts. DFHSRTxx SRT SDFHLOAD System recovery table
(SRT) (SRT).

Temporary storage table Generic names (or prefixes) for temporary storage DFHTSTxx TST SDFHLOAD Yes Temporary storage table
(TST) queues. CICS still supports the use of a TST in (TST)
combination with or in place of TSMODEL resource
definitions. You must use a TST if you have
application programs that reference temporary
storage data sharing queues by specifying an
explicit SYSID on EXEC CICS temporary storage
commands, or if a SYSID is added by an XTSEREQ
global user exit program. You must also use
a TST if you require the TSAGE attribute. For
temporary storage queues where you do not
require these functions, you can use TSMODEL
resource definitions, which provide all other
functions of the TST and some additional functions.

Terminal control table Retained to define non- SNA LU networks. DFHTCTxx TCT SDFHLOAD No Terminal control table
(TCT) (TCT)

Terminal list table (TLT) Sets of related terminals. The terminal list table DFHTLTxx TLT SDFHLOAD No Terminal list table (TLT)
(TLT) allows terminal or operator identifications,
or both, to be grouped logically. A TLT is required
by the supervisory terminal operation (CEST),
to define and limit the effective range of the
operation. It can also be used by a supervisory
or master terminal operation (CEMT) to apply a
function to a predetermined group of terminals.
A TLT can be used, singly or in combination with
other TLTs, to provide predefined destinations for
message switching.

Chapter 7. Defining resources 303

Table 36. Control tables that can be defined by macros (continued)

Control table Contents Module Abbreviati Required Loaded More information

name on load above the
library line?

Transaction list table Sets of logically related transaction identifications. DFHXLTxx XLT SDFHLOAD Yes Transaction list table
(XLT) A list of identifications that can be initiated from (XLT)
terminals during the first quiesce stage of system
termination, or a group of identifications that
can be disabled or enabled through the master
terminal.

Other tables that have special requirements are program list tables (PLTs), terminal list tables (TLTs), and
transaction list tables (XLTs). For each TLT, autoinstall for programs must be active or you must specify
a program resource definition in the CSD, using the table name (including the suffix) as the program
name. PLTs or XLTs are autoinstalled if there is no program resource definition in the CSD. For example, to
generate a TLT with a suffix of AA (DFHTLTAA), the CEDA command would be as follows:

CEDA DEFINE PROGRAM(DFHTLTAA) GROUP(grpname) LANGUAGE(ASSEMBLER)

Assembling and link-editing control tables: the DFHAUPLE procedure

To assemble and link-edit your tables, write a job that calls the sample procedure DFHAUPLE. DFHAUPLE
creates a load module in the required CICS load library. DFHAUPLE is tailored to your CICS environment
and stored in the CICSTS61.XDFHINST library when you run the DFHISTAR job.
The DFHAUPLE procedure needs the following libraries to be online:

Table 37. Library requirements for the DFHAUPLE procedure

Library name Tables required for
SYS1.MACLIB All
CICSTS61.SDFHMAC All
CICSTS61.SDFHLOAD All except the CLT, RST, and SIT
CICSTS61.SDFHAUTH CLT, RST, and SIT
SMP/E global zone All
SMP/E target zone All

The DFHAUPLE procedure contains the following steps:

1. ASSEM: This step puts your table definition macros into a temporary partitioned data set (PDS)
member that is used as input to the ASM and SMP steps. The BLDMBR step subsequently adds further
members to this temporary PDS.
2. ASM: In this assembly step, SYSPUNCH output goes to a temporary sequential data set. This output
consists of IEBUPDTE control statements, lin-edit control statements, SMP control statements, and
the object deck.
3. BLDMBR: In this step, the IEBUPDTE utility adds further members to the temporary PDS created in the
ASSEM step. These members contain link-edit control statements and SMP control statements, and
the object deck from the assembly step.
4. LNKEDT: The link-edit step uses the contents of the PDS member LNKCTL as control statements. The
object code produced in step 2 comes from the temporary PDS. The output goes to the load library
that is specified by the NAME parameter on the procedure. You must specify NAME=SDFHAUTH for the
CLT, RST, and SIT, and NAME=SDFHLOAD for all the others.
5. ZNAME: This step creates a temporary data set that passes to the SMP/E JCLIN job step; it contains a
SET BDY command that defines a target zone name. This tells SMP/E which target zone to update.

304 CICS TS for z/OS: Configuring CICS

6. SMP: The SMP step uses the temporary PDS members MACROS, SMPCNTL, SMPJCL1, SMPJCL2,
LNKCTL, SMPEOF, and the object deck to update the control data set (CDS).
7. DELTEMP: This final step deletes the temporary partitioned data set, &&TEMPPDS. This step must
run successfully if you want SMP to reassemble CICS tables automatically when applying later
maintenance.

Chapter 7. Defining resources 305

 Macro statements
defining the
control table

Temporary SYS1.MACLIB
partitioned data set 1
IEBGENER
Utility
MACROS
CICS.SDFHMAC
SMPCNTL
2
SMPJCL1 Assembler Assembly listing

Temporary
SMPJCL2
sequential data set

LNKCTL
including link-edit
3 Punch
IEBUPDTE control statements,
SMPEOF statements and
Utility link-edit JCL, and
object decks
SMP UPDATE statements
Object

4
Linkage Editor
Linkage Editor
listing

CICS,
SDFHLOAD,
SDFHAUTH

5
Assembler
Temporary
data set
(SET BDY)

6
SMP UPDATE
SMPC SI
(HMASMP)

SMP listing

7
IEFBR14
Utility

Figure 59. Assembling and link-editing the control tables using the DFHAUPLE procedure

306 CICS TS for z/OS: Configuring CICS

 When you have assembled and link-edited your tables, define them to CICS by system initialization
parameters.

Sample job stream for control tables

You can use a single job stream to assemble and link-edit all of the CICS control tables except for the
CLT and the RST. Specify NAME=SDFHAUTH on this job for the system initialization table only. Link-edit all
other tables (except the CLT and RST) into SDFHLOAD.

//jobname JOB (accounting information),

// CLASS=A,MSGCLASS=A,MSGLEVEL=(1,1)
//ASMTAB EXEC PROC=DFHAUPLE[,NAME={SDFHLOAD|SDFHAUTH}]
//*
//ASSEM.SYSUT1 DD *
.
Control table macro statements
.
/*

Defining CICS bundles

A CICS bundle is a directory that contains artifacts and a manifest that describes the bundle and its
dependencies. CICS bundles provide a way of grouping and managing related resources.
CICS bundles also provide versioning for the management of resource updates, and can declare
dependencies on other resources outside the bundle. Application developers can use CICS bundles for
application packaging and deployment, business events, and services. System programmers can use CICS
bundles to define CICS policies.

About this task

CICS provides two ways for your to create, package, and deploy CICS bundles. You can use the IBM CICS
Explorer client to manage your bundle projects. Alternatively, you can use Gradle or Maven to create and
build a bundle locally, and then deploy it through an API.
You can create CICS bundles using IBM CICS Explorer or IBM Developer for z/OS.
The bundle specifies a set of resources that CICS creates dynamically when the bundle is deployed.
The bundle can also specify any prerequisite system resources for the application. CICS does not
dynamically create prerequisite system resources but can check that they exist in the CICS region.
Some characteristics of CICS resources change because they are defined in a CICS bundle and
dynamically created as part of a bundle deployment. The life cycles of CICS resources that are created
in this way cannot be managed independently of the BUNDLE resource. They must be managed
through the CICS bundle as a unit. Because of bundle and resource lifecycle interdependency,
application architects must carefully consider which set of resources for an application should
have their lifecycle tied to the lifecycle of a CICS bundle. To understand more about the potential
implications of defining resources in CICS bundles, see “Characteristics of resources in CICS bundles”
on page 314.
You can deploy an individual CICS bundle in a CICS region, or you can use it as part of a packaged
application deployed on a platform, or deploy it directly on a platform. If you are deploying the CICS
bundle in an application or to a platform, you create the CICS bundle using the normal process, but
then you package it as part of the application, or add it directly to the platform.
Applications deployed on platforms that use the CICS resources that are supported as private
resources, in combination with other resources designed for applications and with imported
resources, are eligible for multi-versioning. The following resources are supported as part of multi-
versioned applications:
• PROGRAM resources defined in CICS bundles that are part of the application
• LIBRARY resources defined in CICS bundles that are part of the application

Chapter 7. Defining resources 307

 • PACKAGESET resources defined in CICS bundles that are part of the application
• Policies that define task rules to manage application user tasks
• Statements of application entry points
• Any resource that is defined as a dependency, or import, for the application
A CICS bundle can be installed in CICS regions by more than one application if it contains only
resources that are eligible for multi-versioning.
A CICS bundle that contains other resource types cannot be included in other applications that are
installed in the same CICS regions in the platform, and you cannot add it to the platform if it has
already been installed for an application. If your application requires a resource that is not supported
for multi-versioning and has already been used in a CICS bundle that has been installed in the target
region type in the platform, create a new CICS bundle project. Declare the resource as a dependency
for the new CICS bundle, by specifying an import in the manifest file. Then include the new CICS
bundle project in your application project.
Alternatively, you can create, package, and deploy a CICS bundle using the CICS provided Gradle or
Maven plug-in.
CICS bundles created this way are similar to those created using IBM CICS Explorer or IBM Developer
for z/OS, except that:
• The Gradle or Maven plug-in supports only a subset of bundle parts, including those most relevant
to Java development, such as EAR, WAR, OSGi bundles, and so on.
• Maven and Gradle modules that author CICS bundles have different metadata and a different
structure from the CICS bundle projects created natively in CICS Explorer. Therefore, they cannot be
exported to z/FS using CICS Explorer. If you open a bundle that is produced by Maven, Gradle, or
other build tools in the Bundle Manifest editor of CICS Explorer, the editor will be read-only.

Procedure
1. If you're using IBM CICS Explorer or IBM Developer for z/OS to create CICS bundles:
a) Use the IBM CICS Explorer to create a CICS bundle and define the artifacts that you want to include
in the bundle.
Follow the instructions in Working with bundles in the CICS Explorer product documentation.
b) If you are deploying the CICS bundle on its own, deploy it to a suitable directory on z/OS UNIX.
CICS must have permission to read this directory.
If you are deploying the CICS bundle as part of an application or a platform, follow the instructions
in Working with platforms and applications in the CICS Explorer product documentation to include
the CICS bundle.
c) If you are deploying the CICS bundle on its own, define, enable, and make available a BUNDLE
resource for the CICS bundle.
See BUNDLE resources for details of the attributes to specify.
d) If you are deploying the CICS bundle with a platform, follow the instructions in Working with
bundles in the CICS Explorer product documentation to remove the previous version of the CICS
bundle then add the new version of the CICS bundle to the platform.
e) If you are deploying the CICS bundle as part of an application, follow the instructions in Working
with applications in the CICS Explorer product documentation to deploy the application.
2. If you want to use the Gradle or Maven plug-in to create and deploy CICS bundles, see How it works:
CICS bundle deployment API.

Results
CICS reads the manifest in the bundle directory and dynamically creates the CICS resources. CICS also
checks that any required dependencies, for example programs or files, outside the bundle are present in
the CICS region.

308 CICS TS for z/OS: Configuring CICS

 What to do next
You can inquire on the installed BUNDLE resource and its associated resources using the CICS Explorer.
The resource signature of every dynamically created resource indicates that it was created by a BUNDLE
resource.
You cannot directly enable, disable, or discard resources that are created dynamically by a BUNDLE
resource. When you enable, disable, or discard a CICS bundle, or make it available or unavailable, the
actions are also applied to the dynamically created resources for the bundle. If the CICS bundle is part
of an application in a platform, and you enable, disable, or discard the platform or application, or make
the application available or unavailable, the actions are applied to the CICS bundle and the dynamically
created resources for the bundle.
You can use the editor in the CICS Explorer to modify the artifacts that are specified in a CICS bundle, and
the definitions for resources that CICS creates dynamically when the bundle is deployed. To apply your
changes, deploy your modified CICS bundle on the directory on z/OS UNIX, make unavailable then disable
and discard the BUNDLE resource, and then install the BUNDLE resource again and make it available.

Artifacts that can be deployed in bundles

The artifacts that you can define and deploy in CICS bundles include application and system events, Atom
feeds, channel-based services, CICS policies, CICS programs, OSGi bundles, XML-based services, and
transactions. Each of these artifacts is represented by one or more CICS resources and these resources
are dynamically created as part of the bundle deployment.
The resource signature for dynamically created resources indicates that they were created during the
bundle deployment, and contains the name of the BUNDLE resource.
When you define and deploy CICS resources in a CICS bundle, the management and lifecycle of the
resources is delegated to the CICS bundles that dynamically created them. The dynamically created
resources are in effect part of the bundle or the application, rather than existing independently.
• You can inquire on the dynamically created resources, but you cannot enable, disable, or discard them
directly.
• When you enable, disable, or discard the CICS bundle, the action is also applied to the dynamically
created resources for the bundle.
• If the CICS bundle is part of an application on a platform, and you enable, disable, or discard the
platform or application, the actions are applied to the CICS bundle and the dynamically created
resources for the bundle.
• You use the editors in CICS Explorer to modify the artifacts specified in a CICS bundle, and the
definitions for resources that are defined in the bundle.
For more information about the implications of managing resources in CICS bundles, see “Characteristics
of resources in CICS bundles” on page 314.
When you create the definition for a LIBRARY, PACKAGESET, or PROGRAM resource in a CICS bundle,
and deploy the CICS bundle as part of an application on a platform, the dynamically created LIBRARY,
PACKAGESET, or PROGRAM resource is private to that version of that application. Private resources are
not available to any other application or version installed on the platform, and they are not available to
other tasks in the CICS region. The names of private resources therefore do not have to be unique in your
installation. Applications that use the CICS resources that are supported as private resources, together
with other resources such as policies and application entry points, are eligible for multi-versioning. For
more information about private resources, see “Private resources for application versions” on page 321.
The following artifacts can be deployed using a CICS bundle. The resource type is defined as a URI in the
bundle manifest.
Application event or system event
For CICS event processing, you can use CICS Explorer to define and deploy event bindings, capture
specifications, and EP adapters in CICS bundles. When you install a BUNDLE resource for a business
event, CICS dynamically creates suitable EVENTBINDING, CAPTURESPEC, and EPADAPTER resources

Chapter 7. Defining resources 309

 in the CICS region. For instructions to define business events using the CICS event binding editor in
CICS Explorer, and deploy them in CICS bundles, see Creating an event binding.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/EPADAPTER
http://www.ibm.com/xmlns/prod/cics/bundle/EPADAPTERSET
http://www.ibm.com/xmlns/prod/cics/bundle/EVENTBINDING
Atom feed
To serve an Atom feed from CICS, you can use CICS Explorer to create and deploy an Atom
configuration file in a CICS bundle. When you install a BUNDLE resource for an Atom feed, CICS
dynamically creates suitable ATOMSERVICE, XMLTRANSFORM, and URIMAP resources in the CICS
region. For instructions to define Atom feeds using the Atom configuration wizard and the Atom
configuration editor in CICS Explorer, and deploy them in CICS bundles, see Setting up CICS
definitions for an Atom feed.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/ATOMSERVICE
Channel-based service
Channel-based services are CICS applications that are described as components and assembled
together using the Service Component Architecture (SCA) tooling in IBM Developer for z/OS. The SCA
tooling deploys the composite application to CICS as a CICS bundle. These services are available only
to other CICS applications that use the INVOKE SERVICE API command and pass binary data in
containers on a channel. For instructions to use IBM Developer for z/OS to create a channel-based
service, see Creating a channel-based service.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/SCACOMPOSITE
File
You can create a definition for a FILE resource in a CICS bundle. The following file types are supported
for definition in CICS bundles:
• VSAM files (including files that refer to CICS-maintained, user-maintained, and coupling facility data
tables, as well as files that refer to VSAM data sets)
• Remote VSAM files
• Remote BDAM files
When you install a BUNDLE resource that contains a file definition, CICS dynamically creates the FILE
resource in the CICS region.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/FILE
JSON transform
A JSON transform is used by an application with the linkable interface for transforming JSON.
The JSON assistant uses a language structure or a JSON schema to generate the JSON binding,
and also creates a bundle. When you install the BUNDLE resource, CICS dynamically creates an
JSONTRANSFRM bundle part that defines where the JSON binding and schema are located.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/JSONTRANSFRM
JVM server
You can create a definition for a JVMSERVER resource in a CICS bundle. The JVM profile for the JVM
server is packaged in the CICS bundle along with the resource definition, so that the JVM profile is
available in any CICS region where you install the CICS bundle. You can create the JVM profile using
sample templates for an OSGi JVM server, an Axis2 JVM server, or a Liberty JVM server, or import an
existing JVM profile to the CICS bundle from elsewhere in the workspace or from the local file system.
You can customize the JVM profile to fit your system’s requirements. When you install a BUNDLE
resource that contains a JVM server definition, CICS dynamically creates the JVMSERVER resource in
the CICS region.

310 CICS TS for z/OS: Configuring CICS

 URI:
http://www.ibm.com/xmlns/prod/cics/bundle/JVMSERVER
Library
You can create a definition for a LIBRARY resource in a CICS bundle. When you install a BUNDLE
resource that contains a definition for a dynamic program LIBRARY concatenation, CICS dynamically
creates the LIBRARY resource in the CICS region.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/LIBRARY
Node.js application
Node.js applications are deployed and managed in a BUNDLE resource. They are visible as
BUNDLEPARTS using the BUNDLEPART SPI.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/NODEJSAPP
OSGi bundle
Java applications that are packaged as OSGi bundles can be deployed in CICS bundles to run in
a JVM server. When you install a BUNDLE resource that contains OSGi bundles and services, CICS
dynamically creates the OSGIBUNDLE and OSGISERVICE resources that represent the OSGi bundles
and services in the OSGi framework. CICS uses the resources to manage the life cycle of the OSGi
bundles and OSGi services. For instructions to use the IBM CICS SDK for Java to create CICS bundles
that contains OSGi bundles, see Developing applications using the IBM CICS SDK for Java.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/OSGIBUNDLE
Package set
You can create a definition for a PACKAGESET resource in any CICS bundle that is deployed with a
CICS platform, application, or application binding project. Use the PACKAGESET resource to define
which Db2 collection to use to qualify any SQL requests made by application tasks running on a CICS
platform.
When you install a BUNDLE resource that contains a PACKAGESET resource with a CICS application or
application binding, it is private to the application. CICS defines that Db2 collection to be used by all
the application tasks.
When you install a BUNDLE resource that contains a PACKAGESET resource with a CICS platform,
CICS defines the Db2 collection that will be used by all application tasks that run on the platform
where no specific Db2 collection is defined for the CICS application.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/PACKAGESET
Pipeline
You can create a definition for a PIPELINE resource in a CICS bundle. The pipeline configuration file
for the pipeline is packaged in the CICS bundle along with the resource definition. You can create
the pipeline configuration file using one of the CICS-supplied sample configuration files for service
providers and service requesters, or import an existing configuration file from the local file system.
When you install a BUNDLE resource that contains a pipeline definition, CICS dynamically creates the
PIPELINE resource in the CICS region. PIPELINE resources that are defined in CICS bundles can only
be used with WEBSERVICE resources that are defined in CICS bundles or created dynamically by a
pipeline scan.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/PIPELINE
Policy
You can use CICS Explorer to define and deploy policies in a CICS bundle. Policy task rules can be
deployed to define the action to be taken when an individual CICS user task crosses a threshold, such
as consuming too much CPU or allocating too much storage. Policy system rules can be deployed
to define the action to be taken when something of interest happens in a CICS system, such as a

Chapter 7. Defining resources 311

 resource state change, a threshold being crossed, or an unusual system state or action. When you
install a BUNDLE resource for a policy, CICS dynamically adds the policy rules to the set of rules used
to manage the CICS region.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/POLICY
Program
You can create a definition for a PROGRAM resource in a CICS bundle for any high-level programming
language. When you install a BUNDLE resource that contains a program definition, CICS dynamically
creates the PROGRAM resource in the CICS region.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/PROGRAM
TCP/IP service
You can create a definition for a TCPIPSERVICE resource in a CICS bundle. When you install a BUNDLE
resource that contains a TCP/IP service definition, CICS dynamically creates the TCPIPSERVICE
resource in the CICS region.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/TCPIPSERVICE
Transaction
You can create a definition for a TRANSACTION resource in a CICS bundle. When you install a BUNDLE
resource that contains a transaction definition, CICS dynamically creates the TRANSACTION resource
in the CICS region.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/TRANSACTION
URI map
You can create a definition for a URIMAP resource in a CICS bundle. When you install a BUNDLE
resource that contains a URI map definition, CICS dynamically creates the URIMAP resource in the
CICS region.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/URIMAP
Web application
Web applications that are packaged as WAR files, an EBA file, or EAR files can be deployed
in a CICS bundle to run in a Liberty JVM server. When you install a BUNDLE resource that
contains a web application, CICS dynamically creates suitable Liberty application definitions in the
installedApps.xml file. The Liberty JVM server uses these definitions to dynamically create
the web application, and the lifecycle of the web application can be controlled using the BUNDLE
resource. For instructions to use the IBM CICS SDK for Java to create CICS bundles that contain web
applications, see Deploying applications to a JVM server.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/WARBUNDLE
http://www.ibm.com/xmlns/prod/cics/bundle/EBABUNDLE
http://www.ibm.com/xmlns/prod/cics/bundle/EARBUNDLE
Web service
You can create a definition for a WEBSERVICE resource in a CICS bundle. When you install a BUNDLE
resource that contains a web service definition, CICS dynamically creates the WEBSERVICE resource
in the CICS region. Along with the WEBSERVICE resource definition, you can import a web service
binding file and a WSDL document or WSDL archive file to be packaged in the bundle. You can also
generate URIMAP resources and alias transactions to support the web service. For a web service
provider, you can optionally include a PROGRAM resource definition in the bundle. The definition for
the PROGRAM resource can be edited using the resource editor in the CICS Explorer.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/WEBSERVICE

312 CICS TS for z/OS: Configuring CICS

XML-based service
XML-based services are typically web service provider or requester applications that use XML to
interface with other applications and use a binding to transform the data. XML-based services are
available to CICS applications that use the INVOKE SERVICE API command or to business services
that are on an external network. If you create a web service using the SCA tooling in IBM Developer
for z/OS, you can deploy the web service as a CICS bundle. When you install a BUNDLE resource
that contains a web service, CICS dynamically creates a number of resources, including URIMAP
and WEBSERVICE resources. For instructions to use IBM Developer for z/OS to create an XML-based
service, see Creating an XML-based service.
An XML-based service can also be an application that uses the TRANSFORM API commands to map
application data to and from XML. The XML assistant uses a language structure or an XML schema to
generate the XML binding, and can also create a bundle. When you install the BUNDLE resource, CICS
dynamically creates an XMLTRANSFORM resource that defines where the XML binding and schema
are located.
URI:
http://www.ibm.com/xmlns/prod/cics/bundle/XMLTRANSFORM
You can extend the list of supported resource types by using the callback interface in the resource
lifecycle manager domain. With this interface, vendors can create new user resource types and manage
them in BUNDLE resources.
Related concepts
Referencing zFS artifacts in a bundle
A number of CICS resources reference external zFS artifacts for further configuration information. For
example, JVMSERVER resources require a JVM profile, and PIPELINE resources require a pipeline
configuration file. If these resources are defined in a CICS bundle, the zFS artifacts that they require
must also be stored in the CICS bundle, and referenced using a relative zFS name.
Manifest contents for a CICS bundle
Each CICS bundle contains a bundle manifest that describes the contents of the bundle. A bundle
manifest describes the bundle, which resources to design or modify in the CICS region when provisioned,
and dependencies required for the CICS bundle to successfully enable.
Scoping of bundles
The BUNDLE resource definition provides the BASESCOPE attribute as a way of applying a scope to
related BUNDLE resources. You can use this attribute for bundles that are deployed on a platform,
or to set a Service Component Architecture (SCA) domain for a bundle that contains SCA composite
applications.
OSGi bundle recovery on a CICS restart
When you restart a CICS region that contains OSGi bundles, CICS recovers the BUNDLE resources and
installs the OSGi bundles into the framework of the JVM server.
Security for bundles
Different security profiles and checks apply to BUNDLE resources created from a definition, and to
BUNDLE resources that are created when you install an application or platform.
Variables in a CICS project
You can use variables to alter attribute values quickly and easily, which simplifies deployment to multiple
environments because you can resolve the variables by using a properties file that is specific to each
environment.
Related reference
Variables and properties files definition
When you define variables and their associated properties files, use these rules to ensure that variable
substitution can occur successfully.
Related information
Characteristics of resources in CICS bundles
Some characteristics of CICS resources change because they are defined in a CICS bundle and
dynamically created as part of a bundle deployment. When you design the architecture of an application,

Chapter 7. Defining resources 313

 or select resources from an existing application to define in CICS bundles, be aware of these important
considerations.
Private resources for application versions
When you define certain CICS resources in CICS bundles as part of an application installed on a platform,
the resources are private to that version of that application. You can therefore install more than one
resource of those types with the same name, at the same time, on the same platform instance.

Characteristics of resources in CICS bundles

Some characteristics of CICS resources change because they are defined in a CICS bundle and
dynamically created as part of a bundle deployment. When you design the architecture of an application,
or select resources from an existing application to define in CICS bundles, be aware of these important
considerations.
The full list of CICS resource types for which you can create resource definitions in CICS bundles is as
follows:
• FILE
• JVMSERVER
• LIBRARY
• PIPELINE
• PROGRAM
• TCPIPSERVICE
• TRANSACTION
• URIMAP
• WEBSERVICE
For the list of all artifacts that you can define and deploy in CICS bundles, including OSGi bundles and
events, see Artifacts that can be deployed in bundles.

Bundle and resource interdependency

When you use CICS bundles, the lifecycle of the installed resources follows the lifecycle of the bundle.
When you make available or unavailable, enable or disable, or discard a CICS bundle, the same action is
applied to all the resources that were dynamically created by the CICS bundle. In addition, if your CICS
bundle is included in an application bundle, you manage the CICS bundle as part of the application.
When a CICS bundle dynamically creates and installs a resource into a CICS region, the state of the
resource is managed through the CICS bundle by which the resource was installed. You enable or disable
the dynamically created resource by performing that action on the CICS bundle. For resources in CICS
bundles that are managed as part of an application, you also control users' access to the resources by
declaring application entry points. PROGRAM, TRANSACTION, and URIMAP resources can be declared as
application entry points, and can be set as available or unavailable to users. With application entry points,
you can install the application including the CICS bundle and its resources, then enable them to verify
the installation. When you choose to provide the service to users, you make the application containing
the CICS bundle available using the CICS Explorer. This action makes the application entry point, and
the resources in the CICS bundle, available to callers. An individual CICS bundle that contains application
entry points can also be made available by using the EXEC CICS SET BUNDLE command.
In general, you do not directly modify the attributes of a resource that was dynamically created and
installed by a CICS bundle. Instead, you install a new version of the CICS bundle with the required
changes. However, some long-lived resources, such as the FILE, TCPIPSERVICE, and JVMSERVER
resources, that have been installed by a CICS bundle, can be modified directly using CICS system
commands, although the changes are not recovered across a warm restart of CICS.
An exception is also made for JVMSERVER and TCPIPSERVICE resources to the rule about changing
the state of resources that are defined in CICS bundles. By default, these resources are not disabled
until all the current tasks have finished using them. In a situation that requires immediate removal of

314 CICS TS for z/OS: Configuring CICS

these resources, you can use the SET JVMSERVER PURGE, FORCEPURGE, or KILL command, or the SET
TCPIPSERVICE IMMCLOSE command, on the dynamically created resource in the CICS region, to force
completion of the disable process when the resources are still in use. You can only issue these commands
against a dynamically created resource after you have attempted to disable the CICS bundle or the
application with which it is deployed.
Because of bundle and resource lifecycle interdependency, application architects must consider which
set of resources for an application should have their lifecycle tied to the lifecycle of a CICS bundle. In
the following two scenarios, the organization of the bundled resources determines how the application is
administered:
• You want to modify the URI map associated with a program, without having to disable the program. To
enable modification, the URI map and program resources can be packaged into different CICS bundles.
• You want to reload a program that was installed in multiple CICS regions by a CICS bundle, without
having to disable the program across an entire CICSplex. To reload, you can apply the program change
individually to each CICS region, one region at a time. Work can be configured so that it bypasses the
region that is currently being updated, while you are applying the changes.
If an application or a CICS bundle requires a CICS resource to be available in the CICS region, but you
do not want the lifecycle of the resource to be tied to the lifecycle of the CICS bundle, you can add
the resource as a dependency for the CICS bundle. Dependencies, or imports, are specified in <import>
elements in the bundle manifest. You can specify the action that CICS takes at bundle installation time if
one of the required imports is not present in the CICS region; for example, the CICS bundle can remain
disabled, or be enabled but with a warning message. For more information about dependencies, see
“Manifest contents for a CICS bundle” on page 327.
Installed resources that are defined in CICS bundles cannot be overwritten by resource definitions with
duplicate names. When the bundle part containing a resource has been installed, if you try to install a
duplicate resource using another CICS bundle, or using RDO, EXEC CICS CREATE commands or other
methods, the request is rejected. You also cannot overwrite installed resources with a duplicate resource
that is defined in a CICS bundle. When you attempt to install the CICS bundle, if a resource with the same
name and resource type exists, the bundle part containing the resource is not installed, and the CICS
bundle is placed in an unusable state. Resources that are defined in CICS bundles are therefore protected
against accidental overwriting by duplicate resource names.

Private resources in bundles

When you create the definition for certain resource types in a CICS bundle, and deploy the CICS bundle
as part of an application on a platform, the dynamically created resource is private to that version of
that application. Private resources are not available to any other application or version installed on the
platform, and they are not available to other tasks in the CICS region. Resources deployed in this way do
not require unique names, and multiple versions of the resources can be deployed as part of application
versions, without the need to disable the previous version of the resources. For more information about
private resources, and the resource types that are supported, see Private resources for applications.

Resources to deploy with platform bundles

TCPIPSERVICE resources, JVM servers, and pipelines are resources that are likely to be required in
multiple CICS regions in a platform, and to be used to run more than one application. To enable
convenient scaling of a platform, it is good practice to deploy the CICS bundles for TCPIPSERVICE,
JVMSERVER, and PIPELINE resources as part of the platform bundle, rather than as part of an application.
You can specify the CICS regions in the platform where the resource is to be installed. For new resources,
you can add new CICS bundles to a running platform after the platform is installed.
Certain CICS resources, including PIPELINE and JVMSERVER resources, must be installed and enabled
before you install other resources that depend on them. With these resources, you can use platform
architecture to manage the dependency. Deploy the CICS bundles containing the definitions for the
required resources as part of a platform bundle, and then deploy the CICS bundles containing the
dependent resources as part of applications that are deployed on the platform. This architecture ensures

Chapter 7. Defining resources 315

 that when the resources are first installed in a CICS region or if the CICS region is restarted, the required
resources and the dependent resources are installed and enabled in the correct order.

Mixed case resource names

CICS bundles support mixed case names for resources where these are supported in CICS. However,
your file system might not allow files with the same name but different cases to reside in the same CICS
bundle project. If you require duplicate resource names that use different cases, define these resources
in separate CICS bundle projects.

Escaped characters in resource names

When you save a CICS bundle in the CICS Explorer, certain characters in the resource names are escaped
so that the resource can be used in different file systems. When you expand the CICS bundle in the CICS
Explorer and view the resources defined in the CICS bundle, the resource names are displayed with the
escape sequences. When you open the resources for editing, the resource names are displayed with the
original unescaped characters.
The following characters in the names of resources are escaped when you save a CICS bundle in the CICS
Explorer:

Table 38. Escape sequences in resource names in CICS bundles

Character Escape sequence
. (period) %2E
/ (forward slash) %2F
& (ampersand) %26
? (question mark) %3F
: (colon) %3A
| (vertical bar) %7C
" (double quotation mark) %22
; (semicolon) %3B
< (less than) %3C
> (greater than) %3E
¬ (logical not) %AC

FILE resources
The following file types are supported for definition in CICS bundles:
• VSAM files (including files that refer to CICS-maintained, user-maintained, and coupling facility data
tables, as well as files that refer to VSAM data sets)
• Remote VSAM files
• Remote BDAM files
The initial status of a FILE resource that is dynamically created from a CICS bundle is derived from the
initial status of the CICS bundle that defines the resource. As a result, it is not possible to define a FILE
resource with a STATUS of UNENABLED to inhibit the implicit opening of files by applications.
The PASSWORD attribute is not supported for dynamically created FILE resources.
When a file that is defined in a CICS bundle is installed, it is added to the catalog. CICS recovers the
bundle installed files from the catalog during a warm or emergency restart. These recovered files are

316 CICS TS for z/OS: Configuring CICS

used for the CICS recovery only. After CICS completes the recovery, all these files are deleted. When the
bundle is re-created, CICS picks up the definition from the bundle directory, and creates a new file. If a
file recovered from the catalog has a retained lock, it cannot be deleted on completion of recovery, and as
a result, the file becomes orphaned (does not belong to any bundle) and has to be deleted manually after
CICS has completed restart.

JVMSERVER resources
For JVM servers that are packaged in CICS bundles, the JVM profiles are packaged with the resource
definitions in the CICS bundles. You can therefore install the JVM server in any CICS region without
needing to set up a JVM profile in the local JVM profile directory for the CICS region.
When creating a JVM server, you can create the JVM profile using sample templates for an OSGi JVM
server, an Axis2 JVM server, or a Liberty JVM server, or import an existing JVM profile to the CICS bundle
from elsewhere in the workspace or from the local file system.
The set of acceptable characters in the JVM profile name is more restricted when the JVMSERVER
resource is defined in a CICS bundle. For details, see JVMSERVER attributes. The directory name for the
directory where the JVM profile is stored is limited to 240 characters, which is the same limit that applies
to JVM profiles that are not defined in CICS bundles.
A JVM server that is defined in a CICS bundle must be installed and enabled before you install OSGi
bundles or other application artifacts for Java applications that run in it. It is good practice to deploy
a CICS bundle containing the definition for a JVMSERVER resource as part of a platform bundle, and
to then deploy the CICS bundles containing OSGi bundles or other Java application artifacts as part of
applications that are deployed on the platform. This architecture ensures that when the resources are
first installed in a CICS region or if the CICS region is restarted, the JVM server and the Java application
resources are installed and enabled in the correct order.

LIBRARY resources
If a LIBRARY resource is included in a CICS bundle, it should only be used for loading the modules used
by that CICS bundle. Although advisable, this requirement is not enforced for a stand-alone CICS bundle,
but it is enforced for a CICS bundle that is packaged and installed as part of an application on a platform.
The BUNDLEPART resource associated with the LIBRARY resource does not report a status of DISABLED
until the LIBRARY concatenation and all programs loaded from it have a use-count of zero. It might be
necessary to purge work from CICS so that the bundle disable process can complete.
If a program is loaded from a LIBRARY concatenation that was defined and installed by a CICS bundle,
that program is treated as though it was defined in the CICS bundle, even though the program might have
been defined independently. The lifecycle of these programs conforms to the lifecycle of the CICS bundle
in which the LIBRARY resource is defined. If a CICS bundle that contains a LIBRARY resource is disabled,
all programs loaded from that LIBRARY concatenation are disabled.

PIPELINE resources
For pipelines that are packaged in CICS bundles, the pipeline configuration files are also packaged with
the resource definitions in the CICS bundles. You can create a pipeline configuration file using one of the
CICS-supplied sample pipeline configuration files, or import an existing pipeline configuration file from
the local file system.
If a PIPELINE resource is packaged in a CICS bundle, it should be deployed as part of a platform
for hosting WEBSERVICE resources that are defined using CICS bundles. PIPELINE resources that are
defined in CICS bundles can only be used with WEBSERVICE resources that are defined in CICS bundles
or created dynamically by a pipeline scan. WEBSERVICE resources defined using the CICS CSD or BAS are
not compatible with PIPELINE resources that are defined in CICS bundles.
A PIPELINE resource that is packaged in a CICS bundle must be installed and enabled before you install
the WEBSERVICE resources that require it. It is good practice to deploy a CICS bundle containing the
definition for a PIPELINE resource as part of a platform bundle, and to then deploy the CICS bundles

Chapter 7. Defining resources 317

 containing WEBSERVICE resources as part of applications that are deployed on the platform. This
architecture ensures that when the resources are first installed in a CICS region or if the CICS region
is restarted, the PIPELINE resource and the WEBSERVICE resources are installed and enabled in the
correct order.
A PIPELINE resource that is defined in a CICS bundle can specify a WSDIR attribute, but this is
discouraged. The SHELF attribute is not used for PIPELINE resources that are defined in CICS bundles.

PROGRAM resources
If a program is in use and the CICS bundle from which it was installed is disabled, CICS disables the
program, and no new work can be started by that program. However, the associated BUNDLEPART
resource remains enabled until the use-count for the program reaches zero. As a result, during this period
the BUNDLEPART resource, and the program both report different states. If the use-count for the program
does not reach zero after an acceptable interval, it might be necessary to purge work from CICS so that
the bundle disable process can complete.
When the bundle state has changed from DISABLING to DISABLED, the CICS bundle can be discarded.
However, if you discard the CICS bundle, the program that was installed by the bundle is discarded and
becomes unavailable until the CICS bundle is reinstalled.
The PROGRAM NEWCOPY and PROGRAM PHASEIN processes are not available for programs installed
from CICS bundles. The process for a program defined in a CICS bundle is to install a new version of the
CICS bundle, or of the application with which the CICS bundle was deployed. For PROGRAM resources
defined in stand-alone CICS bundles, you must uninstall the previous version of the CICS bundle before
you install the new version. When you deploy PROGRAM resources defined in CICS bundles as part of an
application on a platform, you can install new versions of the PROGRAM resource without uninstalling the
previous versions, and manage the availability of the new versions for users. For more information about
multi-versioning for applications, see Multi-versioning for applications deployed on platforms.
Programs that are installed by CICS bundles are not suitable for invocation from the PLT.
PROGRAM resources can be declared as application entry points, although the PROGRAM resource does
not have to be defined in a CICS bundle to be declared as an application entry point. Programs that are
declared as an application entry point must have a unique PROGRAM resource name in your environment.
For more information about programs as application entry points, see Application entry points.

TRANSACTION resources
A transaction might be allocated work that is due to be started, by an EXEC CICS START command, at a
scheduled time. If that work is scheduled to start after the CICS bundle is disabled, the scheduled work is
canceled, and no new work is allowed to start for that transaction. If the CICS bundle is then re-enabled,
the canceled work is not rescheduled, and remains canceled.
TRANSACTION resources can be declared as application entry points, although the TRANSACTION
resource does not have to be defined in a CICS bundle to be declared as an application entry point. A
TRANSACTION that is declared as an application entry point must have a unique TRANSACTION resource
name in your environment. For more information about TRANSACTION's as application entry points, see
Application entry points.

URIMAP resources
A WEBSERVICE resource is normally associated with at least one URIMAP resource. The URIMAP
resources can be packaged in the same bundle as the WEBSERVICE resource, but it can be preferable to
package them in a separate bundle that can be customized for each platform to which the WEBSERVICE
resource is deployed. For example, you might want to use a different URI in a quality assurance platform
than is used in a production platform, or define a mirror transaction for the WEBSERVICE resource in the
production platform but not in the unit testing platform.
When you define a URIMAP resource in a CICS application bundle, you can use an application entry point
declaration to control users' access to the service provided by the URIMAP resource. In this situation,

318 CICS TS for z/OS: Configuring CICS

when you install and enable the application, the service provided by the URIMAP resource is not yet
available to callers. When you choose to provide the service to users, use the CICS Explorer to make the
application containing the CICS bundle available. This makes the application entry point, and therefore
the service provided by the URIMAP resource, available to callers.
You can also declare as an application entry point a URIMAP resource that is defined outside the
application. In this situation, the service becomes available to users as soon as you install and enable the
URIMAP resource.
When you are using a URIMAP resource to provide a static response from CICS as an HTTP server, the
HFSFILE attribute specifies the name of a z/OS UNIX System Services zFS file that forms the body of the
response. For a URIMAP resource that is defined in a CICS bundle, the zFS file must be packaged in the
CICS bundle with the URIMAP resource. The HFSFILE attribute should specify a relative file path, which is
relative to the root directory of the CICS bundle. For a relative file path, do not use a slash at the beginning
of the path. For more information, see “Referencing zFS artifacts in a bundle” on page 320. Absolute
references to zFS locations outside of the bundle are possible, but strongly discouraged.

WEBSERVICE resources
For web services that are packaged in CICS bundles, you can import a web service binding file and a
WSDL document or WSDL archive file to be packaged in the bundle along with the resource definition. To
support the web service, you can use a WEBSERVICE definition packaged in a CICS bundle to generate a
URIMAP definition in a separate bundle. You can also create an alias transaction for the URI map, and an
optional URIMAP definition for WSDL discovery.
Web services that are packaged in CICS bundles have additional states of DISABLING and DISABLED,
which do not apply to web services created using other methods. When disabling is in progress for a
CICS bundle, WEBSERVICE resources defined in the bundle enter DISABLING state. Work that is currently
executing is allowed to complete, but the web service does not accept new work. When the web service
is no longer in use, the WEBSERVICE resource enters DISABLED state. Requests to a web service in
DISABLING or DISABLED state are rejected and a SOAP fault, "Web service is not in service", is sent. If
CICS is the web service requester, the INVOKE SERVICE command returns a RESP code of INVREQ and a
RESP2 value of 8.
If the CICS bundle is enabled again, the WEBSERVICE resource returns to INSERVICE state. Otherwise,
the WEBSERVICE resource can be discarded by discarding the CICS bundle. You can inquire on the
state of a WEBSERVICE resource using the EXEC CICS or CEMT INQUIRE WEBSERVICE command, the
CICSPlex SM web user interface, or the CICS Explorer, but you cannot set it manually.
Related concepts
Artifacts that can be deployed in bundles
The artifacts that you can define and deploy in CICS bundles include application and system events, Atom
feeds, channel-based services, CICS policies, CICS programs, OSGi bundles, XML-based services, and
transactions. Each of these artifacts is represented by one or more CICS resources and these resources
are dynamically created as part of the bundle deployment.
Referencing zFS artifacts in a bundle
A number of CICS resources reference external zFS artifacts for further configuration information. For
example, JVMSERVER resources require a JVM profile, and PIPELINE resources require a pipeline
configuration file. If these resources are defined in a CICS bundle, the zFS artifacts that they require
must also be stored in the CICS bundle, and referenced using a relative zFS name.
Manifest contents for a CICS bundle
Each CICS bundle contains a bundle manifest that describes the contents of the bundle. A bundle
manifest describes the bundle, which resources to design or modify in the CICS region when provisioned,
and dependencies required for the CICS bundle to successfully enable.
Scoping of bundles
The BUNDLE resource definition provides the BASESCOPE attribute as a way of applying a scope to
related BUNDLE resources. You can use this attribute for bundles that are deployed on a platform,

Chapter 7. Defining resources 319

 or to set a Service Component Architecture (SCA) domain for a bundle that contains SCA composite
applications.
OSGi bundle recovery on a CICS restart
When you restart a CICS region that contains OSGi bundles, CICS recovers the BUNDLE resources and
installs the OSGi bundles into the framework of the JVM server.
Security for bundles
Different security profiles and checks apply to BUNDLE resources created from a definition, and to
BUNDLE resources that are created when you install an application or platform.
Variables in a CICS project
You can use variables to alter attribute values quickly and easily, which simplifies deployment to multiple
environments because you can resolve the variables by using a properties file that is specific to each
environment.
Related reference
Variables and properties files definition
When you define variables and their associated properties files, use these rules to ensure that variable
substitution can occur successfully.
Related information
Private resources for application versions
When you define certain CICS resources in CICS bundles as part of an application installed on a platform,
the resources are private to that version of that application. You can therefore install more than one
resource of those types with the same name, at the same time, on the same platform instance.

Referencing zFS artifacts in a bundle

A number of CICS resources reference external zFS artifacts for further configuration information. For
example, JVMSERVER resources require a JVM profile, and PIPELINE resources require a pipeline
configuration file. If these resources are defined in a CICS bundle, the zFS artifacts that they require
must also be stored in the CICS bundle, and referenced using a relative zFS name.
Storing the zFS configuration files in the CICS bundle ensures that the resource definition and its
configuration files are deployed as an atomic unit. If you update the configuration files after deployment,
make the change in the CICS bundle project in the CICS Explorer, and the bundle should be redeployed.
In most cases the CICS Explorer contains rich editors for working with the configuration files.
When the CICS bundle containing the resource definition is installed, CICS resolves the reference to the
zFS configuration file relative to the CICS bundle's root directory. The configuration file can be stored in
the root directory or in a subdirectory in the CICS bundle project.
For applications that are deployed in a JVM server, the &CONFIGROOT; symbol can be used in the JVM
profile, which is substituted at runtime with the root directory for the CICS bundle. Applications can use
the value of the com.ibm.cics.jvmserver.configroot system property to locate the configuration
files for the JVM server.
Related concepts
Artifacts that can be deployed in bundles
The artifacts that you can define and deploy in CICS bundles include application and system events, Atom
feeds, channel-based services, CICS policies, CICS programs, OSGi bundles, XML-based services, and
transactions. Each of these artifacts is represented by one or more CICS resources and these resources
are dynamically created as part of the bundle deployment.
Manifest contents for a CICS bundle
Each CICS bundle contains a bundle manifest that describes the contents of the bundle. A bundle
manifest describes the bundle, which resources to design or modify in the CICS region when provisioned,
and dependencies required for the CICS bundle to successfully enable.
Scoping of bundles
The BUNDLE resource definition provides the BASESCOPE attribute as a way of applying a scope to
related BUNDLE resources. You can use this attribute for bundles that are deployed on a platform,

320 CICS TS for z/OS: Configuring CICS

 or to set a Service Component Architecture (SCA) domain for a bundle that contains SCA composite
applications.
OSGi bundle recovery on a CICS restart
When you restart a CICS region that contains OSGi bundles, CICS recovers the BUNDLE resources and
installs the OSGi bundles into the framework of the JVM server.
Security for bundles
Different security profiles and checks apply to BUNDLE resources created from a definition, and to
BUNDLE resources that are created when you install an application or platform.
Variables in a CICS project
You can use variables to alter attribute values quickly and easily, which simplifies deployment to multiple
environments because you can resolve the variables by using a properties file that is specific to each
environment.
Related reference
Variables and properties files definition
When you define variables and their associated properties files, use these rules to ensure that variable
substitution can occur successfully.
Related information
Characteristics of resources in CICS bundles
Some characteristics of CICS resources change because they are defined in a CICS bundle and
dynamically created as part of a bundle deployment. When you design the architecture of an application,
or select resources from an existing application to define in CICS bundles, be aware of these important
considerations.
Private resources for application versions
When you define certain CICS resources in CICS bundles as part of an application installed on a platform,
the resources are private to that version of that application. You can therefore install more than one
resource of those types with the same name, at the same time, on the same platform instance.

Private resources for application versions

When you define certain CICS resources in CICS bundles as part of an application installed on a platform,
the resources are private to that version of that application. You can therefore install more than one
resource of those types with the same name, at the same time, on the same platform instance.
For supported resource types, a CICS resource is private if the resource is defined in a CICS bundle that
is packaged and installed as part of an application, either as part of the application bundle, or as part of
the application binding. When you create a CICS resource in this way, the resource is not available to any
other application or version installed on the platform, and it is not available to other applications in the
CICS region. It can be used only by the version of the application where the resource is defined. These
resources are known as private resources.
The following CICS resources are supported as private resources for applications:
• LIBRARY resources, which represent one or more data sets, known as dynamic program LIBRARY
concatenations, from which program load modules can be loaded.
• PACKAGESET resources, which represent Db2 collections and are used to qualify which table in a Db2
database an unqualified EXEC SQL request refers to.
• POLICY resources, which represent one or more rules that manage the behavior of user tasks in CICS
regions.
• PROGRAM resources, which represent an application program. A program that is auto-installed by a
task for an application that is deployed on a platform is also private to that version of the application.
CICS resources of other resource types that are defined as part of applications, and CICS resources that
are defined by any other methods, are publicly available for all tasks. These resources are known as
public resources. In applications that have only a single version, private resources that are declared as
application entry points become public resources when the application entry point is made available. For
multi-versioned applications, if the application is the highest available version, a program that is declared

Chapter 7. Defining resources 321

 as an application entry point is public. The programs that are declared as application entry points for the
other versions of the same application are private.
If you do not want a resource of the supported resource types to be private, do not package the resource
definition as part of an application. Instead, define the CICS resource using a standalone CICS bundle, a
CICS bundle that is installed at the level of a platform, the CICS CSD, or the CICSPlex SM data repository.
If an application requires the CICS resource to be available in the CICS region, add the resource as a
dependency for the application or the application binding, in an <import> element of the bundle manifest.
POLICY and PACKAGESET resources, which can be defined only in CICS bundles, have the same support
as private resources when they are defined in a CICS bundle that is deployed as part of an application.
You can therefore use POLICY and PACKAGESET resources with the same name in different applications
and application versions.
Private resources relate to a specific version of the application, not just a specific application. They
therefore enable the installation of multiple versions of applications on the same platform instance, at
the same time. For more information about multi-versioning for applications, see Multi-versioning for
applications deployed on platforms.

Managing private resources for applications

When you define a private resource in a CICS bundle that is packaged and installed as part of an
application, the resource name does not have to be unique in your installation. You can use this facility
to avoid resource name clashes between applications that were developed independently, but used the
same resource names. The requirement for unique resource names for the supported CICS resources can
be removed by managing the resources as part of applications deployed on a platform. You can use this
process to assist with server consolidation.
When you change an application, you use CICS Explorer to modify the relevant elements of the
application that are packaged in CICS bundles, apply a new version number to those CICS bundles
to identify the change, and then reversion and reinstall the application. You leave any unmodified
CICS bundles at the same version number as before, because CICS manages the process of multiple
installations of CICS bundles with the same ID and version number.
Reinstallation of unmodified CICS bundles is only available for CICS bundles that are installed as part of
an application deployed on a platform. Standalone CICS bundles cannot be reinstalled if they are already
installed with the same ID and version, or in the case of CICS bundles created in releases before CICS
TS Version 5.1, installed with no ID and version. However, the same CICS bundle can be installed in
CICS regions as a standalone CICS bundle, and also installed and reinstalled as part of one or more
applications deployed on a platform.
Special CICS messages are issued when actions such as installing and discarding are performed on
private resources. The messages provide the same information as for the corresponding actions on public
resources of that type, but they also state the platform, application, and application version to which the
private resource applies, so that you can audit or troubleshoot the actions in the relevant context.
To view the private resources for each installed version of an application, use the CICS Explorer. In the
application descriptor editor, you can view the private resources and the application entry points for the
application by resource type, and filter them by CICS region or by CICS bundle to help locate particular
resources. You can also view the DD names that z/OS has generated for the LIBRARY concatenation of
data sets for private LIBRARY resources.
You can inquire on or browse private resources using the EXEC CICS INQUIRE system programming
command for the resource type. By default, CICS searches for the resources that are available to the
program where the EXEC CICS INQUIRE command is issued. You can also choose to browse private
resources for a specified application.
• When you issue an EXEC CICS INQUIRE command from a public program, information is returned
about the named public resource. If the resource is not available as a public resource, a "not found"
response is returned.
• When you issue an EXEC CICS INQUIRE command from a program that is running under a task for an
application deployed on a platform, information is returned about the named private resource for that

322 CICS TS for z/OS: Configuring CICS

 application, if it exists. If the application does not have a private resource with that name, information
is returned about a public resource with the specified name. If the resource is not available as a private
resource for that application or as a public resource, a "not found" response is returned.
• When you use an EXEC CICS INQUIRE command in browse mode from a public program, if you do
not specify any other input parameters, the set of public resources of the specified type is returned.
If the same browse command is issued from a program that is running under a task for an application
deployed on a platform, the browse returns a set of resources consisting of any private resources of the
specified type for the application, and the public resources of the specified type.
• To browse the private resources for an application, from either a public program or a private program,
issue the EXEC CICS INQUIRE command with the START option and specify as input the application
context, consisting of the platform, application, and application version. The browse returns a set
of resources consisting of only the private resources of the specified type for the application. If no
application is found with the specified application context, the APPNOTFOUND condition is returned.
For more information about browsing private resources, including examples of browsing resources for
a different application from the application where you issue the command, see Browsing resource
definitions.
To support private resources in the CICSPlex SM real-time analysis (RTA) function, you must specify
the application context parameters PLATFORM, APPLICATION, APPLMAJORVER, APPLMINORVER and
APPLMICROVER in the evaluation definition (EVALDEF) for the resource. For instructions to create and
maintain real-time analysis definitions using user-defined CICSPlex SM WUI views and resource objects,
see Real-time analysis.
CICS produces separate statistics records for private resources. A statistics record for a private resource
has information about the application for which the resource was defined. The statistics DSECTs and
DFHSTUP reports for public program and library resources have corresponding DSECTs and DFHSTUP
reports for private resources. Programs that are declared as application entry points are identified and
reported in both the public and private statistics, because, while the entry point is publicly accessible, it is
also part of the application.

Private resources as dependencies

In a CICS bundle that is packaged as part of an application deployed on a platform, public or private
resources can be defined as dependencies, including private programs that are autoinstalled by an
application. CICS checks first for a private resource with the specified type and name in the same
application as the CICS bundle that contains the <import> element in the bundle manifest file. If more
than one version of the application is installed, the current application context determines the version of
the private resource that is imported. If the resource is not found as a private resource for the application,
CICS checks for a public resource in the CICS region that matches the specified type and name, and
imports that resource. You cannot import private resources from other applications.

Private LIBRARY resources

LIBRARY resources represent one or more data sets, known as dynamic program LIBRARY
concatenations, from which program load modules can be loaded. The LIBRARY resource is supported as
a private resource for an application version. Each version of an application should include at least one
private LIBRARY resource representing the version-specific data sets containing the load modules for the
application.
• When a task for an application deployed on a platform requires a program load, the private LIBRARY
concatenations defined for that version of the application are searched first, so that the correct version
of the program is loaded. If multiple LIBRARY concatenations are defined for the same application
version, they are searched in order of their ranking.
• If there are no LIBRARY concatenations defined in the application, or the program is not found in any
of the private LIBRARY concatenations, the public LIBRARY concatenations defined for the whole CICS
region (including DFHRPL) are searched.

Chapter 7. Defining resources 323

 • For a task that is not associated with an application deployed on a platform, only the public LIBRARY
concatenations are searched, so all program load modules that are resident in private LIBRARY
concatenations are not available.
If any of the private LIBRARY concatenations for an application are disabled, because the CICS bundle
that defines the relevant LIBRARY resource is disabled, CICS does not search any other private LIBRARY
concatenations, or any public LIBRARY concatenations that are defined for the whole CICS region.
All subsequent program loads by the application therefore fail until the CICS bundle that defines the
LIBRARY resource is enabled.
For a private LIBRARY resource that is defined in a CICS bundle that is packaged and installed as part of
an application bundle or application binding bundle, the name of the LIBRARY resource is not used as the
DD name for the LIBRARY concatenation of data sets. Instead, CICS requests a unique DD name for the
LIBRARY concatenation of data sets when the application is installed on the platform. The resource name
can therefore be the same as LIBRARY names used elsewhere in the installation, or by different versions
of the application. CICS issues message DFHLD0518 to state the DD name that z/OS has generated for
the LIBRARY concatenation. You can also view the data set names for an installed application in the CICS
Explorer.

Private PACKAGESET resources

The private resource PACKAGESET represents a Db2 collection. A PACKAGESET resource has a single
attribute, name, which is the name of a Db2 collection identifier and is up to 128 bytes in length. Use
a PACKAGESET to specify different collection identifiers across different environments by enabling CICS
to issue the EXEC SQL SET CURRENT PACKAGESET command on behalf of the application. This resource
makes the handling of data in a cloud environment easier and more flexible.
An application can have a maximum of two PACKAGESET resources associated with it. If more than one
PACKAGESET resource is installed, the associated resource is selected in the following order:
1. The PACKAGESET resource that is installed as part of the application or the application binding.
Installing a PACKAGESET resource as part of the application binding enables the use of different
collection identifiers in different environments without changing the application bundle. For example,
test, quality assurance, and production environments can each associate the application with a
different PACKAGESET resource, and therefore a different collection identifier. If a PACKAGESET
resource is installed as part of an application rather than its application binding, the same
PACKAGESET resource and therefore the same collection identifier will be used in all environments.
2. The PACKAGESET resource that is installed as part of the platform. With this PACKAGESET resource
associated, the same PACKAGESET resource and therefore the same collection identifier will be used
by all applications running on the platform.
When the CICS-Db2 attachment facility processes the first SQL request for a unit of work, the facility
checks whether a PACKAGESET resource exists that applies to the task. First, it checks whether a
PACKAGESET resource is defined whose scope matches the platform, application and version in the
application context of the task. If it is not, the facility checks whether a PACKAGESET resource is defined
for all applications on the platform. If a PACKAGESET resource exists, the CICS-Db2 attachment facility
links to a CICS-supplied program, DFHD2SPS, to issue an EXEC SQL SET CURRENT PACKAGESET
command before it processes the first SQL request from the application.
For subsequent SQL requests, no additional processing is required unless the application context
changes. If the application context has changed, the CICS-Db2 attachment facility links to DFHD2SPS
to either set the new package set name, or to set a blank package set name if the new context does not
have a PACKAGESET resource defined. Examples of when application context can change are when an
EXEC CICS LINK command has been issued into a new application, or when an EXEC CICS LINK call
returns to the calling application.
At syncpoint time, the CICS-Db2 attachment facility links to DFHD2SPS to reset the PACKAGESET
resource to blank.
DFHD2SPS runs as an concurrency(REQUIRED), API(CICSAPI), EXECKEY(CICS) program on an L8 open
TCB. It is linked to from the CICS-Db2 TRUE DFHD2EX1, which typically is running on an L8 TCB, so no

324 CICS TS for z/OS: Configuring CICS

TCB switching overhead is incurred. However, for Java programs and for XPLINK C programs, DFHD2EX1
runs on a T8 or X8 TCB respectively, and so TCB switches will occur to the L8 TCB and back again when
invoking DFHD2SPS.
The PACKAGESET resource is optional, and existing mechanisms to manage different collections across
different environments remain available, for example, multiple plans, dynamic plan exits, or setting the
package set yourself in the application.
Important: Existing programs that use SET CURRENT PACKAGESET commands must reestablish their
package sets after calling applications that use a PACKAGESET resource. To reestablish package sets,
issue another SET CURRENT PACKAGESET command. CICS has no knowledge of package sets other than
those defined by a PACKAGESET resource.
Only use the bundle-defined PACKAGESET resource as part of an application, typically through the
application binding. Any attempt to install a stand-alone bundle that contains a PACKAGESET resource
that is not part of an application or platform will fail.

Private POLICY resources

POLICY resources represent one or more rules that manage the behavior of user tasks in CICS regions. A
policy is an XML definition that contains one or more rule types with associated thresholds and actions.
The policy rules describe the controls or actions that can be applied to one or more tasks. A condition and
action pair make up a policy rule, and one or more policy rules can be defined within a policy. A policy is
defined in a CICS bundle and a CICS bundle can consist of one or more policies.
CICS performs the action that is specified in the policy when tasks that are running exceed defined
thresholds for resource usage. You can deploy policies to monitor the resource utilization of a user task,
and to automatically respond when resource usage exceeds the thresholds you define. As long as a task
is relinquishing control to CICS by issuing EXEC CICS commands, excessive resource usage, and looping
and runaway transactions, can be detected and dealt with appropriately.
Policies are always defined in CICS bundles, which are always deployed to a specific scope. The scope can
be an application, an operation within the application, or a platform.
Policies define a contract about how you want aspects of an application or system to behave. Policies
apply to instances of user tasks, and different groups of tasks can share a common set of policies, thus
allowing sections of the workload to be controlled in different ways. The collection of policy rules that are
associated with tasks that are running in an application or platform define the boundaries within which a
task can safely execute. They allow systems administrators to set, in advance, limits on the behavior of
user applications. In this way, policies enable CICS to measure, react to, and enforce the behavior of tasks
that transgress any of the rules that are defined in the policies that apply to them, as they execute.
For more information about polices, see CICS policies.

Private PROGRAM resources

A PROGRAM resource represents a program load module that is stored in the program library. The
PROGRAM resource is supported as a private resource for an application version. A program that is
auto-installed by a task for an application that is deployed on a platform is also private to that version of
the application.
Only one copy of each version of each program is loaded in CICS storage. Before loading a private
program, CICS checks whether that version of the program has already been loaded from the same data
set (PDS or PDSE) with a matching PROGRAM resource definition. If so, CICS uses the existing copy. The
following rules therefore apply when you are reusing PROGRAM resource names:
• Multiple applications that are intended to share the same program loaded from the same PDS or PDSE
must use the same attributes in the PROGRAM resource definition.
• If multiple applications use the same name for different program resources, each application must load
the programs from a different data set (PDS or PDSE).

Chapter 7. Defining resources 325

 If you specify RELOAD=YES in the PROGRAM resource definition for a private program, its behavior for
program loading changes to be the same as for a public program. A program control link, load, or XCTL
request brings a fresh copy of the program into storage. RELOAD(YES) programs cannot be reused, and
they cannot be shared by multiple applications. Each of the program copies must be removed from
storage explicitly, using a storage control FREEMAIN request, when it is no longer required and before the
task terminates.
If a program that is required by an application is not found in the private program directory for the
application, CICS searches the public program directory.
When the EXEC CICS LINK, XCTL, LOAD, and RELEASE commands are issued by a program that is
running under a task for an application deployed on a platform, CICS searches first for the named
program in the private program directory for the application. If the named program is not found there,
CICS then searches the public program directory.
Programs that are declared as an application entry point must have a unique PROGRAM resource name
in your environment. To enable these programs to be called from outside the application, they must be
public resources. When you make an application available that contains an application entry point for a
private PROGRAM resource, the PROGRAM resource that is named as the application entry point changes
from a private resource to a public resource. Only one instance of a public resource with a particular name
can exist in a CICS region. The PROGRAM resource therefore cannot have the same name as a public
program that is installed in the CICS region, or the same name as a public program that is defined as
an application entry point by a different installed application. However, multiple versions of the same
PROGRAM resource defined as an application entry point can be installed for multiple versions of the
same application, because CICS manages the promotion of PROGRAM resources to public status for the
versions of an application.
Related concepts
Artifacts that can be deployed in bundles
The artifacts that you can define and deploy in CICS bundles include application and system events, Atom
feeds, channel-based services, CICS policies, CICS programs, OSGi bundles, XML-based services, and
transactions. Each of these artifacts is represented by one or more CICS resources and these resources
are dynamically created as part of the bundle deployment.
Referencing zFS artifacts in a bundle
A number of CICS resources reference external zFS artifacts for further configuration information. For
example, JVMSERVER resources require a JVM profile, and PIPELINE resources require a pipeline
configuration file. If these resources are defined in a CICS bundle, the zFS artifacts that they require
must also be stored in the CICS bundle, and referenced using a relative zFS name.
Manifest contents for a CICS bundle
Each CICS bundle contains a bundle manifest that describes the contents of the bundle. A bundle
manifest describes the bundle, which resources to design or modify in the CICS region when provisioned,
and dependencies required for the CICS bundle to successfully enable.
Scoping of bundles
The BUNDLE resource definition provides the BASESCOPE attribute as a way of applying a scope to
related BUNDLE resources. You can use this attribute for bundles that are deployed on a platform,
or to set a Service Component Architecture (SCA) domain for a bundle that contains SCA composite
applications.
OSGi bundle recovery on a CICS restart
When you restart a CICS region that contains OSGi bundles, CICS recovers the BUNDLE resources and
installs the OSGi bundles into the framework of the JVM server.
Security for bundles
Different security profiles and checks apply to BUNDLE resources created from a definition, and to
BUNDLE resources that are created when you install an application or platform.
Variables in a CICS project

326 CICS TS for z/OS: Configuring CICS

 You can use variables to alter attribute values quickly and easily, which simplifies deployment to multiple
environments because you can resolve the variables by using a properties file that is specific to each
environment.
Related reference
Variables and properties files definition
When you define variables and their associated properties files, use these rules to ensure that variable
substitution can occur successfully.
Related information
Characteristics of resources in CICS bundles
Some characteristics of CICS resources change because they are defined in a CICS bundle and
dynamically created as part of a bundle deployment. When you design the architecture of an application,
or select resources from an existing application to define in CICS bundles, be aware of these important
considerations.

Manifest contents for a CICS bundle

Each CICS bundle contains a bundle manifest that describes the contents of the bundle. A bundle
manifest describes the bundle, which resources to design or modify in the CICS region when provisioned,
and dependencies required for the CICS bundle to successfully enable.
The manifest for a CICS bundle is called cics.xml and is in the META-INF subdirectory. The bundle
manifest is written in XML and conforms to a schema. For more information, see Vendor interfaces.
The bundle manifest is encoded in UTF-8 and contains information about the bundle itself, as well as
bundleparts (the definitions, exports, imports, application entry points, and policy scopes provided by the
bundle).
Bundle information
The manifest contains an optional <meta-directives> element that contains information about the
bundle; for example, it can contain a time stamp of the time when the bundle was created.
The manifest also includes details on the version information of the CICS bundle.
Definitions
The <define> element defines CICS resources that will be managed by the CICS bundle. Each
resource definition includes:
• A name for the artifact.
• A resource type that is defined as a URI.
• A relative path location to a file in the bundle. The file contains metadata for the resource.
Some definitions lead to CICS creating one or more resources dynamically; for example a
http://www.ibm.com/xmlns/prod/cics/bundle/EVENTBINDING resource type creates an
EVENTBINDING resource and one or more CAPTURESPEC resources. Other definitions, such as the
http://www.ibm.com/xmlns/prod/cics/bundle/POLICY resource type, are used by CICS only
in runtime processing and have no equivalent CICS resource definition.
CICS provides a registration and callback interface for users who wish to manage non-CICS resources,
alongside those provided by CICS. For more information, see Containers used in the callback interface
and Artifacts that can be deployed in bundles.
Exports
The <export> element provides additional information about the resources or services that a bundle
can provide. CICS does not use export statements in its processing of bundles. Exports that have been
specified can be viewed in provisioned CICS bundles using SPI, CMCI, and tooling such as the CICS
Explorer.
Imports
The <import> element defines dependencies to other resources that are required by the bundle.
Each dependency has a name and a type, but no path attributes. The dependency also has an
attribute that describes how CICS handles the BUNDLE resource installation if one of the required

Chapter 7. Defining resources 327

 imports is not present in the CICS region. The BUNDLE resource can remain disabled, enable with
warning messages, or enable with no warnings. The default behavior is that all imports are required;
the BUNDLE resource can be installed but not enabled.
In a CICS bundle that is packaged as part of an application deployed on a platform, public or private
resources can be defined as dependencies, including private programs that are autoinstalled by an
application. CICS checks first for a private resource with the specified type and name in the same
application as the CICS bundle that contains the <import> element in the bundle manifest file. If more
than one version of the application is installed, the current application context determines the version
of the private resource that is imported. If the resource is not found as a private resource for the
application, CICS checks for a public resource in the CICS region that matches the specified type and
name, and imports that resource. You cannot import private resources from other applications.
Users can extend the <import> list to include their own user resource types. For more information,
see Artifacts that can be deployed in bundles
Application entry points
If your CICS bundle is part of a CICS application, you can define one or more application entry points
in the bundle manifest. An application entry point identifies a resource that is an access point to
an application. Application entry points are used to control users' access to different versions of an
application that is deployed on a platform. They are also used to create an application context to
monitor the resource usage for applications and to identify an application being run.
The <entrypoint> element in the <modify> element defines an application entry point. The bundle
manifest can contain 0 to many <modify> elements for application entry points. The <entrypoint>
element specifies the name of the CICS resource, the type of resource, and the application operation.
It is possible to specify an application entry point for a resource that is not managed by that CICS
bundle.
Policy scopes
A policy scope is used to limit a policy to a specific application operation. When a policy is deployed
with an application scope, the policy applies to all user tasks with matching platform, application and
application version information in their application context. A policy scope is used to further limit a
policy to only those user tasks that also match the operation.
The <policyscope> element in the <modify> element defines a policy scope for a policy. The
bundle manifest can contain 0 to many <modify> elements for policy scopes. The <policyscope>
element specifies the name of the application operation and the name of the policy to apply to user
tasks for that operation. The name of the operation must be defined by a separate <entrypoint>
element and the policy must be defined by a <define> element either in the same bundle or in a
separate bundle which is deployed with the bundle defining the policy scope.

Example of a manifest
The following example shows a manifest for a CICS bundle that contains a program definition that is also
an application entry point, together with a policy and policy scope for user tasks for that application entry
point.

<?xml version="1.0" encoding="UTF-8" standalone="yes"?>

<manifest xmlns="http://www.ibm.com/xmlns/prod/cics/bundle" bundleVersion="1"
bundleRelease="0" build="IntB-201705232112">
id="CustomerRecordsStore"
bundleMajorVer="1"
bundleMinorVer="200"
bundleMicroVer="4" 1
<meta_directives>
<timestamp>2018-01-25T14:59:32.092Z</timestamp>
</meta_directives> 2
<import
name="ADDC"
type=http://www.ibm.com/xmlns/prod/cics/bundle/TRANSACTION
optional="false" warn="false"/> 3
<define
name="ADDCUST"
type=http://www.ibm.com/xmlns/prod/cics/bundle/PROGRAM
path="ADDCUST.program"/> 4

328 CICS TS for z/OS: Configuring CICS

 <define
name="CUSTLIB"
type=http://www.ibm.com/xmlns/prod/cics/bundle/LIBRARY
path="CUSTLIB.library"/> 5
<define
name="NewCustomer"
type=http://www.ibm.com/xmlns/prod/cics/bundle/POLICY
path="NewCustomer.policy"/> 6
<modify>
<entrypoint
name="ADDCUST"
type=http://www.ibm.com/xmlns/prod/cics/bundle/PROGRAM
operation="add_customer"/> 7
</modify>
<modify>
<policyscope
name="NewCustomer"
type=http://www.ibm.com/xmlns/prod/cics/bundle/POLICY
operation="add_customer"/> 8
</modify>
</manifest>

1. Contains information on the bundle project including the bundle ID and bundle version.
2. The meta directives element contains the date and time the bundle was created.
3. The bundle imports a transaction resource that must be present and enabled in the provisioned
system to enable this CICS bundle. This CICS bundle does not declare or manage the transaction
resource.
4. The bundle defines a PROGRAM resource, including the name of the resource and the path to the XML
file that defines the resource attributes.
5. The bundle defines a LIBRARY resource to dynamically load the defined PROGRAM, including the
name of the resource and the path to the XML file that defines the resource attributes.
6. The bundle defines a POLICY resource, including the name of the policy and the path to the XML file
that defines the policy attributes.
7. The bundle declares a PROGRAM resource as an application entry point for a particular operation.
8. The bundle declares that the POLICY is to be applied only to tasks which match the specified
operation.
Related concepts
Artifacts that can be deployed in bundles
The artifacts that you can define and deploy in CICS bundles include application and system events, Atom
feeds, channel-based services, CICS policies, CICS programs, OSGi bundles, XML-based services, and
transactions. Each of these artifacts is represented by one or more CICS resources and these resources
are dynamically created as part of the bundle deployment.
Referencing zFS artifacts in a bundle
A number of CICS resources reference external zFS artifacts for further configuration information. For
example, JVMSERVER resources require a JVM profile, and PIPELINE resources require a pipeline
configuration file. If these resources are defined in a CICS bundle, the zFS artifacts that they require
must also be stored in the CICS bundle, and referenced using a relative zFS name.
Scoping of bundles
The BUNDLE resource definition provides the BASESCOPE attribute as a way of applying a scope to
related BUNDLE resources. You can use this attribute for bundles that are deployed on a platform,
or to set a Service Component Architecture (SCA) domain for a bundle that contains SCA composite
applications.
OSGi bundle recovery on a CICS restart
When you restart a CICS region that contains OSGi bundles, CICS recovers the BUNDLE resources and
installs the OSGi bundles into the framework of the JVM server.
Security for bundles
Different security profiles and checks apply to BUNDLE resources created from a definition, and to
BUNDLE resources that are created when you install an application or platform.
Variables in a CICS project

Chapter 7. Defining resources 329

 You can use variables to alter attribute values quickly and easily, which simplifies deployment to multiple
environments because you can resolve the variables by using a properties file that is specific to each
environment.
Related reference
Variables and properties files definition
When you define variables and their associated properties files, use these rules to ensure that variable
substitution can occur successfully.
Related information
Characteristics of resources in CICS bundles
Some characteristics of CICS resources change because they are defined in a CICS bundle and
dynamically created as part of a bundle deployment. When you design the architecture of an application,
or select resources from an existing application to define in CICS bundles, be aware of these important
considerations.
Private resources for application versions
When you define certain CICS resources in CICS bundles as part of an application installed on a platform,
the resources are private to that version of that application. You can therefore install more than one
resource of those types with the same name, at the same time, on the same platform instance.

Scoping of bundles
The BUNDLE resource definition provides the BASESCOPE attribute as a way of applying a scope to
related BUNDLE resources. You can use this attribute for bundles that are deployed on a platform,
or to set a Service Component Architecture (SCA) domain for a bundle that contains SCA composite
applications.
BASESCOPE is an optional attribute on the BUNDLE resource definition that you can use in different ways.
You can use the IBM CICS Explorer to view all of the BUNDLE resources that are defined in a CICS region
and order them by the value of the BASESCOPE attribute.

Scoping of bundles for a platform

CICS bundles that are deployed on a platform automatically have a BASESCOPE applied when the
BUNDLE resource is created during an application deployment. A BUNDLE resource that is deployed on a
platform as part of an application bundle or an application binding bundle has a URI in the BASESCOPE
attribute with the following format:

cicsapplication://Platform/ApplicationID/MajorVersion/MinorVersion/MicroVersion

Platform is the name of the platform, ApplicationID is the ID of the application bundle, followed by the
major, minor, and micro version of the application.
CICS uses the BASESCOPE attribute to identify the relevant application and version, so that multiple
versions of the same application can be installed on a platform. The BASESCOPE attribute can be used to
restrict resources to the appropriate version of the application. For example, certain supported resource
types that are defined in a CICS bundle, then packaged and installed as part of an application bundle
or application binding bundle, are private to that version of that application. For more information about
private resources for applications, see Private resources for application versions.
The same cicsapplication format basescope can be added to CICS bundles that are outside of a platform
environment. This is useful in a stand-alone CICS region (SMSS) where you do not have a platform and
applications. In the SMSS case, it is the responsibility of the user to ensure that the basescope is properly
specified, whereas in a platform CICS automatically generates the correct basescope attribute.

Scoping of bundles for a policy

Policies are defined in CICS bundles. In a platform, policies are deployed to a specific scope. The scope
can be an application scope, an operation (within an application) scope, or a platform scope. For more
information, see Policy scopes.

330 CICS TS for z/OS: Configuring CICS

Scoping of bundles into SCA domains
The BASESCOPE attribute has a specific use for bundles that contain SCA composite applications. A
composite application is deployed on an SCA domain. An SCA domain typically represents a set of
services that provide an area of business function that is controlled by a single organization; for example,
the SCA domain for an accounts department in a business might cover all financial related functions and
contain a series of composite applications that deal with specific areas of accounting.
In a CICS region, by default there is one SCA domain. Every bundle that is deployed on the CICS region
has the same default SCA domain, although the value is empty. You can use the BASESCOPE attribute on
the BUNDLE resource definition to set a value for the SCA domain.
You can also deploy the same bundle multiple times into the CICS region by specifying different SCA
domains for the BASESCOPE attribute. CICS uses the SCA domain and the composite together to identify
the service during runtime processing. The scope of the service is available to the task that is processing
the request.
Use a unique URI for the BASESCOPE attribute value; for example, http://mycompany/HR or http://
mycompany/warehouse. CICS creates the names of services, composites, and references by extending
the value of the BASESCOPE attribute; for example, installing a service with a local name of location/
taxService into the HR SCA domain would create a scoped name of http://mycompany/HR/
location/taxService.
Do not extend the same URI to create a new SCA domain. If you extend the same URI, you might get
unexpected service or reference name clashes; for example, if you used http://mycompany/HR and
http://mycompany/HR/location as different SCA domains and had a service with a local name of
location/taxService and another service called taxService, installing these services into both the
http://mycompany/HR and http://mycompany/HR/location SCA domains create clashes with the
service names. Although you can install and enable BUNDLE resources successfully with these values,
you might get unexpected results and errors when the services are called by other applications.
Related concepts
Artifacts that can be deployed in bundles
The artifacts that you can define and deploy in CICS bundles include application and system events, Atom
feeds, channel-based services, CICS policies, CICS programs, OSGi bundles, XML-based services, and
transactions. Each of these artifacts is represented by one or more CICS resources and these resources
are dynamically created as part of the bundle deployment.
Referencing zFS artifacts in a bundle
A number of CICS resources reference external zFS artifacts for further configuration information. For
example, JVMSERVER resources require a JVM profile, and PIPELINE resources require a pipeline
configuration file. If these resources are defined in a CICS bundle, the zFS artifacts that they require
must also be stored in the CICS bundle, and referenced using a relative zFS name.
Manifest contents for a CICS bundle
Each CICS bundle contains a bundle manifest that describes the contents of the bundle. A bundle
manifest describes the bundle, which resources to design or modify in the CICS region when provisioned,
and dependencies required for the CICS bundle to successfully enable.
OSGi bundle recovery on a CICS restart
When you restart a CICS region that contains OSGi bundles, CICS recovers the BUNDLE resources and
installs the OSGi bundles into the framework of the JVM server.
Security for bundles
Different security profiles and checks apply to BUNDLE resources created from a definition, and to
BUNDLE resources that are created when you install an application or platform.
Variables in a CICS project
You can use variables to alter attribute values quickly and easily, which simplifies deployment to multiple
environments because you can resolve the variables by using a properties file that is specific to each
environment.
Related reference
Variables and properties files definition

Chapter 7. Defining resources 331

 When you define variables and their associated properties files, use these rules to ensure that variable
substitution can occur successfully.
Related information
Characteristics of resources in CICS bundles
Some characteristics of CICS resources change because they are defined in a CICS bundle and
dynamically created as part of a bundle deployment. When you design the architecture of an application,
or select resources from an existing application to define in CICS bundles, be aware of these important
considerations.
Private resources for application versions
When you define certain CICS resources in CICS bundles as part of an application installed on a platform,
the resources are private to that version of that application. You can therefore install more than one
resource of those types with the same name, at the same time, on the same platform instance.

OSGi bundle recovery on a CICS restart

When you restart a CICS region that contains OSGi bundles, CICS recovers the BUNDLE resources and
installs the OSGi bundles into the framework of the JVM server.
OSGi bundles that are packaged in CICS bundles are not stored in the CICS system definition file (CSD).
The BUNDLE resource itself is stored in the catalog, so that on a restart of the CICS region, the OSGi
bundles are dynamically re-created when the BUNDLE resource is restored.
On a cold, warm, or emergency restart of CICS, the JVM server is started asynchronously to BUNDLE
resource recovery. The JVM server must be fully available to successfully restore an OSGi bundle on a
CICS restart. Therefore, although the BUNDLE resources are recovered during the last phase of CICS
startup, the OSGi bundles are installed only when the JVM server has completed its startup.
BUNDLE resources and the OSGi bundles that they contain are installed in the correct order to ensure that
the dependencies between both CICS bundles and OSGi bundles are resolved in the framework. If CICS
fails to install an OSGi bundle, the BUNDLE resource installs in a disabled state. You can use the IBM CICS
Explorer to view the state of BUNDLE resources, OSGi bundles, and OSGi services.
Related concepts
Artifacts that can be deployed in bundles
The artifacts that you can define and deploy in CICS bundles include application and system events, Atom
feeds, channel-based services, CICS policies, CICS programs, OSGi bundles, XML-based services, and
transactions. Each of these artifacts is represented by one or more CICS resources and these resources
are dynamically created as part of the bundle deployment.
Referencing zFS artifacts in a bundle
A number of CICS resources reference external zFS artifacts for further configuration information. For
example, JVMSERVER resources require a JVM profile, and PIPELINE resources require a pipeline
configuration file. If these resources are defined in a CICS bundle, the zFS artifacts that they require
must also be stored in the CICS bundle, and referenced using a relative zFS name.
Manifest contents for a CICS bundle
Each CICS bundle contains a bundle manifest that describes the contents of the bundle. A bundle
manifest describes the bundle, which resources to design or modify in the CICS region when provisioned,
and dependencies required for the CICS bundle to successfully enable.
Scoping of bundles
The BUNDLE resource definition provides the BASESCOPE attribute as a way of applying a scope to
related BUNDLE resources. You can use this attribute for bundles that are deployed on a platform,
or to set a Service Component Architecture (SCA) domain for a bundle that contains SCA composite
applications.
Security for bundles
Different security profiles and checks apply to BUNDLE resources created from a definition, and to
BUNDLE resources that are created when you install an application or platform.
Variables in a CICS project

332 CICS TS for z/OS: Configuring CICS

 You can use variables to alter attribute values quickly and easily, which simplifies deployment to multiple
environments because you can resolve the variables by using a properties file that is specific to each
environment.
Related reference
Variables and properties files definition
When you define variables and their associated properties files, use these rules to ensure that variable
substitution can occur successfully.
Related information
Characteristics of resources in CICS bundles
Some characteristics of CICS resources change because they are defined in a CICS bundle and
dynamically created as part of a bundle deployment. When you design the architecture of an application,
or select resources from an existing application to define in CICS bundles, be aware of these important
considerations.
Private resources for application versions
When you define certain CICS resources in CICS bundles as part of an application installed on a platform,
the resources are private to that version of that application. You can therefore install more than one
resource of those types with the same name, at the same time, on the same platform instance.

Security for bundles

Different security profiles and checks apply to BUNDLE resources created from a definition, and to
BUNDLE resources that are created when you install an application or platform.

Security for BUNDLE definitions

For CICS bundles that are defined in individual CICS regions, CICS command and resource security
checks apply when you perform actions on the BUNDLE resource, in the same way as they do for
other CICS resources. The XRES system initialization parameter for the CICS region specifies whether
or not security checking is carried out for the BUNDLE resource type, among others. Resource security
for bundles is controlled by a BUNDLE security profile. The BUNDLE security profile also applies to
BUNDLEPART, OSGIBUNDLE, and OSGISERVICE resources.
Stand-alone CICS bundles need to be made available or unavailable only if they contain application
entry points. Operators with UPDATE access for the security profile for a stand-alone CICS bundle, which
specifies the BUNDLE resource type and the name of the BUNDLE resource, can make the resource
available or unavailable.
For resources that are dynamically created by CICS bundles, no additional CICS command security
checks and resource security checks take place for those resource types, either when the resources are
dynamically created at bundle install time, or when you manipulate the resources by making changes
to the CICS bundles. However, CICS command security and resource security for those resource types
do apply when you inquire on the dynamically created resources, or if you manipulate the dynamically
created resources directly.

Security for BUNDLE resources generated by applications and platforms

When an application or platform is installed in a CICSplex, any CICS bundles that are part of the
deployment are dynamically created in the appropriate CICS regions by CICSPlex SM. Each BUNDLE
resource is dynamically created, and is given a unique generated name beginning with the $ character.
You give users authority to install a platform or an application by giving them the appropriate access
for the CLOUD.DEF, CLOUD.PLATFORM, and CLOUD.APPLICATION security profiles in CICSPlex SM. When
you give users this authority, you also give them authority to install the dynamically created BUNDLE
resources in the CICS regions. CICS command security checks and resource security checks are not made
when CICS bundles are installed as part of an application or platform. Simulated CICS security checking in
CICSPlex SM is also not done when CICS bundles are installed as part of an application or platform.

Chapter 7. Defining resources 333

 When you make available or unavailable, enable or disable, or inquire on, a BUNDLE resource that was
dynamically created when you installed an application or platform, CICS command and resource security
checks and simulated CICS security checking in CICSPlex SM apply only if you perform the action directly
on the individual CICS bundle. If the CICS bundle is made available or unavailable, enabled or disabled,
or inquired on, by an action that you perform on the application or platform, security checking for the
application or platform applies instead. You cannot discard an individual CICS bundle directly if it was
created when you installed an application or platform.
Tip: To provide security for actions on individual CICS bundles that were dynamically created when you
installed an application or platform, you can set up a security profile specifying the BUNDLE resource type
and the resource name $*. Users with UPDATE access for BUNDLE.$* can make available or unavailable,
or enable or disable, BUNDLE resources created for platforms and applications, and users with READ
access can inquire on those BUNDLE resources.
The resources that are defined inside each CICS bundle installed for an application or platform are
dynamically created in the CICS regions during the installation of the dynamically created BUNDLE
resource. CICS command security checks and resource security checks for the individual resource types
do not take place when these resources are dynamically created in the CICS regions. However, CICS
command security and resource security for the individual resource types do apply when you inquire
on the dynamically created resources. You cannot directly enable, disable, or discard the dynamically
created resources in the CICS regions.
If you apply security measures to individual PROGRAM resources, for applications that are deployed on
platforms, secure the programs that are declared as application entry points, but do not secure other
programs in the applications. The security settings that you specify for a program that is part of an
application deployed on a platform apply to both public and private programs, and do not take into
account the version of the application. Programs that are declared as an application entry point must have
a unique PROGRAM resource name in your environment. However, if you secure programs that run at a
lower level in the application, programs with the same names might be running in different applications,
which can lead to unforeseen consequences. In this situation, a user might have permission to access
a program that is declared as an application entry point, but not have permission to access a program
that runs at a lower level in the application, because the security settings from another instance of the
program name are in effect. Consider the security measures that you apply to a program that is declared
as an application entry point program, as applying to the whole application.
If you used CICS bundles in earlier CICS releases, check the security permissions that you gave to users
for those bundles. Depending on the way in which you set up security for CICS bundles, users with
authority to take actions on individual CICS bundles might now be able to act on resources that are
dynamically created as part of the installation of a bundle. Ensure that the levels of authority for BUNDLE
resources are still appropriate.
For more information on security for applications and platforms and the CLOUD.DEF, CLOUD.PLATFORM,
and CLOUD.APPLICATION security profiles, see Security for platforms and applications.
Related concepts
Artifacts that can be deployed in bundles
The artifacts that you can define and deploy in CICS bundles include application and system events, Atom
feeds, channel-based services, CICS policies, CICS programs, OSGi bundles, XML-based services, and
transactions. Each of these artifacts is represented by one or more CICS resources and these resources
are dynamically created as part of the bundle deployment.
Referencing zFS artifacts in a bundle
A number of CICS resources reference external zFS artifacts for further configuration information. For
example, JVMSERVER resources require a JVM profile, and PIPELINE resources require a pipeline
configuration file. If these resources are defined in a CICS bundle, the zFS artifacts that they require
must also be stored in the CICS bundle, and referenced using a relative zFS name.
Manifest contents for a CICS bundle

334 CICS TS for z/OS: Configuring CICS

 Each CICS bundle contains a bundle manifest that describes the contents of the bundle. A bundle
manifest describes the bundle, which resources to design or modify in the CICS region when provisioned,
and dependencies required for the CICS bundle to successfully enable.
Scoping of bundles
The BUNDLE resource definition provides the BASESCOPE attribute as a way of applying a scope to
related BUNDLE resources. You can use this attribute for bundles that are deployed on a platform,
or to set a Service Component Architecture (SCA) domain for a bundle that contains SCA composite
applications.
OSGi bundle recovery on a CICS restart
When you restart a CICS region that contains OSGi bundles, CICS recovers the BUNDLE resources and
installs the OSGi bundles into the framework of the JVM server.
Variables in a CICS project
You can use variables to alter attribute values quickly and easily, which simplifies deployment to multiple
environments because you can resolve the variables by using a properties file that is specific to each
environment.
Related reference
Variables and properties files definition
When you define variables and their associated properties files, use these rules to ensure that variable
substitution can occur successfully.
Related information
Characteristics of resources in CICS bundles
Some characteristics of CICS resources change because they are defined in a CICS bundle and
dynamically created as part of a bundle deployment. When you design the architecture of an application,
or select resources from an existing application to define in CICS bundles, be aware of these important
considerations.
Private resources for application versions
When you define certain CICS resources in CICS bundles as part of an application installed on a platform,
the resources are private to that version of that application. You can therefore install more than one
resource of those types with the same name, at the same time, on the same platform instance.

Variables in a CICS project

You can use variables to alter attribute values quickly and easily, which simplifies deployment to multiple
environments because you can resolve the variables by using a properties file that is specific to each
environment.

Using variables
Typically, attribute values in resource definitions need to be changed before being installed in to different
environments. For example, a data set might have a different high-level qualifier for development, test,
and production environments. You can use variables to change parts of an attribute value depending on
the environment it is being deployed to, by using a variables.properties file that is specific to each
environment.
Variables are resolved during deployment by running the CICS build toolkit with the --resolve option,
before resources are installed in CICS. The properties file that is used to resolve a variable differs
depending on whether the variable is in a stand-alone bundle or is included as part of an application.
The most reliable method of creating variables is to use the Insert variable or Extract value to variable
wizard in CICS Explorer. For details, see Creating variables in the CICS Explorer product documentation.

Example usage of variables

The following examples are scenarios for using variables effectively:
• JVM server names in the CICS bundle parts .osgibundle .warbundle .ebabundle
and .earbundle for Java applications, where the JVM server name is different in each environment.

Chapter 7. Defining resources 335

 • Data set names in a FILE and LIBRARY definition, where the data set name includes a qualifier for the
environment.
• Specifying CEDF in a PROGRAM definition, where debugging is appropriate for the development
environment but not for production.
• Strings in a VSAM file, where a development environment may only need a small number of strings, but
production will need more to improve access times.
Related concepts
Artifacts that can be deployed in bundles
The artifacts that you can define and deploy in CICS bundles include application and system events, Atom
feeds, channel-based services, CICS policies, CICS programs, OSGi bundles, XML-based services, and
transactions. Each of these artifacts is represented by one or more CICS resources and these resources
are dynamically created as part of the bundle deployment.
Referencing zFS artifacts in a bundle
A number of CICS resources reference external zFS artifacts for further configuration information. For
example, JVMSERVER resources require a JVM profile, and PIPELINE resources require a pipeline
configuration file. If these resources are defined in a CICS bundle, the zFS artifacts that they require
must also be stored in the CICS bundle, and referenced using a relative zFS name.
Manifest contents for a CICS bundle
Each CICS bundle contains a bundle manifest that describes the contents of the bundle. A bundle
manifest describes the bundle, which resources to design or modify in the CICS region when provisioned,
and dependencies required for the CICS bundle to successfully enable.
Scoping of bundles
The BUNDLE resource definition provides the BASESCOPE attribute as a way of applying a scope to
related BUNDLE resources. You can use this attribute for bundles that are deployed on a platform,
or to set a Service Component Architecture (SCA) domain for a bundle that contains SCA composite
applications.
OSGi bundle recovery on a CICS restart
When you restart a CICS region that contains OSGi bundles, CICS recovers the BUNDLE resources and
installs the OSGi bundles into the framework of the JVM server.
Security for bundles
Different security profiles and checks apply to BUNDLE resources created from a definition, and to
BUNDLE resources that are created when you install an application or platform.
Related reference
Variables and properties files definition
When you define variables and their associated properties files, use these rules to ensure that variable
substitution can occur successfully.
Related information
Characteristics of resources in CICS bundles
Some characteristics of CICS resources change because they are defined in a CICS bundle and
dynamically created as part of a bundle deployment. When you design the architecture of an application,
or select resources from an existing application to define in CICS bundles, be aware of these important
considerations.
Private resources for application versions

336 CICS TS for z/OS: Configuring CICS

 When you define certain CICS resources in CICS bundles as part of an application installed on a platform,
the resources are private to that version of that application. You can therefore install more than one
resource of those types with the same name, at the same time, on the same platform instance.

Variables and properties files definition

When you define variables and their associated properties files, use these rules to ensure that variable
substitution can occur successfully.

Defining variables in a properties file

The following rules apply to the definition of variables in a properties file:
• Valid characters in a variable name are uppercase and lowercase letters, numbers 0 - 9, periods,
underscores, and hyphens. Variable names are limited to 255 characters.
• Properties files can exist in a CICS bundle or an application binding. They must be in the root of the
project, and must be named variables.properties.
• You can supply a separate properties file to resolve stand-alone bundles, but this option is not
supported for applications. There are no restrictions on the name of a properties file when used with a
stand-alone bundle.
• Properties files follow the standard format for Java properties files, and must be encoded in
ISO-8859-1. For more information, see Java properties files in Java Platform, Standard Edition 7 API
Specification.
• Any variable that is used in a bundle must be defined in the properties file for that bundle. When
substituted into the resource definition, the value that is supplied in the bundle must result in a valid
value for that attribute.
• Variable values must not refer to other variables. For example, hlq=${prod.hlq} is not valid.
• If a variable is defined more than once in a properties file, the last instance is used.

Referencing variables in bundle parts

The following rules apply to the reference of variables in bundle parts:
• Variable names are delimited by ${ and } characters.
• Variables are allowed in any CICS bundle part, including in attributes or elements of a bundle part.
• There is no limit to the number of variables that can be placed in an attribute or tag.
• Variables cannot be nested, and they must not be used as part of a CICS resource definition name.
Related concepts
Artifacts that can be deployed in bundles
The artifacts that you can define and deploy in CICS bundles include application and system events, Atom
feeds, channel-based services, CICS policies, CICS programs, OSGi bundles, XML-based services, and
transactions. Each of these artifacts is represented by one or more CICS resources and these resources
are dynamically created as part of the bundle deployment.
Referencing zFS artifacts in a bundle
A number of CICS resources reference external zFS artifacts for further configuration information. For
example, JVMSERVER resources require a JVM profile, and PIPELINE resources require a pipeline
configuration file. If these resources are defined in a CICS bundle, the zFS artifacts that they require
must also be stored in the CICS bundle, and referenced using a relative zFS name.
Manifest contents for a CICS bundle
Each CICS bundle contains a bundle manifest that describes the contents of the bundle. A bundle
manifest describes the bundle, which resources to design or modify in the CICS region when provisioned,
and dependencies required for the CICS bundle to successfully enable.
Scoping of bundles
The BUNDLE resource definition provides the BASESCOPE attribute as a way of applying a scope to
related BUNDLE resources. You can use this attribute for bundles that are deployed on a platform,

Chapter 7. Defining resources 337

 or to set a Service Component Architecture (SCA) domain for a bundle that contains SCA composite
applications.
OSGi bundle recovery on a CICS restart
When you restart a CICS region that contains OSGi bundles, CICS recovers the BUNDLE resources and
installs the OSGi bundles into the framework of the JVM server.
Security for bundles
Different security profiles and checks apply to BUNDLE resources created from a definition, and to
BUNDLE resources that are created when you install an application or platform.
Variables in a CICS project
You can use variables to alter attribute values quickly and easily, which simplifies deployment to multiple
environments because you can resolve the variables by using a properties file that is specific to each
environment.
Related information
Characteristics of resources in CICS bundles
Some characteristics of CICS resources change because they are defined in a CICS bundle and
dynamically created as part of a bundle deployment. When you design the architecture of an application,
or select resources from an existing application to define in CICS bundles, be aware of these important
considerations.
Private resources for application versions
When you define certain CICS resources in CICS bundles as part of an application installed on a platform,
the resources are private to that version of that application. You can therefore install more than one
resource of those types with the same name, at the same time, on the same platform instance.

Defining terminal resources

You can define terminal resources in two different ways, depending on the type of terminal access
method that you want to use.
1. ACF/SNA LUs are defined in the CSD either explicitly, or by using model terminal definitions if you are
using the CICS automatic installation facility (autoinstall). Using autoinstall, you leave it to CICS to
install the terminal resource definition dynamically at logon time. CICS obtains the information needed
to create a terminal entry from the TERMINAL and TYPETERM definitions recorded in the CSD. For
guidance information about this process, see “Autoinstall” on page 280.
You can add z/OS Communications Server definitions to the CSD offline using the DEFINE command
of the CICS utility program, DFHCSDUP, or online using the CEDA DEFINE command. If you want
the terminal definitions installed during CICS initialization, you must add the names of the groups
containing the definitions to a group list used during a cold start. Otherwise you can install a group of
definitions using the CEDA INSTALL GROUP(groupname) command online. For more information, see
GRPLIST system initialization parameter.
Each LU must also be defined to ACF/SNA in a z/OS Communications Server definition statement.
2. Non-SNA LUs are defined in a terminal control table (TCT) using DFHTCT macros.
During CICS initialization, CICS loads the TCT specified by the TCT system initialization parameter, and
those LUs defined in the TCT are installed as CICS resources. You must also make these LUs known to
the operating system, and include a DD statement in the CICS startup job stream for each LU.

Defining z/OS Communications Server terminals

A CICS region can communicate with terminals or other regions using z/OS Communications Server
services.
To use z/OS Communications Server services, you must do the following:
1. Define CICS to ACF/Communications Server with an APPL statement in SYS1.VTAMLST. For more
information about defining an APPL statement for CICS, see Defining CICS regions as applications to
SNA.

338 CICS TS for z/OS: Configuring CICS

2. Define to z/OS Communications Server the terminal resources that CICS is to use.
3. Define to CICS the terminal resources that it is to use.

Defining CICS terminal resources to z/OS Communications Server

Each terminal, or each logical unit (LU) in the case of SNA terminals, that CICS is to use must be defined to
z/OS Communications Server.
The terminals can be defined as local or remote.
Local z/OS Communications Server terminals
can be SNA terminals connected to a channel-attached cluster controller, or they can be non-SNA
3270 terminals connected through a local control unit.
Remote z/OS Communications Server terminals
are attached to an SNA cluster controller, which is connected through an SDLC line with a channel-
attached communications controller. The communications controller may also be loaded with code to
enable remote terminals to be connected to it by a binary synchronous (BSC) line.
You define terminals, controllers, and lines in z/OS Communications Server tables. z/OS Communications
Server has tables describing the network of terminals with which it communicates. z/OS Communications
Server uses these tables to manage the flow of data between CICS and the terminals. as nodes in the
network. Each terminal, or each logical unit (LU) in the case of SNA terminals, must be defined in the z/OS
Communications Server tables with a z/OS Communications Server node name that is unique throughout
the z/OS Communications Server domain.
If you are using z/OS Communications Server 3.3 or later, you can define the AUTINSTMODEL name,
printer, and alternate printer to z/OS Communications Server by using z/OS Communications Server
MDLTAB and ASLTAB macros. These definitions are passed to CICS to select autoinstall models and
printers.
For information about defining resources to z/OS Communications Server, see z/OS Communications
Server: SNA Resource Definition Reference.

Defining terminal resources to CICS

A given z/OS Communications Server terminal, or logical unit, can be defined explicitly in the CICS system
definition file (CSD). If a terminal does not have an explicit definition in the CSD, CICS can create and
install a definition dynamically for the terminal when the terminal logs on, using the CICS autoinstall
facility.

About this task

Defining terminal resources explicitly in the CICS CSD
If a z/OS Communications Server terminal, or logical unit is defined explicitly in the CSD, the terminal
has a TERMINAL name and a NETNAME, which is the same as the z/OS Communications Server node
name. Terminals defined in this way have terminal entries installed at CICS startup.
Using the CICS autoinstall facility to dynamically create and install definitions for terminals
CICS can autoinstall terminals by reference to TYPETERM and model TERMINAL definitions created
with the AUTINSTMODEL and AUTINSTNAME attributes. For information about TYPETERM and
TERMINAL definitions, see “Autoinstalling model terminal definitions” on page 300 and Model
TERMINAL definitions in group DFHTERM.
If you use autoinstall, you must ensure that the CICS resource definitions correctly match
the z/OS Communications Server resource definitions. For programming information about z/OS
Communications Server logmode definitions and their matching CICS autoinstall model definitions,
see Coding entries in the VTAM LOGON mode table.
If you specify the system initialization parameter TCTUALOC=ANY, CICS stores the terminal control table
user area (TCTUA) for z/OS Communications Server terminals above the 16 MB line if possible.

Chapter 7. Defining resources 339

 Defining the terminal shutdown time limit
You can specify a time limit within which all SNA LUs used by CICS must shut down, when CICS is shutting
down.
(This is to prevent a hung terminal stopping CICS shutting down.) You specify this time limit on the
TCSWAIT system initialization parameter. You can also specify actions that CICS is to take, if the time limit
is exceeded. You specify the actions on the TCSACTN system initialization parameter. More information
about choosing appropriate values for TCSWAIT and TCSACTN is given in the following topics.

Choosing an appropriate value for TCSWAIT

The value that you specify on the TCSWAIT system initialization parameter must be large enough so that
under normal circumstances all SNA LUs and connections shut down in an orderly fashion.
To help choose this value, consider using a value slightly larger than the elapsed time between the
following two CICS terminal control shutdown messages:

DFHZC2305 Termination of VTAM sessions beginning

DFHZC2316 VTAM ACB is closed

If you do not want a time limit (that is, you assume that all terminals never hang), specify NO for
the TCSWAIT system initialization parameter. For more information about this parameter, see TCSWAIT
system initialization parameter.
Note: VTAM is now z/OS Communications Server for SNA.

Specifying that CICS is only to report hung terminals

To report hung terminals and not attempt to force-close them specify the TCSWAIT=mm (with an
appropriate time interval) and TCSACTN=NONE system initialization parameters.

Specifying that CICS is to force close all hung terminals

To attempt to force-close all hung terminals specify the TCSWAIT=mm (with an appropriate time interval)
and TCSACTN=UNBIND system initialization parameters.

Defining sequential (BSAM) devices

You can use a pair of input and output sequential data sets to simulate a terminal to CICS. For example,
you might do this to test an application program before the intended terminal becomes available.
To do so, code the following DFHTCT TYPE= macros:

DFHTCT TYPE=INITIAL,
ACCMETH=(NONVTAM) defining the access
method

Define the following macro instructions contiguously:

DFHTCT TYPE=SDSCI,
DSCNAME=isadscn, defining the input
DDNAME=indd, ... data set
DFHTCT TYPE=SDSCI,
DSCNAME=osadscn, defining the output
DDNAME=outdd, ... data set
DFHTCT TYPE=LINE,
ISADSCN=isadscn,
OSADSCN=osadscn, ...
DFHTCT TYPE=TERMINAL,
TRMIDNT=name, ...

The two data sets defined by the DFHTCT TYPE=SDSCI macros simulate a CICS terminal known by the
name specified in the TRMIDNT operand of the DFHTCT TYPE=TERMINAL macro. The DSCNAMEs of the
input and output data sets must be specified in the ISADSCN and OSADSCN operands of the DFHTCT
TYPE=LINE macro respectively.

340 CICS TS for z/OS: Configuring CICS

You must code a DD statement for each sequential data set defined by an SDSCI macro. The DD name on
the DD statement must be the same as the name coded on the DDNAME parameter (or, by default, on the
DSCNAME parameter) of the SDSCI macro. For example, you could use the following DD statements for
sequential input and output:

//CARDIN DD *,DCB=BLKSIZE=80
.
Statements containing valid transactions
.
/*
//PRINTER DD SYSOUT=A,DCB=BLKSIZE=132

This example of an I/O combination simulates a terminal to a CICS application program. There
is an example of the SDSCI statements supporting this CARDIN/PRINTER combination in the
copybook DFH$TCTS, which is defined in the sample TCT, DFHTCT5$. DFH$TCTS is supplied in
CICSTS61.CICS.SDFHSAMP. Input to the application program is submitted through the input stream
(CARDIN), and output to the terminal is sent to the output stream (PRINTER). If the BLKSIZE parameter
is defined in the TCT for the data set, you can omit it from the JCL. However, if it is not defined in
the TCT, the block size defaults to 0, and if you also omit it from the DD statement for the data
set, you get message IEC141I 013-34. There are other examples of DD statements for I/O sequential
data sets in some of the CICS-supplied installation verification procedures. You can find them in
CICSTS61.CICS.SDFHINST after installation.
You can also use two DASD data sets to simulate a terminal. You must code a DD statement for each data
set defined by an SDSCI macro, and the DD name on the DD statement must be the name coded on the
DDNAME (or DSCNAME) parameter of the SDSCI macro.
For example, you might code:

//DISKIN1 DD DSN=SIMULATD.TERMINAL.IN,
// UNIT=3380,DISP=OLD,VOL=SER=volid
//DISKOT1 DD DSN=SIMULATD.TERMINAL.OUT,
// UNIT=3380,DISP=OLD,VOL=SER=volid

Input from this simulated terminal is read from the DISKIN1 data set. Output to the terminal is written to
the DISKOT1 data set.
Each statement in the input file (from CARDIN or DISKIN1 in the examples used earlier), must end with
a character representing X'E0'. The standard EBCDIC symbol for this end-of-data hexadecimal value is
a backslash (\) character, and this is the character defined to CICS in the pregenerated system. You can
redefine this for your installation on the EODI system initialization parameter; see Specifying CICS system
initialization parameters for details.

Terminating
End-of-file does not terminate sequential input. Use CESF GOODNIGHT as the last transaction, to close
the device and stop reading from the device.
Otherwise, CICS invokes the terminal error program (DFHTEP), and issues the messages in Table 39 on
page 341 at end-of-file on the sequential device.

Table 39. Warning messages if a sequential terminal is not closed

Message Destination
DFHTC2507 date time applid Input event rejected return code zz {on CSMT
line w/term|at term}termid {, trans}tranid{, rel line=} rr,time
DFHTC2500 date time applid {Line|CU|Terminal} out of service {Term|W/ CSMT
Term} termid

Using CESF GOODNIGHT puts the sequential device into RECEIVE status and terminates reading from the
device. However, if you close an input device in this way, the receive-only status is recorded in the warm

Chapter 7. Defining resources 341

 keypoint at CICS shutdown. This means that the terminal is still in RECEIVE status in a subsequent warm
start, and CICS does not then read the input file.
You can also use CESF LOGOFF to close the device and terminate reading from the device, but CICS
still invokes DFHTEP to issue messages DFHTC2507 and DFHTC2500 at end-of-file. However, the device
remains in TTI status, and is available for use when restarting CICS in a warm start.
If you want CICS to read from a sequential input data set, either during or following a warm start, you can
choose one of the following methods:
• Close the input with CESF LOGOFF, and ignore the resultant messages. This leaves the terminal in TTI
state, and CICS reads input automatically in the next startup.
• Do not close the input, and ignore the resultant messages. This leaves the terminal in TRANSCEIVE
state, and CICS reads input automatically in the next startup.
• Close the input with CESF GOODNIGHT. This puts the sequential terminal into RECEIVE status and
terminates reading from the terminal. In this case, it is recommended that you code a PLT program to
change the status of the terminal to TRANSCEIVE.
• Code a user program, to be invoked from the program list table (PLT), to issue the appropriate EXEC
CICS INQUIRE and EXEC CICS SET commands for each sequential device that is required to process
input. For example, use the following statement to establish the state of a sequential terminal:

EXEC CICS INQUIRE TERMINAL(termid) SERVSTATUS(cvda) TTISTATUS(cvda)

For each terminal where SERVSTATUS returns DFHVALUE(INSERVICE) and TTISTATUS returns
DFHVALUE(NOTTI), set the terminal to TRANSCEIVE with the following statement:

EXEC CICS SET TERMINAL(termid) TTI

For programming information about the use of EXEC CICS INQUIRE and EXEC CICS SET commands,
see System commands. For programming information about writing post initialization-phase programs,
see Writing initialization programs.
If you use BSAM devices for testing purposes, the final transaction to close down CICS could be CEMT
PERFORM SHUT. The receive-only status is recorded in the warm keypoint at CICS shutdown. This means
that on a subsequent warm start of CICS, the terminal is still in RECEIVE status and CICS does not then
read the input file.
If you use the CEMT PERFORM SHUT, perform a cold or initial start of the CICS region to read the input
file. This assumes that recoverability of resources is not important to you.

Defining console devices

You can operate CICS from a console device. A console device can be a locally-attached system console, a
TSO user defined as a console, or an automated process such as NetView®.
You can use a terminal as both a system console and a CICS terminal. To enable this, you must define the
terminal as a console in the CSD. (You cannot define consoles in the TCT.)
Suitably authorized TSO users can enter MODIFY commands from terminals connected to TSO. To enable
this, define the TSO user as a console device in the CSD.
You can use each console device for normal operating system functions and to invoke CICS transactions.
In particular, you can use the console device for CICS main terminal functions to control CICS terminals
or to control several CICS regions in conjunction with multiregion operation. Consequently, you can be a
main terminal operator for several CICS regions.

342 CICS TS for z/OS: Configuring CICS

Defining console devices to CICS
You can define console devices to CICS using either the DEFINE TERMINAL command of the CSD update
batch utility program DFHCSDUP, or the CEDA DEFINE TERMINAL command using RDO.
Each console can be defined explicitly, or you can define autoinstall model definitions, and use the CICS
terminal autoinstall facility for consoles to install consoles automatically.
If want to use the console autoinstall facility, specify AICONS=YES|AUTO as a system initialization
parameter, and define TERMINAL model definitions that specify AUTINSTMODEL(YES) and the
AUTINSTNAME attribute.

System consoles
System consoles are defined to MVS in the SYS1.PARMLIB library, in a CONSOLnn member that defines
attributes such as NAME, UNIT, and SYSTEM.
The name is the most significant attribute, because it is the name that CICS uses to identify the console.
The name is passed to CICS on an MVS MODIFY command. Although consoles also have a numeric
identifier, this is allocated by MVS dynamically during IPL, and its use is not recommended for defining
consoles to CICS.
For information about defining console devices to MVS, see z/OS MVS Initialization and Tuning Reference.
For information about defining MVS consoles to CICS, see “Defining MVS consoles to CICS” on page 343.

TSO users as consoles

TSO users that issue commands to CICS, using either the TSO CONSOLE command or SDSF, do not require
MVS definitions as consoles in the CONSOLnn member. MVS activates a console automatically using the
user's TSO/E user ID as the console name
The TSO user issuing the CONSOLE command can use the NAME option to specify a console name
different from the TSO user ID.
To communicate with a CICS region from TSO or SDSF, you must install a CICS console definition that
specifies the TSO user ID (or the name specified on the console command) as the console name.
For information about the TSO CONSOLE command, see z/OS TSO/E System Programming Command
Reference.
For information about defining TSO users to CICS, see “Defining TSO users as console devices” on page
344.

Defining MVS consoles to CICS

To use an MVS console as a CICS main terminal, you either define it to CICS explicitly by a terminal
definition entry in the CICS system definition file (CSD), or use the CICS console autoinstall facility.
Each console you define is identified on the TERMINAL definition by the CONSNAME(name) attribute.
CICS no longer supports the CONSOLE(number) attribute. Identify a console device attached to an MVS in
a sysplex by its name, using the CONSNAME attribute.
For an example of the DEFINE command required to define a console, see Figure 60 on page 344.

Chapter 7. Defining resources 343

 //DEFTERM JOB (accounting information),MSGCLASS=A,
// MSGLEVEL=(1,1),CLASS=A,NOTIFY=userid
//CONSDEF EXEC PGM=DFHCSDUP
//STEPLIB DD DSN=CICSTS61.CICS.SDFHLOAD,DISP=SHR
//DFHCSD DD DSN=CICSTS61.CICS.DFHCSD,DISP=SHR
//SYSPRINT DD SYSOUT=*
//SYSIN DD *
*
* Define a console for CICS
DEFINE TERMINAL(trmidnt) GROUP(grpname) TYPETERM(DFHCONS)
CONSNAME(consname) DESCRIPTION(MVS CONSOLE consname)
*
* Define a TSO user as a console device for CICS
DEFINE TERMINAL(trmidnt) GROUP(grpname) TYPETERM(DFHCONS)
CONSNAME(tsouser) DESCRIPTION(TSO USER tsouser)
USERID(tsouser)
*
* Define an AUTOINSTALL model definition for a console device
DEFINE TERMINAL(autc) GROUP(grpname) TYPETERM(DFHCONS)
CONSNAME(console) DESCRIPTION(Autoinstall model for a console)
USERID(*FIRST) AUTINSTNAME(name) AUTINSTMODEL(YES)
*
ADD GROUP(grpname) LIST(yourlist)
*
LIST LIST(yourlist) OBJECTS
/*
//

Figure 60. Defining consoles and a TSO user in the CSD using DFHCSDUP

Defining TSO users as console devices

You can define TSO users as console devices to CICS using either an explicitly-defined TERMINAL
definition for each TSO user, or use the console autoinstall facility.
To define a TSO user as a console, specify the console name used by the TSO user on the CONSNAME
attribute of the DEFINE TERMINAL command. By default, the console name is the user's TSO user ID. You
are recommended to define consoles to CICS with preset security by using the USERID operand, so that
the TSO user does not have to sign on using the CESN transaction. Otherwise, the TSO user's CICS signon
password is displayed when entered for the CESN transaction.
For an example of the DEFINE command required to define a TSO user, see Figure 60 on page 344.
Note: Substitute your own values for the operands that are shown in italics in the DEFTERM job shown in
Figure 60 on page 344.
AUTINSTMODEL(YES)
Specifies whether this TERMINAL definition can be used as a model for autoinstall purposes.
AUTINSTNAME(name)
The name assigned to this autoinstall model definition, and by which the model is known to the
autoinstall control program.
CONSNAME(consname)
A unique 8-character console name, which corresponds to the NAME parameter in the CONSOLnn
PARMLIB member that defines the console, or matches the console name used by a TSO user.
You must define CONSNAME even for an autoinstall model.
GROUP(grpname)
A unique name for the group to which the console resource definition is to belong.
LIST(yourlist)
The startup group list containing the group in which you have defined the console definitions. If your
new group list does not include the required CICS-supplied resources as well as your own, specify
DFHLIST and yourlist on the GRPLIST system initialization parameter of your CICS startup job.
TERMINAL(trmidnt|autc)
A unique 4-character terminal identifier trmidnt as the name by which CICS is to identify the console
in the TCT terminal entry (TCTTE), or a dummy name autc in the case of an autoinstall model
definition.

344 CICS TS for z/OS: Configuring CICS

 USERID(tsouser)
The CICS preset security userid to be used to sign on this console device.
If you have defined a console device in your CSD as CONSNAME(INTERNAL), you can use it to issue
commands using MVS job control language. It is also used by authorized programs that use the MGCR
macro to issue MVS commands.
Having defined the console devices in the CSD, ensure that their resource definitions are installed in the
running CICS region. You can install the definitions in one of two ways, as follows:
1. Include the group list that contains the resource definitions on the GRPLIST system initialization
parameter in the CICS startup job.
2. During CICS execution, install the console device group by using the RDO command CEDA INSTALL
GROUP(groupname), where groupname is the name of the resource group containing the console
device definitions.
DFHLIST, the CICS-defined group list created when you initialize the CSD with the DFHCSDUP INITIALIZE
command, does not include any resource definitions for console devices. However, the CSD is initialized
with 2 groups that contain console definitions:
DFH$CNSL
This group contains definitions for three consoles. The group is intended for use with the installation
verification procedures and the CICS-supplied sample programs. You can add this to your own group
list, and alter the definitions to define your own console devices.
DFHTERMC
This group contains a single definition of an autoinstall model definition for an MVS console.
If you decide to create new terminal definitions for your console devices, you can specify the CICS-
supplied TYPETERM definition, DFHCONS, on the TYPETERM(name) parameter. This TYPETERM definition
for console devices is generated in the group DFHTYPE when you initialize the CSD.

Defining z/OS Communications Server persistent sessions support

If you choose to run a CICS region with z/OS Communications Server persistent sessions support,
terminal users can have their sessions recovered and continue working in the event of a CICS or z/OS
Communications Server failure.

About this task

Use the CICS system initialization parameters PSTYPE and PSDINT to set up persistent sessions support
for a CICS region, and use options on the CONNECTION, TYPETERM, and SESSIONS resource definitions
to customize the user experience for terminal users in the event of a recovery.
The default settings for the PSTYPE and PSDINT system initialization parameters mean that persistent
sessions support is available to the CICS region, but that it is not being exploited. Recovery with z/OS
Communications Server persistent sessions explains what happens when you exploit persistent sessions
support, and why you might want to run a CICS region without persistent sessions support.
The default values for RECOVOPTION and RECOVNOTIFY in TYPETERM definitions are SYSDEFAULT
and NONE respectively but when used in this combination with persistent sessions can, in some
circumstances, result in a recovered terminal becoming unusable. This condition can continue until a
task is automatically initiated at the terminal, for example using EXEC CICS START TRANSID(xxx)
TERMID(yyy). While use of RECOVNOTIFY(NONE) may be appropriate for devices such as printers
different values should be considered for user terminals.
If you want to change the type of persistent sessions support for an existing CICS region, you need to shut
down the region and perform a cold start with the new settings. You cannot change between single-node
persistent sessions support, multinode persistent sessions support, and no persistent sessions support
while CICS is running. Because the persistence characteristics of a bound session are established when
the session is created, you need to force an unbind and to rebind the sessions to acquire the correct
persistence characteristics for the new level of persistent sessions support requested by CICS. The most
straightforward way to achieve this is to carry out a cold or initial start of the CICS region.

Chapter 7. Defining resources 345

 You can change the persistent sessions delay interval while CICS is running, but the changed interval is
not stored in the CICS global catalog, and therefore is not restored in an emergency restart.
If you do want to use persistent sessions support for a CICS region, follow these steps:

Procedure
1. Use the PSTYPE system initialization parameter to specify an appropriate level of persistent sessions
support.
a) If you have z/OS Communications Server V4R4 or later, in a Parallel Sysplex with a coupling facility,
specify MNPS for multinode persistent sessions support.
This level of support enables recovery in the event of a z/OS Communications Server, z/OS, or CICS
failure.
b) If you do not have suitable facilities for multinode persistent sessions support, specify SNPS for
single-node persistent sessions support.
This level of support enables recovery in the event of a CICS failure, but not in the event of a z/OS
Communications Server or z/OS failure.
2. Use the PSDINT system initialization parameter to specify a suitable persistent sessions delay interval.
This value determines for how long z/OS Communications Server holds sessions in a recovery-pending
state. The interval you specify must be able to cover the time from a CICS failure to the time when the
z/OS Communications Server ACB is opened by CICS during a subsequent emergency restart.
3. Choose and set an appropriate value for the RECOVOPTION option of the SESSIONS and TYPETERM
resource definitions used in the CICS region.
Typically, this value can be the default SYSDEFAULT, which makes CICS select the optimum procedure
for recovering sessions. This setting means that in the event of a recovery, the terminal user can clear
the screen and continue to enter CICS transids.
4. Choose and set an appropriate value for the RECOVNOTIFY option of the TYPETERM resource
definitions used in the CICS region.
a) If you want a successful recovery to be transparent to terminal users, specify NONE.
b) If you want to display a message on the screen to say that the system has recovered, specify
MESSAGE.
c) If you want to start a transaction at the terminal, such as the good-morning transaction, specify
TRANSACTION.
5. If you are working with an existing CICS region, perform a cold start of the CICS region to implement
the changes to persistent sessions support.

Installing CICS resource definitions

When a resource definition is installed, information about the resources is used to construct the data
structures that represent the resource in the CICS address space.

What happens when CICS is initialized

When you initialize CICS, what happens to your resource definitions depends on the type of start. This is
defined in the START system initialization parameter; START=INITIAL for an initial start, START=COLD
for a cold start, and START=AUTO for a warm or emergency restart.

Initial or cold start

During an initial or cold start, CICS creates system tables by installing the groups that are named in one or
more lists that are specified in the GRPLIST system initialization parameter.
If you installed a group by using the INSTALL command during the previous CICS run and you want that
group to be installed during a cold start, you must add its name to a list.

346 CICS TS for z/OS: Configuring CICS

 If you usually use START=COLD at CICS initialization, installation by using a list is the typical way to make
resource definitions available to CICS. The INSTALL command provides a supplementary installation
method that can be useful when testing a system, or if an unexpected need for a resource occurs while
CICS is running.
For security or performance reasons, you might not want to use the RDO transactions in a production
system. In this situation, the CSD file is shared by both systems, but is read-only in the production
system. You define all your production resources using your development system, and install them in the
production CICS system when you cold start it.
If resource definition overrides support is in use, resource overrides are applied to relevant resources
when those resources are installed. See How it works: resource definition overrides.

Warm or emergency start

During a warm or emergency start, CICS re-creates the tables from the resource definitions that are
stored in the system log and global catalog.
No reference is made to the CSD file, and the GRPLIST name or names are not used. Therefore, at
a warm or emergency restart, all groups that were installed by the end of the previous CICS run are
reinstalled automatically. Any CICS system modifications that you introduced by using RDO will persist.
For autoinstalled resources, see the following information:
• “What happens at CICS restart” on page 288
• “Recovery and restart for connection autoinstall” on page 296
• “Program autoinstall and recovery and restart” on page 299
If you named a different list in the GRPLIST parameter, or if you added new groups to the list after the last
system initialization, CICS does not install the groups in the new list during a warm or emergency restart,
because CICS does not refer to the list.
If you usually use START=AUTO at CICS initialization, installation by using the INSTALL command is the
typical way to make resource definitions available to CICS. You use a list to define your system only when
you need to do an initial or cold start. You can ensure that your list is up to date by adding each group that
was installed by using the INSTALL command to the list.
If resource definition overrides support is in use, overrides are not applied to resources that are recovered
from the global catalog, but might be applied to relevant resources that are re-created. See How it works:
resource definition overrides.

What happens when you use the INSTALL command

Most resource definitions can be installed in groups or individually, and are committed at the individual
resource level. However, some SNA LU control resource definitions must be installed in groups and are
committed in installable sets.
Some SNA LU control resource definitions within a CSD group are committed at the installable set level.
An installable set comprises those resources, such as a CONNECTION and its associated SESSIONS,
which are dependent in some way. The backout of an installable set does not cause the whole group to be
backed out. The following types of resource definition are installed in installable sets:
• CONNECTION and associated SESSIONS definitions
• Pipeline terminals; all the terminal definitions that share the same POOL name
If a member of an installable group fails to install, CICS issues message DFHZC6216 that identifies the
member that caused the installation of the set to fail.
All other resource types are committed individually, and not in installable sets. For these resources, the
effect of a partially successful group INSTALL is to leave the resources that were added in a committed
state.
If resource definition overrides support is in use, resource overrides are applied to relevant resources
when those resources are installed. See How it works: resource definition overrides.

Chapter 7. Defining resources 347

 For the installation of installable sets and for an individual definition, an INSTALL might not be successful
for one of the following reasons:
1. A resource definition could not be installed because it is currently in use.
2. A resource definition could not be installed because one or more resource overrides resulted in an
invalid definition.
3. A system failure occurred during installation.
You can use the CEDA INSTALL command to reinstall the same group that was used at a cold or initial
start, and the new definitions are installed successfully, even if some original definitions are in use and fail
to install.

How to install a limited number of data definitions

If you want to install only a few new or changed definitions, install single resources. Use of the single-
resource INSTALL eliminates the problems of a partial INSTALL caused by a failure.
Note that the single-resource INSTALL of some CONNECTIONs and SESSIONS is not possible.
However, if you want to change or add a larger number of definitions, you might prefer to install a new
group. In that case, the following considerations apply:
• When you install a group containing an updated definition of an existing resource, the installation fails if
the resource is being used at the time. Make sure that none of the resources in a group is in use before
trying to install the group.
• Installation is a two-stage process: any existing definition for the resource must be “deleted” from the
system tables before a definition can be installed. This can result in more than one message if the
“deletion” fails and causes the installation to fail.
• If you have several CICS systems that share the same CSD file, you must be careful not to install a group
of resources in the wrong system.

Duplicate resource definition names

For all resource types except TDQUEUE and FILE resources, if two groups in a list contain resource
definitions of the same name and of the same resource type, CICS uses the definition in the group that is
later in the list.
• For TDQUEUE resource definitions, the first definition in the list is used.
• For FILE resource definitions for local files, if the file is defined as ENABLED, the later installation of a
duplicate fails. However, if the file is defined as DISABLED, the later installation of a duplicate succeeds.
For FILE resource definitions for remote files, which are not defined as ENABLED or DISABLED, the
installation of a duplicate always succeeds.
If you INSTALL a group while CICS is active, the resource definitions in the group override any of the same
type and name already installed. When an existing resource definition is replaced in this way, the statistics
associated with the old resource definition are transferred to the new definition. If a PROGRAM definition
is replaced, the program is relocated on the library and loaded when the new definition is referenced for
the first time. In effect, the new definition implies a NEWCOPY operation. The same rules apply to map
sets and partition sets.
It is probably unwise to have more than one resource definition of the same name on the CSD file, even
for different resource types. You must keep PROGRAM, MAPSET, and PARTITIONSET names unique. If
you have, for example a PROGRAM and a MAPSET with the same name, only one of them is available
to CICS. As far as names are concerned, after installation these definitions are treated as if they were
the same resource type. If you require alternative definitions of the same real resource, with different
attributes, these resource definitions must be in different groups.
An RDO-defined definition overrides a macro-defined definition of the same name. For example, if you try
to install a definition for an SNA LU that has the same name as a non-SNA LU, the SNA LU entry overwrites
the non-SNA LU entry.

348 CICS TS for z/OS: Configuring CICS

 Installed resources that are defined in CICS bundles cannot be overwritten by resource definitions with
duplicate names. When the bundle part containing a resource has been installed, if you try to install a
duplicate resource using another CICS bundle, or using RDO, EXEC CICS CREATE commands or other
methods, the request is rejected. You also cannot overwrite installed resources with a duplicate resource
that is defined in a CICS bundle. When you attempt to install the CICS bundle, if a resource with the same
name and resource type exists, the bundle part containing the resource is not installed, and the CICS
bundle is placed in an unusable state. Resources that are defined in CICS bundles are therefore protected
against accidental overwriting by duplicate resource names.
When you define a private resource in a CICS bundle that is packaged and installed as part of an
application, the resource name does not have to be unique in your installation. You can use this facility
to avoid resource name clashes between applications that were developed independently, but used the
same resource names. The requirement for unique resource names for the supported CICS resources can
be removed by managing the resources as part of applications deployed on a platform. You can use this
process to assist with server consolidation.
For more information about private resources for applications, see Private resources for application
versions.
Use the resource signature to identify the source of duplicate resource definitions that replaced existing
installed resources. The resource signature shows when, how, and by whom each resource was defined,
changed, and installed. The resource signature is displayed in the CICS Explorer views, on CEDA and
CEMT panels, in CICSPlex SM BAS and Operations views, by EXEC CICS INQUIRE commands, and in
DFHCSDUP reports.

Installing ATOMSERVICE resource definitions

This procedure uses the CEMT and CEDA transactions to install an ATOMSERVICE resource definition. If
the ATOMSERVICE resource already exists, it has to be disabled before it can be reinstalled.

Procedure
1. If the ATOMSERVICE resource already exists, ensure that it is disabled.
Use the following command:

CEMT SET ATOMSERVICE(name) DISABLED

While the ATOMSERVICE resource is disabled, if a web client makes an HTTP request that requires the
resource, CICS returns an HTTP 503 response (Service Unavailable) to the web client.
2. Install the ATOMSERVICE definition.
Use the following command:

CEDA INSTALL GROUP(groupname) ATOMSERVICE(name)

3. Optional: When you have successfully installed the ATOMSERVICE definition, use CEMT to enable the
resource.
Perform this step only if the ATOMSERVICE resource is not already defined as ENABLED, and you want
to make the resource available for web clients. Use the following command:

CEMT SET ATOMSERVICE(name) ENABLED

Installing connection definitions

To install new CONNECTION definitions, put them in a group of their own which does not contain
CONNECTION definitions that have already been installed, then use CEDA INSTALL to install the whole
group. You cannot install single CONNECTION definitions.

About this task

To modify and reinstall existing MRO CONNECTION definitions, or if you want new and existing MRO
CONNECTION definitions to be in the same group, you must close down all interregion communication

Chapter 7. Defining resources 349

 (IRC) and open it again, before you can use the definition. If you do not close IRC and open it again, you
get message DFHIR3788 when you try to bring up the region with the new connection.

Procedure
1. Close IRC down.
Use the following command:

CEMT SET IRC CLOSED

2. Install the resource definitions.
Use the following command:

CEDA INSTALL GROUP(groupname)

3. When you have successfully installed the group containing the definitions, open IRC again.
Use the following command:

CEMT SET IRC OPEN

Installing Db2 connection definitions

This section describes the guidelines for installing and discarding DB2CONN definitions and the
implications of interruptions in partial activity.

About this task

• Only one DB2CONN can be installed in a CICS system at any one time. An install of a second DB2CONN
can implicitly DISCARD the existing DB2CONN and its associated DB2ENTRYs and DB2TRANs (unless
reinstalling a DB2CONN of the same name) before proceeding with the installation.
• A DB2CONN must be installed before any DB2ENTRY or DB2TRAN definitions. DB2ENTRY and
DB2TRAN definitions cannot exist on their own, and can only be associated with a DB2CONN that is
already installed. Also, if you discard a DB2CONN, the associated DB2ENTRY and DB2TRAN resource
definitions are also discarded. Note that there is no attribute on a DB2ENTRY or DB2TRAN that explicitly
specifies the DB2CONN to which they belong. This allows DB2ENTRY and DB2TRAN definitions to be
shared by DB2CONN definitions without alteration.
Note: When DB2CONN, DB2ENTRYs, and DB2TRANs are defined in the same group, CICS automatically
installs the DB2CONN first. If you install Db2 definitions from multiple groups (by means of a list or
multiple INSTALL GROUP commands), the first group you install must contain the DB2CONN definition.
Successive groups should not have any DB2CONN definitions. CICS issues an error message when
installing a DB2ENTRY or DB2TRAN when no DB2CONN is installed. If multiple DB2CONN definitions
are installed, all Db2 definitions installed before the final DB2CONN definition are discarded. CICS
issues messages for all discards.
• A DB2CONN must be installed before the CICS Db2 connection can be started. Because it contains
information regarding pool threads and command threads, as well as global type information, a
DB2CONN represents the minimum required to start the CICS Db2 connection. There are no entry
threads, and all transactions use the pool. You can add DB2ENTRYs and DB2TRANs after the CICS Db2
connection is active.
• A DB2CONN can be re-installed only if the CICS Db2 attachment facility is not connected to Db2, and
therefore inactive.
• A DB2CONN can be discarded only when the CICS Db2 attachment facility is not connected to Db2.
• The discard of a DB2CONN implicitly discards all installed DB2ENTRYs and DB2TRANs.
Note: There is no group commit or group discard of DB2CONNs, DB2ENTRYs, and DB2TRANs. However
when a DB2CONN is discarded, the underlying control block is marked stating that a discard is in
progress. The DB2ENTRYs and DB2TRANs are discarded before the DB2CONN. If the discard fails when
half completed, a DB2CONN control block results, and a message is issued that a discard is in progress.

350 CICS TS for z/OS: Configuring CICS

 When using a partially discarded Db2 resource definition, a start of the CICS Db2 attachment facility
fails with the following message:
DFHDB2074 CICS DB2 ATTACHMENT FACILITY STARTUP
CANNOT PROCEED AS THE CURRENTLY
INSTALLED DB2CONN IS NOT USABLE
You must re-issue the discard. When a CICS system restarts after a failure when discarding, it knows
that a discard took place. CICS does not recover the blocks from the catalog, and this effectively
completes the discard. (Note that the definitions are removed from the catalog as well.)
When you are installing, parts of any group or list install can fail, but messages are displayed that
identify which resources have failed. You can proceed with a start of the CICS Db2 attachment facility
when this happens.

Checks on definitions of Db2 connection resources

When you define a DB2CONN, CICS checks for consistency with other resource definitions in the same
group or list.
For a DB2CONN object, the following checks are made:
• To ensure that there is only one DB2CONN defined in the group or list. If more than one is found (even
one with a different name), a warning message is issued. Only one DB2CONN can be installed at a time.
• That PLANEXITNAME exists as a program definition in the group or list if a PLANEXITNAME is specified,
and program autoinstall is not active.

Installing Db2 entry definitions

This section describes the guidelines for installing and discarding DB2ENTRY definitions and the
implications of interruptions in partial activity.

About this task

• You can install a DB2ENTRY only if you have previously installed a DB2CONN.
• You can install a new DB2ENTRY at any time, even when the CICS Db2 adapter is connected to Db2.
• You can reinstall (by replacing an existing DB2ENTRY) only when the DB2ENTRY is disabled and no
transaction is using it. Use the SET DB2ENTRY DISABLED command to quiesce activity and disable the
entry. New transactions trying to use the DB2ENTRY are routed to the pool, abended, or returned an
SQLCODE, dependent on the setting of the DISABLEDACT keyword when the DB2ENTRY is disabled.
• You can discard a DB2ENTRY only if it is disabled. Use the SET DB2ENTRY DISABLED command to
quiesce activity and disable the entry. New transactions trying to use the DB2ENTRY are routed to the
pool, abended, or returned an SQLCODE, dependent on the setting of the DISABLEDACT keyword when
the DB2ENTRY is disabled.
If you discard a DB2ENTRY, you could make the corresponding DB2TRAN an 'orphan'. If you then run a
transaction, a message is sent to the CDB2 transient data destination, and the request is rerouted to the
pool.

Checks on definitions of Db2 entry resources

When you define a DB2ENTRY, CICS checks for consistency with other resource definitions in the same
group or list.
For a DB2ENTRY object, the following checks are made:
• That two DB2ENTRYs of the same name do not appear in the same list. If they do, a warning message is
issued.
• That a DB2CONN exists in the group or list. If one does not, a warning message is issued. This may
not be an error because the DB2CONN may exist in another group elsewhere, but a DB2CONN must be
installed before a DB2ENTRY can be installed.

Chapter 7. Defining resources 351

 • Whether a transaction resource definition exists for TRANSID in the group or list if TRANSID has been
specified on the DB2ENTRY. If it does not, a warning message is issued.
• Whether PLANEXITNAME exists as a program definition in the group or list if PLANEXITNAME has been
specified, and program autoinstall is not active.

Installing Db2 transaction definitions

This section describes the guidelines for installing and discarding DB2TRAN definitions and the
implications of interruptions in partial activity.

About this task

• You cannot install more than one DB2TRAN for the same transaction, if you have given the full
transaction ID in the DB2TRAN definition. If you have used a generic transaction ID with a wildcard
character, you can install more than one DB2TRAN that potentially matches the transaction, but CICS
only uses the closest match (see Wildcard characters for transaction IDs).
• A DB2TRAN that refers to a non-existent DB2ENTRY cannot be installed. The DB2ENTRY must be
installed first.
• Note that when DB2ENTRY and DB2TRAN definitions are defined in the same group, CICS installs the
DB2ENTRY first at install time.
• You can install a new DB2TRAN at any time, even when the CICS Db2 adapter is connected to Db2.
• A DB2TRAN can be re-installed at any time, and can be discarded at any time.

Checks on definitions of Db2 transaction resources

When you define a DB2TRAN, CICS checks for consistency with other resource definitions in the same
group or list.
For a DB2TRAN object, the following checks are made:
• That a DB2TRAN of the same name does not appear in the same list. If one does, a warning message is
issued.
• Whether a DB2CONN exists in the group or list. If one does not, a warning message is issued. This may
not be an error because the DB2CONN may exist in another group, but a DB2CONN must be installed
before a DB2TRAN can be installed.
• Whether the DB2ENTRY specified on the DB2TRAN exists in the group or list. If not, a warning message
is issued.
• That the TRANSID specified on the DB2TRAN exists in the group or list. If not, a warning message is
issued.

Installing enqueue model definitions

As ENQMODELs usually have the default status of ENABLED, the order of installing ENQMODELs must
follow the rules for ENABLING ENQMODELs.

About this task

When you enable ENQMODELs that form nested generic ENQnames you must do so starting with the most
specific, and continue in order to the least specific.
For example, if you have ENQMODELS that have ENQnames of ABCD*, ABC*, and AB*, enable them in this
order:
1. ABCD* (the most specific)
2. ABC*
3. AB* (the least specific)

352 CICS TS for z/OS: Configuring CICS

Installing file definitions
This procedure uses the CEMT and CEDA transactions to install a FILE definition. As an alternative to
CEMT, you can use the EXEC CICS SET FILE command in a user-written transaction to disable and
enable the file.

Procedure
1. If the file already exists, ensure that it is closed and disabled.
Use the following command:

CEMT SET FILE(filename) CLOSED DISABLED

2. Install the file definition.
Use the following command:

CEDA INSTALL GROUP(groupname) FILE(filename)

3. Optional: When you have successfully installed the group containing the file, use CEMT to open and
enable the file.
Perform this step only if the file is not already defined as ENABLED, and you want to open the file
explicitly. Use the following command:

CEMT SET FILE(filename) OPEN ENABLED

Installing IPCONN definitions

To install new IPCONN definitions, put them in a group of their own which does not contain IPCONN
definitions that have already been installed, then use CEDA INSTALL to install the group. You can also
install IPCONN definitions individually.

About this task

For connectivity to be achieved when you install the IPCONN definition, consider the following resource
requirements:
1. The TCPIPSERVICE definition named on the TCPIPSERVICE attribute of this IPCONN definition must
also be installed in this region and must specify PROTOCOL(IPIC).
2. Corresponding IPCONN and TCPIPSERVICE definitions must be installed in the remote
region."Corresponding" means that:
a. The HOST attribute of the IPCONN definition on the remote region must specify this region.
b. The PORT attribute of the IPCONN definition on the remote region must specify the same port
number as that specified on the PORTNUMBER attribute of the local TCPIPSERVICE definition
named by this IPCONN.
c. The TCPIPSERVICE definition on the remote region, named by the IPCONN definition on the remote
region, must specify PROTOCOL(IPIC) and, on its PORTNUMBER attribute, the same port number as
that specified by the PORT attribute of this IPCONN.

Installing a LIBRARY resource definition by using CEDA

You install a new or updated LIBRARY resource definition to ensure that the LIBRARY resource is
activated in the CICS region. This procedure shows how to use the CICS CEDA transaction to install a
LIBRARY resource definition.

About this task

When you use CEDA to install a resource definition, you can set an initial status of either ENABLED or
DISABLED, and the resource is installed in that status.

Chapter 7. Defining resources 353

 The following procedure installs the LIBRARY resource definition libname that is defined in the group
groupname, and sets the initial resource status to ENABLED.

Procedure
Install the LIBRARY definition by using the following command:

CEDA INSTALL LIBRARY(libname) GROUP(groupname) STATUS(ENABLED)

What to do next
Defining the data sets to the CICS system
When you have successfully installed the LIBRARY resource definition and have also installed any
programs, map sets, or other elements that comprise the application in the LIBRARY resource, you
can then define the data sets to the CICS system, if you have not already done this.
Enabling a LIBRARY resource definition
If the LIBRARY resource was defined and installed as DISABLED, you can use the EXEC CICS SET
LIBRARY or CEMT SET LIBRARY command to change its status to ENABLED.

Installing partner definitions

When you install a PARTNER definition, CICS attempts to resolve references to CONNECTION and
PROFILE definitions.

About this task

CICS then creates an entry for the PARTNER definition in the partner resource table (PRT). See Defining
remote resources for DTP for more information.
Because it is possible for programs to use the SAA communications interface SET calls to change the
PARTNER name and the TPNAME name, CICS does not check that the CONNECTION definition is present
when the PARTNER resource is being installed.
If you leave out the PROFILE attribute, CICS uses the default profile DFHCICSA. Because it is not possible
for an SAA communications interface program to set a different profile, the PROFILE must be installed
before the PARTNER resource. However, the PARTNER install does not fail if the PROFILE is missing;
instead, a run-time error occurs when the partner conversation is attempted.
The MODENAME specified in the PROFILE need not be specified in a corresponding SESSIONS definition,
as it is possible for the SAA communications interface program to set a different value for MODENAME.
CICS programs, and SAA communications interface programs that do not use the SET calls, require that
all the relevant definitions be installed. You can use CEDA CHECK to help find out if all required definitions
are in a group.

Installing sessions definitions

If you use the INSTALL command to install a new SESSIONS definition for MRO when a definition is
already installed, you must close down all interregion communication (IRC) and open it again before you
can use the definition.

Procedure
1. Close IRC down.
Use the following command:

CEMT SET IRC CLOSED

2. Install the resource definitions.
Use the following command:

354 CICS TS for z/OS: Configuring CICS

 CEDA INSTALL GROUP(groupname)
3. When you have successfully installed the group containing the definitions, open IRC again.
Use the following command:

CEMT SET IRC OPEN

Installing transient data queue definitions

After CICS has been initialized, you can install additional resources using the CEDA transaction, or the
EXEC CICS CREATE commands.

About this task

A transient data queue is always installed in an enabled state. Any queues that were disabled when
a CICS system terminated, will still be enabled when the system is restored using a warm start or
emergency restart.

Replacing existing transient data queue definitions

You can replace an existing transient data queue if certain conditions are satisfied.

About this task

All the following conditions must be satisfied before you can replace an existing transient data queue:
• CICS initialization is complete
• The queue TYPE is the same as the existing definition
• The intrapartition queue is disabled
• The extrapartition queue is disabled and closed
Existing definitions cannot be replaced during a cold start of CICS. If you are using multiple groups, take
great care to ensure that duplicate names do not exist. Duplicate names cause error messages to be
issued. The duplicate definition is not used to replace the existing one.
You can use the following transactions and commands to inquire about, set, and discard transient data
definitions after they have been installed:
• CEMT INQUIRE TDQUEUE (or EXEC CICS INQUIRE TDQUEUE)
• CEMT SET TDQUEUE (or EXEC CICS SET TDQUEUE)
• CEMT DISCARD TDQUEUE (or EXEC CICS DISCARD TDQUEUE)
• The CECI transaction

Disabling transient data queues

You cannot disable a transient data queue when it is in use or when other tasks are waiting to use it.

About this task

For intrapartition and extrapartition queues:
• If tasks are waiting to use an extrapartition queue, a physically recoverable queue, or a nonrecoverable
intrapartition queue, the queue enters a “disable pending” state. The last task to use the queue fully
disables it.
• If you try to disable a logically recoverable intrapartition transient data queue when units of work are
enqueued on it, the queue enters a “disable pending” state. The last unit of work to obtain the enqueue
fully disables the intrapartition queue.
• If a unit of work owns an enqueue on a queue that is in a “disable pending” state, it is allowed to
continue making updates.

Chapter 7. Defining resources 355

 • When a queue is in a “disable pending” state, no new tasks can alter the queue's state, or its contents.
CICS returns a disabled response when you issue a READQ TD, WRITEQ TD, or DELETEQ TD request
against a queue that is in a “disable pending” state.

Installing terminal definitions

For a new or changed TERMINAL resource definition to become active in a CICS region, you must install it.

About this task

TERMINAL and TYPETERM definitions are resolved during installation to become a TCT entry, sometimes
known as a TCT terminal entry or TCTTE. Each definition contains only some of the information necessary
to build a TCT entry.
Each TYPETERM definition must be installed before or at the same time as the TERMINAL definitions
that reference it. When you use CEDA to install groups, if the TYPETERM definitions are in a separate
group from the TERMINAL definitions, you must install the TYPETERM group before the TERMINAL group.
You can include TYPETERM definitions and TERMINAL definitions in the same group for testing purposes,
although it is not recommended for long-term use.
Because the TERMINAL definition is not necessarily in the same group as its associated TYPETERM
definition, the global catalog is used to store the TYPETERM definitions.
Changing a TYPETERM definition and then reinstalling it has no effect on an already installed terminal
entry, even though the TERMINAL definition used to create it refers to the TYPETERM. To change the
terminal entry, you must reinstall both the TYPETERM and the TERMINAL definitions.
Use the following procedure for groups of TERMINAL definitions.

Procedure
1. Make sure that nobody is using the terminals that you want to install. Remember that the CEMT
INQUIRE TERMINAL command puts a lock on the TCT entry, and this also prevents installation of a
group containing that terminal.
2. Make sure that there are no ATIs outstanding for the terminals.
3. Install the resource definitions. Use the following command:

CEDA INSTALL GROUP(groupname)

4. Use CEMT to make the terminals available again. Use the following command:

CEMT SET TERMINAL(trmid) ACQUIRED INSERVICE ATI

Checking terminal definitions

Although you can use the CHECK command to check a group of TERMINAL definitions (it resolves
references from display devices to printers, for instance), it is not very useful in resolving TYPETERM
references if these are in a separate group because it would produce many unwanted messages for
missing TYPETERMs.

About this task

When you add a new cluster of terminal devices, create a new group for them, and then create a list
containing your TYPETERM definitions group and the new group of TERMINAL definitions. You can then
use the CHECK command to check the whole list, without it being too time-consuming. This list is needed
only for the duration of the checking, and is never named as the GRPLIST.
To avoid duplicating TERMINAL names, you could maintain a list of all groups containing TERMINAL
definitions. You can use CHECK LIST to ensure that all new TERMINAL names are unique. If this is too
lengthy a process, you can avoid it if TERMINAL names beginning with similar characters are kept in
separate groups, for example:

356 CICS TS for z/OS: Configuring CICS

 TERMINAL(AZ01) GROUP(AZTERMS)
TERMINAL(AZ02) GROUP(AZTERMS)
TERMINAL(AZ03) GROUP(AZTERMS)
.
.
.
TERMINAL(AZnn) GROUP(AZTERMS)

TERMINAL(BJ01) GROUP(BJTERMS)
TERMINAL(BJ02) GROUP(BJTERMS)
TERMINAL(BJ03) GROUP(BJTERMS)
.
.
.
TERMINAL(BJnn) GROUP(BJTERMS)

Remember: If you are using autoinstall for terminals, you must install the TYPETERM definitions before
installing the autoinstall model definitions, to ensure that the model is created. The CHECK command
does not check the order of such definitions.

Installing URIMAP resource definitions

This procedure uses the CEMT and CEDA transactions to install a URIMAP resource definition. If the
URIMAP resource already exists, it has to be disabled before it can be reinstalled.

Procedure
1. If the URIMAP resource already exists, ensure that it is disabled.
Use the following command:

CEMT SET URIMAP(name) DISABLED

While the URIMAP resource is disabled, if a web client makes an HTTP request that requires the
resource, CICS issues error message DFHWB0763, and returns an HTTP 503 response (Service
Unavailable) to the web client through a web error program. You can tailor this response by changing
the web error program.
2. Install the URIMAP definition.
Use the following command:

CEDA INSTALL GROUP(groupname) URIMAP(name)

When you install a URIMAP definition, CICS carries out the following security checks:
• If the URIMAP definition specifies SCHEME(HTTPS), CICS checks at install time that SSL is active
in the CICS region. This is indicated by the use of the KEYRING system initialization parameter to
specify the key ring used by the CICS region. If SSL is not active in the CICS region, CICS issues
message DFHAM4905, and the URIMAP definition is not installed.
• If the URIMAP definition specifies the CIPHERS attribute, CICS validates the list of ciphers against
the ciphers supported in the running system. If no valid ciphers are found in the list, CICS issues
message DFHAM4918 and the URIMAP definition is not installed. However, if some but not all of the
ciphers in the list are supported, CICS issues message DFHAM4917 and the URIMAP is installed with
the reduced set of cipher codes.
• If the URIMAP definition specifies the CERTIFICATE attribute, CICS validates the certificate against
those specified in the key ring. If the specified certificate is not valid, then CICS issues messages
DFHAM4889 and DFHAM4928, and the URIMAP definition is not installed.
Tip: CICS validates the certificate against the information held in the key ring for the CICS region
in RACF. When the CICS region carries out SSL handshakes, it uses information from the cache of
certificates in the SSL environment for the CICS region, which is managed by z/OS System SSL. If you
have added this certificate to the key ring, or renewed it, since the last build or rebuild of the SSL
environment for the CICS region, issue the PERFORM SSL REBUILD command for the CICS region.
The command refreshes the cache of certificates and ensures that the correct information for this
certificate is present in the cache.

Chapter 7. Defining resources 357

 3. Optional: When you have successfully installed the URIMAP definition, use CEMT to enable the
resource.
Perform this step only if the URIMAP resource is not already defined as ENABLED, and you want to
make the resource available for web clients or web services. Use the following command:

CEMT SET URIMAP(name) ENABLED

Installing WEBSERVICE resource definitions

Although CICS provides the usual resource definition mechanisms for creating WEBSERVICE resources,
and installing them in your CICS region, there is an alternative strategy which you can use. You can use
the scanning mechanism to install WEBSERVICE resources in your running CICS system.

About this task

There are three ways to install a WEBSERVICE resource definition.

Procedure
• Use the PERFORM PIPELINE SCAN command (using the CEMT transaction, or the system
programming interface) to initiate a scan of the pickup directory for a PIPELINE resource.
Use this method when you have added or updated a Web service binding file in the pickup directory of
a PIPELINE that is already been installed. CICS scans the pickup directory and uses each Web service
binding file that it finds there to dynamically install a WEBSERVICE resource.
• Install a PIPELINE resource.
Use this method when the pickup directory of a PIPELINE resource contains a Web service binding
file that you want to associate with the PIPELINE, and the PIPELINE has not been installed. When you
install the PIPELINE, CICS scans the pickup directory and uses each Web service binding file that it
finds there to install a WEBSERVICE resource.
• Install a WEBSERVICE resource from the CSD.
Use this method if neither of the two other methods is appropriate - for example, when you want to
use a PIPELINE definition with a Web service binding file that is not in the PIPELINE's pickup directory.

What to do next
If you have updated the Web service binding file that is referenced by a WEBSERVICE definition installed
from the CSD, you must discard and reinstall the WEBSERVICE to pick up the new Web service binding
file.

Overriding resource definitions

You can override existing resource definitions at the point that those resources are installed. This allows
you to tailor resources or apply standards for a specific CICS environment, such as test or development.
You can specify and apply resource overrides to any resource that can be defined by using RDO.
Overriding resource definition involves the following process:
• Specify the required overrides in a YAML file (resource overrides file). You can store that file directly in
your source code management (SCM) system.
• Enable the resource definition overrides capability in the region and make the resource overrides file
available.
• Install CICS resources and apply resource definition overrides as the resources are installed.
• Monitor overridden fields, values, and errors through CICS messages and CICS audit capabilities.

How it works: resource definition overrides

System programmers can provide a consistent approach to the creation of certain resources by applying
environment-specific overrides through a YAML resource overrides file (see “Why use resource definition

358 CICS TS for z/OS: Configuring CICS

overrides?” on page 360). You can override the resource definition for any currently supported resource
type that can be defined by using resource definition online (RDO).
Overriding resource definition involves the following process:
• Specify the required overrides in a YAML file (resource overrides file). You can store that file directly in
your source code management (SCM) system.
• Enable the resource definition overrides capability in the region and make the resource overrides file
available.
• Install CICS resources and apply resource definition overrides as the resources are installed.
• Monitor overridden fields, values, and errors through CICS messages and CICS audit capabilities.
The resource overrides file is a configuration file. It uses the flexible syntax of YAML to enable you to set
what you want to override by resource type and attribute. You specify each CICS resource type, followed
by one or more override rules. Each override rule specifies which resources to override and one or more
override actions to apply. The actions specify the operation to perform and the attribute values to apply as
overrides. You can apply broad override rules, or be very specific. You can select resources based on any
attribute; set, find-and-replace, prefix and suffix the resource attribute values; or inject built-in symbols. A
sample is provided to get you started. See Setting up a resource overrides configuration file.
After you create a suitable resource overrides file, you can deliver it to a source code management system
(SCM) for use in a DevOps delivery pipeline. The configuration file is then available for reliable provision of
the required CICS environment.
Resource definition overrides are available when the RESOVERRIDES system initialization parameter is
set and a valid YAML resource overrides file exists in a specific location on zFS. See Enabling resource
definition overrides.
The resource overrides file is loaded during CICS startup, and the overrides are applied during startup
when CICS resources are installed. The overrides also apply to any CICS resources that are installed
during the lifetime of the CICS region. For example, overrides are applied at CICS startup during a
GRPLIST install, and during the lifetime of the CICS region when resources are installed by using CEDA
commands or CICS Explorer. The resource definitions with the overrides applied are stored in the global
catalog. The CSD file or the CICSPlex SM EYUDREP data repository is unchanged. See Applying resource
overrides.
If you change the resource overrides file after CICS startup, those changes do not affect the resources in
the current CICS region. The resource overrides file is loaded and processed each time that CICS starts,
so the changed resource overrides file takes effect when CICS is restarted. The type of CICS start (for
example, cold or warm start) also affects which set of resource overrides are applied to various resources.
This behavior is described in detail in Applying resource overrides, but has the following implications:
• If you need to ensure that a consistent set of resource overrides is applied, it is not advisable to change
the resource overrides file during the lifetime of the CICS region, or before a warm or emergency start.
• When you want to change resource overrides, change the resource overrides file, then restart CICS by
using an initial or cold start.
Messages and resource signature information allow you to track that resource definition overrides are
applied. See Setting up a resource overrides configuration file.
Figure 61 on page 360 shows how resource definition overrides are applied to a PROGRAM resource.

Chapter 7. Defining resources 359

 CICS SPI
CEDA CICS CICSPlex
GRPLIST create
command Explorer SM WUI
command

Request
installation

CICS System
Definition file
(CSD) Install PROGRAM
Read resource resource Install resource
definition (PROGRAM) (PROGRAM) with
CICSPlex SM overrides
data repository
(DREP)
Resource Cataloged
overrides

Global
resourceoverrides.yaml catalog

Figure 61. Installing a CICS PROGRAM resource and applying resource overrides

Why use resource definition overrides?

System programmers face challenges in accommodating fluid environments but maintaining consistency
and auditability in CICS regions. Figure 62 on page 361 illustrates how resource definition overrides
accommodate changes between environments. The aim is to provide consistency for all installed
resources that match the override rules in the CICS region throughout the lifetime of that region.

360 CICS TS for z/OS: Configuring CICS

Figure 62. Resource overrides are applied to different regions.

It provides the following advantages:

• You can take a set of CICS resource definitions from development through to a production environment
without change. At install time, resource attributes are overridden as required to support each
environment. For example, you might want to use a single CICS system definition (CSD) file that is based
on your production system, but modify some resources such as programs, files, and TCP/IP services for
a development or test environment.
• You can use system-specific symbols such as the LPAR or APPLID to override attribute values
dynamically when a resource is installed.
• You can apply standards by ensuring that certain attribute values are always turned on or off, or set to a
specific value.
This feature is intended for making infrequent system-wide changes, rather than short-term resource
overrides.

What resource definitions can I override?

You can apply overrides to resource types that can be defined by using RDO, shown below. Overrides
can be applied to these resource types when they are installed as part of a CICS bundle. However, it is
important to understand which set of resource overrides are applying to such resources during a warm or
emergency start of a CICS region. See Applying resource overrides.

A-J J-P S-W

ATOMSERVICE JVMSERVER SESSIONS
BUNDLE LIBRARY TCPIPSERVICE
CONNECTION LSRPOOL TDQUEUE

Chapter 7. Defining resources 361

 A-J J-P S-W
DB2CONN MAPSET TERMINAL
DB2ENTRY MQCONN TRANCLASS
DB2TRAN MQMONITOR TRANSACTION
DOCTEMPLATE PARTITIONSET TSMODEL
DUMPCODE PARTNER TYPETERM
ENQMODEL PIPELINE URIMAP
FILE PROCESSTYPE WEBSERVICE
IPCONN PROFILE
JOURNALMODEL PROGRAM

For autoinstalled resources, you can override the resource attributes by applying resource overrides to the
autoinstall model that CICS uses to autoinstall the resources. Overriding the autoinstall model ensures
that resource overrides are applied correctly when the resources are dynamically installed. For certain
resource types, the autoinstall program can override resource attributes. In this situation, the overrides
from the autoinstall program are used for these attributes, rather than those from the resource overrides
file.
The effect of resource overrides on autoinstalled resources during a warm or emergency start of the CICS
region depends on whether the autoinstall model or the autoinstalled resources are configured to be
cataloged. This behavior is described in the following sections.
You can also apply resource overrides to the following default autoinstall models that are provided with
CICS and that are defined in the CSD groups that are shown in Table 40 on page 362. For example,
you can override the default autoinstall program model DFHPGAPG in CSD group DFHPGAIP when it is
installed. You cannot apply overrides to other resources that are defined in CSD groups that start with the
reserved characters DFH.

Table 40. Default autoinstall models

Model resource definition Resource type CICS-supplied resource DFH group
definition
APPC parallel-session connection CONNECTION CBPS. See Resource definitions DFHAI62
initiated by BIND for APPC connections.
SESSION

APPC single-session connection CONNECTION CBSS. See Resource definitions DFHAI62

initiated by BIND for APPC connections.
SESSION

APPC single-session connection CONNECTION CCPS. See Resource definitions DFHAI62

initiated by CINIT for APPC connections.
SESSION

Map set MAPSET DFHPGAMP. See Model DFHPGAIP

definitions in group DFHPGAIP.
MVS console TERMINAL AUTC. See CICS-supplied groups DFHTERMC
not in DFHLIST.
Partition set PARTITIONSET DFHPGAPT. See Model DFHPGAIP
definitions in group DFHPGAIP.
Program PROGRAM DFHPGAPG. See Model DFHPGAIP
definitions in group DFHPGAIP.

362 CICS TS for z/OS: Configuring CICS

 Table 40. Default autoinstall models (continued)
Model resource definition Resource type CICS-supplied resource DFH group
definition
Terminal TERMINAL All resource definitions listed in DFHTERM
TYPETERM definitions in group
TYPETERM DFHTYPE
DFHTYPE and Model TERMINAL
definitions in group DFHTERM.

For more information about using autoinstall for resources, see Autoinstall.

Restrictions
You cannot override a resource name, or the CSD group attribute when a resource is installed during a
GRPLIST install or by using CEDA.
You cannot apply overrides to the following resources:
• Most resources that are defined in CSD groups that start with the reserved characters DFH. The
exceptions are the default autoinstall models in the CSD groups that are listed in Table 40 on page
362.
• Resources where the source of the resource definition is CICS or CICSPlex SM
(DEFINESOURCE=SYSTEM). This includes any CICSPlex SM resources that are defined during CICS
startup by using EXEC CICS CREATE commands.
• Resources that can be defined only by using bundles:
– Atom configuration file
– Db2 package set
– Event binding
– Event processing adapter
– Event processing adapter set
– Node.js application
– OSGi bundle
– Policy
• Resources that are not supported in this release of CICS TS.

Setting up a resource overrides configuration file

As a system programmer, you can set up a resource overrides file so that you can apply override values
to resources when resources are installed. You can then deliver the file to a source code management
system (SCM) for use in a DevOps delivery pipeline.

About this task

A sample resource override file and a schema file are supplied. You create a resource overrides file for a
CICS region. Resource overrides file format explains the syntax and shows examples.
To learn more about resource definition overrides, see How it works: resource definition overrides. Check
also “What resource definitions can I override?” on page 361 and “Restrictions” on page 363 before you
begin.

Procedure
1. Create a resource overrides file in the ussconfig/resourceoverrides directory and save this file
in the UTF-8 file encoding.

Chapter 7. Defining resources 363

 ussconfig is the location that is specified by the USSCONFIG system initialization parameter, for
example /var/cicsts/dfhconfig.
You can use an IDE with an editor that supports YAML 1.2 and UTF-8 encoding. To aid users in
formatting the region tagging YAML file correctly, a JSON schema is provided. If your editor supports
it, you can use the supplied JSON schema with your editor. The schema describes how to structure
the resource overrides file in machine-readable format and provides input completion, help messages,
resource validation, and highlighting of any syntax errors. Example editors are Eclipse or Visual Studio
Code with a YAML language support extension.
In many schema-aware editors, editing a file with a name matching the pattern
prefix.cicsoverrides.yaml, or a YAML file inside a folder resourceoverrides will
automatically use the correct schema by downloading it from SchemaStore.
Tip:
Consider using the convention of naming your resource overrides files with the pattern
prefix.cicsoverrides.yaml to automatically apply the correct schema validation.
Alternatively, you can manually apply a schema to the relevant
files. A schema file is supplied in usshome/schemas/resourceoverrides/
resourceoverrides-major.minor.micro.json, for example /usr/lpp/cicsts/cicsts61/
schemas/resourceoverrides/resourceoverrides-1.0.0.json.
You can find a sample resource overrides file in usshome/samples/resourceoverrides/
resourceoverrides.yaml, where usshome is the location that is specified by the USSHOME system
initialization parameter. By default, this location is /usr/lpp/cicsts/cicsts61.
2. Store your resource overrides file in your SCM.

What to do next
Make sure that resource overrides are enabled (see Enabling resource definition overrides) then apply the
overrides. See Applying resource overrides.
Related information
RESOVERRIDES
USSCONFIG system initialization parameter
USSHOME system initialization parameter

Resource overrides file format

Use the following file format to specify the resource overrides that you want to apply.

General information
The resource overrides file is a configuration file that uses a subset of the YAML Version 1.2 format and
must use a UTF-8 character encoding. The file must be located in the ussconfig/resourceoverrides
directory, where ussconfig is the location that is specified by the USSCONFIG system initialization
parameter, for example /var/cicsts/dfhconfig/resourceoverrides. The file name must be the
name that is specified by the RESOVERRIDES system initialization parameter.
A sample resource overrides file, and a resource overrides JSON schema to use when you edit the
resource overrides file, are provided. See Setting up a resource overrides configuration file.
To specify resource overrides, use YAML format block collections with lists (also known as sequences)
and mappings (key-value pairs). The following information describes the YAML formatting that is
supported in the resource overrides file.
YAML flow style notation for lists and mappings (use of indicator characters rather than indentation) is not
supported.
The format is as follows:

364 CICS TS for z/OS: Configuring CICS

 schemaVersion: resourceOverrides/major.minor
resourceOverrides:
- resource-type:
- selector:
attribute: value
attribute:
- condition-operator: value
overrides:
attribute: value
attribute:
- action-operator: value

The following list summarizes YAML format that is relevant to the resource definition overrides file. For
more information about the YAML version 1.2 specification, see The Official YAML Web Site.
• Optionally, the YAML file can begin with three dashes to indicate the start of the document.

---

• Use the YAML format for block collections. That is, use indentation for scope and begin each entry on its
own line.
• For indentation, use 2 or more spaces. You can indent lines by any number of spaces, but members of
the same list or block must use the same indentation. Do not use tabs for indentation.
• Each list entry starts on a new line, starts with a dash and a space, and is followed by a colon.

- list-item:

• Key-value pairs in a mapping are separated by a colon and a space.

key: value

• You can surround values with single ' or double " quotation marks to ensure that they are not
processed as YAML file syntax.
• Values can be up to 255 characters. You cannot split values across multiple lines; that is, you cannot
use YAML syntax for multiline strings.
• Each comment starts with a hashtag (#). For a comment on the same line as another entry, ensure that
there is a space between the entry and the start of the comment.

# Comment
- list-item: # Comment about this list

• Attribute values are case-sensitive. Other strings are case-insensitive. Where necessary, resource
override processing converts attribute values to the appropriate case for CICS processing.
• Optionally, the YAML file can end with three dots to indicate the end of the document.

...

The maximum size of a resource overrides file is 1 MB.

Schema version
You use the schemaVersion mapping to specify the version of the resource overrides JSON schema
that describes the required syntax for the resource overrides in the resource overrides file. All resource
overrides that you specify in the resource overrides file must be supported by this version of the resource
overrides JSON schema.
Specify the schemaVersion key, followed by the name and version number of the corresponding
resource overrides JSON schema. The schema name must be resourceOverrides. The name and
version number are separated by a forward slash (/). The schema version number is in the format
major.minor, where major and minor are the same as the version number of the corresponding JSON
schema resourceoverrides-major.minor.micro.json.

Chapter 7. Defining resources 365

 The schemaVersion mapping is compatible with changes to the .micro version number of the
JSON schema. For example, schemaVersion: resourceOverrides/1.0 indicates that the resource
overrides file is supported by the resourceoverrides-1.0.n.json schemas.
You must specify a schema version number that is supported by CICS TS 6.1. If a resource overrides file is
shared across multiple CICS releases, the schema version must be supported for all those CICS releases.

CICS release JSON schema schemaVersion mapping

CICS TS 6.1 resourceoverrides-1.100.n.json
schemaVersion: resourceOverrides/
1.100
Supports all resource overrides, override
rules and symbols that are listed in this
topic.

CICS TS 5.6 resourceoverrides-1.0.n.json

schemaVersion:
resourceOverrides/1.0

Resource overrides
To specify the start of the resource overrides in the YAML file, specify the resourceOverrides key. This
mapping is followed by the list of CICS resource types that you want to apply overrides to.

resourceOverrides:

To specify a resource overrides file that does not contain any resource types or override rules, you can
specify a value of null or ~ for the mapping. Any content that follows must be commented out. For
example:

resourceOverrides: null
# - resource-type:
# - override rules

Resource types
To specify the CICS resource types that you want to apply overrides to, specify each resource type as a list
item after the resourceOverrides mapping. You can list a resource type more than once in the block.
List all resource types at the same level in the file.
For the list of resource types that you can apply overrides to, see How it works: resource definition
overrides. For details of valid resource types, resource attributes, and attribute values that you use to
specify resource overrides, see Resource definition attributes.

- resource-type:

For example:

- program:
- override rules
- file:
- override rules

Each resource type is followed by a nested list of one or more override rules.

Override rule
Each override rule consists of an optional selector mapping and an overrides mapping:
• A selector mapping specifies which resources of the listed resource type to apply the overrides to.
• An overrides mapping specifies one or more override actions to apply.

366 CICS TS for z/OS: Configuring CICS

If you do not specify a selector, the overrides mapping applies to all resources of the listed resource type.

- selector:
overrides:

or

- overrides:

Selector mapping (optional)

To specify a selector mapping, specify the selector key, followed by one or more conditions. The
conditions specify attribute values to use to select resources, and are processed in the order that they are
specified in the file. For a resource type with multiple conditions specified, all conditions must be satisfied
to select the resources; that is, conditions are connected by "and".
For a simple condition, use a nested attribute: value mapping.

- selector:
attribute: value

For conditions that use a condition operator, use a nested attribute followed by a nested list item for each
condition-operator: value mapping.

- selector:
attribute:
- condition-operator: value
- condition-operator: value

You can use the following condition operators:

is
Select the resources that have the specified attribute value.
literal
Select the resources that have the specified attribute value by using the literal value of the attribute.
For example, an asterisk character * is not treated as a wildcard character.
literalNot
Select the resources that do not have the specified attribute value by using the literal value of the
attribute. For example, an asterisk character * is not treated as a wildcard character.
not
Select the resources that do not have the specified attribute value.
You can create a list of condition operators to build up a detailed or specific selector.
A condition that is frequently useful is to specify the resource name to use as a selector:

- selector:
name: value

You can select resources that don't have a value set for a specified attribute by specifying an empty
value or null string. A null string must be a valid value for that attribute, so this applies to most character
attributes and a minority of CICS-value data area (CVDA) attributes, but not integer attributes.

- selector:
attribute: ""

In a condition (except for conditions that use the literal or literalNot condition operators), you
can use the wildcard character * once in a character attribute value. If you start a value with a wildcard

Chapter 7. Defining resources 367

 character, surround the value with single or double quotation marks (to differentiate it from a YAML alias).
For example, the following values are valid:

name: '*ABC'
name: A*BC

The following values are not valid:

name: *ABC
name: A*B*C

The following examples show selector mappings:

- transaction:
# Select all transactions starting with TR that have an initial program of MYPROG
- selector:
name: TR*
program: MYPROG

- program:
# Select all programs ending with TEST that are not in the group MYGRP1
- selector:
name: '*TEST'
group:
- not: MYGRP1

- enqmodel:
# Select all enqmodel definitions with an enqname value of ENQ*
- selector:
enqname:
- literal: ENQ*

Overrides mapping
To specify the overrides mapping, specify the overrides key, followed by one or more actions. The
actions specify the attribute values to apply as overrides, and are processed in the order that they are
specified in the file.
You cannot override a resource name or a group attribute.
For a set action, you can use a nested attribute: value mapping, or an action operator.

- overrides:
attribute: value

For actions that use an action operator such as set, prefix, or suffix, use a nested attribute followed by a
nested list for each action-operator: value mapping. For the find and replace action, use a nested attribute
followed by a nested list item for the pair of action-operator: value mappings.

- overrides:
attribute:
- action-operator: value
- action-operator: value

You can specify the following operators in an action, depending on whether the attribute is a character
attribute, an integer, or a CVDA.
set
You can set character attributes, integer attributes, and CVDAs in one of the following ways:
• Use an attribute: value mapping.
• After the attribute, use a nested list item for the action-operator: value mapping, where the action
operator is set.

368 CICS TS for z/OS: Configuring CICS

 The following example sets a CVDA and an integer attribute. The first overrides mapping sets the
CICS execution diagnostic facility (CEDF) on for programs. The second overrides mapping sets the
purgecycle for DB2CONN resources to 5 minutes, 0 seconds:

- program:
- overrides:
cedf: YES
- db2conn:
- overrides:
purgecycle: 05,00

The following example also sets CEDF on for programs, but uses the set action operator.

- program:
- overrides:
cedf:
- set: YES

For attributes where it is valid to set a null string, you can remove any current attribute value by
specifying an empty value "" or a null string. This applies to most character attributes and a minority
of CVDAs, but not integer attributes. For example:

- transaction:
- overrides:
alias: ""

For a character attribute, you can use symbols and symbol substrings in the attribute value. See
“Symbols and symbol substrings” on page 370.
For some integer attributes, it is valid to set specific character values. For example, SYSTEM is a
valid value for the RUNAWAY attribute of a TRANSACTION resource, and NO is a valid value for some
timeout attributes.
find and replace
You can use find and replace for character attributes.
After the attribute, use a nested list item for the pair of action-operator: value mappings, where the
action operators are find and replace.

- overrides:
attribute:
- find: value
replace: value

For example:

- urimap:
# Modify the path for URIMAP resources to change all instances of prod to test
- overrides:
path:
- find: prod
replace: test

You can use symbols and symbol substrings in the attribute values. See “Symbols and symbol
substrings” on page 370.
prefix
You can add a prefix to a character attribute with an existing value. You cannot prefix a null attribute
value.
After the attribute, use a nested list item for the action-operator: value mapping, where the action
operator is prefix.

- overrides:
attribute:
- prefix: value

For example:

Chapter 7. Defining resources 369

 - file:
- overrides:
dsname:
- prefix: TESTLPAR.

You can use symbols and symbol substrings in the attribute value. See “Symbols and symbol
substrings” on page 370.
suffix
You can add a suffix to a character attribute with an existing value. You cannot suffix a null attribute
value.
After the attribute, use a nested list item for the action-operator: value mapping, where the action
operator is suffix.

- overrides:
attribute:
- suffix: value

For example:

- file:
- overrides:
dsname:
- suffix: .DEV

You can use symbols and symbol substrings in the attribute value. See “Symbols and symbol
substrings” on page 370.

Symbols and symbol substrings

You can use symbols and symbol substrings in character attribute values in override mappings.
You can use one of the following symbols. Enclose the complete value in single or double quotation marks
and enclose the symbol in double braces {{}}.

Symbol name Value

CICS_APPLID The application identifier of a CICS region
CICS_DEFAULT_US The CICS default user ID.
ERID
CICS_JOBNAME The name of the CICS job.
CICS_LPAR The name of a z/OS LPAR for the CICS region.
CICS_REGION_USE The CICS region user ID.
RID
CICS_RELEASE CICS release, for example, 0740 for CICS TS 6.1.
CICS_SYSID The system identifier of a CICS region.
CICS_SYSPLEX The name of the current sysplex.
CICS_USSCONFIG The value of the USSCONFIG system initialization parameter.
CICS_USSHOME The value of the USSHOME system initialization parameter.

For example:

- file:
- overrides:
dsname: "{{CICS_APPLID}}.zuser.catalog.filea"

- file:
- overrides:

370 CICS TS for z/OS: Configuring CICS

 dsname:
- find: "{{ CICS_REGION_USERID }}"
replace: "{{ CICS_APPLID }}"

You can specify a substring in a symbol to indicate specific characters in that symbol. Enclose the
substring in brackets []. You can use one of the following formats:
• [start:end]
• [start::length]
start, end and length are valid index values for the symbol, in the range 0 - 254. Be aware that symbol
indices use a zero origin, so [0:1] indicates the first two characters of a symbol. The following example
uses the first two characters of the application identifier of a CICS region:

- transaction
- overrides:
tranclass:
- prefix: "{{CICS_APPLID[0:1]}}"

The following example uses the third and fourth characters of the system identifier of a CICS region.

- file:
- overrides:
dsname: "USER{{CICS_SYSID[2::2]}}.zuser.catalog.filea"

Examples
schemaVersion: resourceOverrides/1.100
resourceOverrides:
- program:
# Set CEDF on for all programs in the group MYGRP
- selector:
name: '*'
group: MYGRP
overrides:
cedf: YES
# Change CONCURRENCY from quasi-reentrant to threadsafe for programs
# currently set to quasi-reentrant, except for programs in the groups
# MYGRP1 and MYGRP2
- selector:
group:
- not: "MYGRP1"
- not: "MYGRP2"
concurrency: quasirent
overrides:
concurrency: threadsafe
# Set CEDF on for all programs autoinstalled from the default autoinstall
# program model
- selector:
name: DFHPGAPG
group: DFHPGAIP
overrides:
cedf:
- set: YES
- db2conn:
# Set the PURGECYCLE for the DB2CONN DB2AAA to 5 minutes, 0 seconds
- selector:
name: DB2AAA
overrides:
purgecycle: 05,00
- transaction:
# Remove the ALIAS attribute for all transactions that start with TR
- selector:
name: TR*
overrides:
alias: ""
# Set the TRANCLASS to "TCLTEST" for all transactions that match the
# pattern "TR*1"
- selector:
name: "tr*1"
overrides:
tranclass: "TCLTEST"
# Prefix the TRANCLASS of all transactions with the first two characters
# of the CICS_APPLID
- overrides:

Chapter 7. Defining resources 371

 tranclass:
- prefix: "{{CICS_APPLID[0:1]}}"
# Change the WAITTIME to 2055 mins (1 day, 10 hours, 15 minutes) for the
# transaction RUNA in group EXMP8 if the current WAITTIME is 1563 mins
# (1 day, 2 hours and 3 minutes)
- selector:
name: "RUNA"
group: "EXMP8"
waittime: "1,2,3"
overrides:
waittime: "1,10,15"
# Set RUNAWAY to 300 for all transactions set to the default RUNAWAY
# of system
- selector:
runaway: "SYSTEM"
overrides:
runaway: "300"
- file:
# Set the dsname of FILE FILEA using the APPLID symbol
- selector:
name: FILEA
overrides:
dsname: "{{CICS_APPLID}}.FILEA"
# Prefix the dsname of FILE FILEA with "TESTLPAR."
- selector:
name: FILEA
overrides:
dsname:
- prefix: TESTLPAR.
# Modify the dsname of FILE FILEA to change all instances of EXAMPLE to
# MYEXMPL, prefix it with "MYCOPY." and suffix it with ".TEST"
- selector:
name: FILEA
overrides:
dsname:
- find: EXAMPLE
replace: MYEXMPL
- prefix: MYCOPY.
- suffix: .TEST
# Change a remote FILE "REMFILE" to a local file
- selector:
name: "REMFILE"
overrides:
dsname: "DEV.CATALOG.FILEA"
remotename: ""
remotesystem: ""
- jvmserver:
# Set THREADLIMIT=5 for JVMSERVER TESTSERV
- selector:
name: TESTSERV
overrides:
threadlimit: 5
- tsmodel:
# Modify the PREFIX attribute for all TSMODEL resources defined in the
# group EXMP6 with LOCATION=main to change all instances of PROD to TEST
- selector:
name: "TSMOD*"
group: EXMP6
location: "main"
overrides:
prefix:
- find: "PROD"
replace: "TEST"
- sessions:
# Modify SESSION resources with MAXIMUM set to to default 01,00 and change
# to 99,99
- selector:
maximum: "01,00"
overrides:
maximum: "99,99"
- enqmodel:
# Select all ENQMODEL resources with an enqname value of ENQ* and change
# to MYENQ
- selector:
enqname:
- literal: ENQ*
overrides:
enqname: MYENQ

372 CICS TS for z/OS: Configuring CICS

Enabling resource definition overrides
To enable resource definition overrides, you set the system initialization parameter RESOVERRIDES and
make available a valid resource overrides file on zFS. For an overview, see How it works: resource
definition overrides.

Before you begin

Create the resource overrides file. See Setting up a resource overrides configuration file.

Procedure
1. Set the system initialization parameter RESOVERRIDES to point to the resource overrides file. See
RESOVERRIDES.
2. Store the resource overrides file in zFS.
3. Secure the resource overrides file.
As with other CICS TS configuration files on z/OS UNIX, appropriate security must be set for the
resource overrides file. This configuration file is used to implement system-wide changes, so access
must be restricted appropriately. Only the following access permissions are required:
• The CICS region user ID must have read access to the resourceoverrides_file_name.yaml
file in the ussconfig/resourceoverrides zFS directory, where ussconfig is the location that is
specified by the USSCONFIG system initialization parameter. For more information about setting up
security, see Authorizing access to z/OS UNIX System Services.
• System programmers must have write access to the resourceoverrides_file_name.yaml file
to make updates to the file.

What to do next
Apply the resource definition overrides. See Applying resource overrides.

Applying resource definition overrides

As a system programmer, you can apply override values from the resource overrides file to resources
when those resources are installed. See How it works: resource definition overrides. You restart CICS to
load a new or changed resource overrides file, then you can use RDO interfaces to apply values from the
currently-loaded resource overrides file while the CICS region is running.

Before you begin

• Create the resource overrides file. See Setting up a resource overrides configuration file.
• Enable resource overrides by setting the system initialization parameter RESOVERRIDES and making
that file securely available on zFS. See Enabling resource definition overrides

About this task

To load a new or changed resource overrides file, you must restart CICS. Make sure you understand the
behavior to expect from different types of start:
Initial or cold start
For an initial or cold start of a CICS region, the resource overrides file is loaded during CICS startup.
The overrides that are specified in that file are active for the lifetime of the CICS region. Overrides are
applied when CICS resources are installed during CICS startup, and when CICS resources are installed
during the lifetime of the CICS region. The resource definitions with any overrides applied are stored
in the global catalog, and the CSD file or the CICSPlex SM EYUDREP data repository is unchanged.
If the autoinstall model or autoinstalled resources are configured to be cataloged, those resources
with any overrides applied are also stored in the global catalog.

Chapter 7. Defining resources 373

 Warm or emergency start
For a warm or emergency start of a CICS region, CICS resources are restored in their current state
from the global catalog. That is, recovered resources retain their existing attributes, including any
values that were overridden when the resource was originally installed. Overrides are not applied
to those resources during CICS startup. For CICS bundles, the BUNDLE resource is restored from
the global catalog, but not the resources that are installed through the bundle. For autoinstalled
resources, if the autoinstall model or autoinstalled resources were configured to be cataloged, those
resources are restored from the global catalog.
During CICS startup, the latest resource overrides file is loaded and the overrides that are specified in
that file are active for the lifetime of the CICS region. Overrides from this current resource overrides
file are applied in the following situations:
• During CICS startup for CICS resources that are installed through a CICS bundle, because those
resources are re-created during a restart. However, resource overrides cannot be applied to
resources that can be defined only by using bundles, for example EP adapters, event bindings,
OSGi bundles, or policies.
• When new CICS resources are installed, or when resources are discarded then reinstalled, during
the lifetime of the CICS region.
• When autoinstall models and autoinstalled resources that were not configured to be cataloged are
installed during the lifetime of the CICS region.
If the resource overrides file was changed before the warm or emergency start, different overrides
could apply to recovered resources and newly installed resources. To avoid this inconsistency, don't
change the resource overrides file during the lifetime of the CICS region, or before a warm or
emergency start.

Procedure
1. To load a new or changed resource overrides file, restart CICS. Typically, you use an initial or cold start.
During startup, the resource overrides file is read from zFS and parsed. Any errors are flagged during
this parse and CICS initialization terminates with message DFHSI1612. If the file is valid (does not
have parse errors), CICS attempts to apply the overrides to the resources that are installed during
startup.
During CICS initialization, the following message is displayed in the JES message log:

DFHPA2002I applid READING RESOURCE OVERRIDES FILE: /var/cicsts/dfhconfig/

resourceoverrides

Further messages are sent to the MSGUSR extrapartition transient data destination. These messages
show the overrides that were applied, for example:

DFHAM4970 date time applid Override value 'attributevalue' was applied to

attributename attribute of resourcetype 'resourcename'.
DFHAM4968 date time applid One or more attributes of resourcetype 'resourcename'
were overridden. Installation continues.

If resource override processing errors occur during resource installation, corresponding error
messages are displayed.
• If errors occur during a GRPLIST installation, resource override processing continues but CICS
terminates when that processing completes.
• If errors occur during other methods of resource installation, resource override processing continues
but the affected resources fail to install. When resource override processing completes, CICS
continues to run.
When resource override processing is successful, for each resource that has an override applied, the
resource signature CHANGEAGENT field shows a value of Override.
2. To apply override values from the currently loaded resource overrides file while the CICS region is
running, use one of the following methods to install resources:

374 CICS TS for z/OS: Configuring CICS

 • CICS Explorer.
• CICSPlex SM Web User Interface.
• EXEC CICS CREATE commands. See System commands.
• CEDA install commands. See The CEDA INSTALL command.
• Autoinstall. See Autoinstall.
During installation, messages similar to the following messages are sent to the MSGUSR extrapartition
transient data destination:

DFHAM4970 date time applid Override value 'attributevalue' was applied to

attributename attribute of resourcetype 'resourcename'.
DFHAM4968 date time applid One or more attributes of resourcetype 'resourcename'
were overridden. Installation continues.

For each resource that has an override applied, the resource signature CHANGEAGENT field shows a
value of Override.

Results
The overrides specified in the resource overrides file are applied to the resources that were installed in
your CICS region. The resource definitions with the overrides applied are stored in the global catalog. The
CSD file or the CICSPlex SM EYUDREP data repository remains unchanged.

What to do next
Track the application of resource definition overrides. See Setting up a resource overrides configuration
file.

Monitoring resource definition overrides

As a system programmer, you can apply override values from the resource overrides file to resources
when those resources are installed. See How it works: resource definition overrides. You can track where
these overrides are applied.
During startup, the resource overrides file is read from zFS and parsed. Any errors are flagged during this
parse and CICS initialization terminates with message DFHSI1612. If the file does not have parse errors,
CICS applies the overrides to the resources that are installed during startup and you can track them in
messages and other audit facilities. See Auditing installed resources.

Messages
During CICS initialization, success or failure messages are displayed in the JES message log. For example:

DFHPA2002I applid READING RESOURCE OVERRIDES FILE: /var/cicsts/dfhconfig/

resourceoverrides

Further messages are sent to the MSGUSR extrapartition transient data destination. These messages
show the overrides that were applied, for example:

DFHAM4970 date time applid Override value 'attributevalue' was applied to

attributename attribute of resourcetype 'resourcename'.
DFHAM4968 date time applid One or more attributes of resourcetype 'resourcename'
were overridden. Installation continues.

Resource signature
Changes to resource definitions can be audited through resource signatures. The resource signature
CHANGEAGENT field shows a value of Override. See Identifying changes to resources (resource
signatures).

Chapter 7. Defining resources 375

 To view which resources have an override applied, you can use CICS Explorer or CEMT INQUIRE
commands to filter by the Override value in the CHANGEAGENT field. For example, to use CEMT to display
a list of all programs that have an override applied, enter the following command:

CEMT INQUIRE PROGRAM OVERRIDE

CICS trace

376 CICS TS for z/OS: Configuring CICS

Chapter 8. Configuring shared data tables
You can configure shared data tables to share files using cross-memory services. The shared data
tables facility is an extension to the CICS file management services and can improve the performance
of applications that use function shipping.

Planning to use data tables

The main reason for using data tables is to take advantage of their performance benefits.
This section contains Diagnosis, Modification, or Tuning Information.

Performance of a CICS-maintained data table

If all the data and index records of a file are completely contained in an LSR pool, defining the file as a
CICS-maintained data table does not reduce DASD I/O activity. There is, however, considerable potential
for reduction in CPU consumption. Also, you might be able to reduce the number of buffers in the LSR
pool.
If the file is not completely contained in an LSR pool, using a CICS-maintained data table could result in
reductions in both DASD I/O activity and CPU consumption.
The saving of CPU consumption for a CICS-maintained data table, compared with a VSAM KSDS resident
in a local shared resource (LSR) pool, depends on the application usage.

Performance of a user-maintained data table

After the loading of a user-maintained data table, DASD I/O activity is eliminated from all data table
operations, so the saving of CPU consumption compared with a VSAM KSDS resident in an LSR pool is
considerable.

Storage use for shared data tables

Shared data tables provide efficient use of data in memory. This means that considerable performance
benefits are achieved at the cost of some additional use of storage.
This overview of the use of storage assumes that you understand the distinction between various types of
storage, such as real and virtual storage, and address space and data space storage. Most of the storage
used is data space storage, which is virtual storage separate from address space virtual storage.
Shared data tables use virtual storage as follows:
• Record data is stored in data spaces DFHDT001, DFHDT002, DFHDT003, and so on, with new data
spaces being allocated as required. The total record data storage at loading time is basically the total
size of all records (without keys, which are stored in table-entry storage) plus a small amount of control
information. Data space storage is acquired in units of 16 MB, and allocated to individual tables in
increments of 128 KB. Storage is then sub-allocated in page-aligned frames that are large enough to
contain the maximum record length for the table. Data table frames are loosely equivalent to VSAM
control intervals, and normally hold a set of records with similar keys. Where possible, each new record
is stored in the same frame as the existing record with the closest lower key.
If many records are increased in length after loading, or new records are added randomly throughout a
large part of the file, the amount of storage will be increased, possibly up to twice the original size.
• Table-entry descriptors are stored in 64-bit storage.
There is one entry descriptor for each record in the table, plus one entry descriptor for each gap in the
key sequence (where one or more records have been omitted from a CICS-maintained data table). The
size of each entry is the keylength + 9 bytes, rounded up to the next multiple of 8 bytes.
• Index nodes are stored in 64-bit storage.

© Copyright IBM Corp. 1974, 2022 377

 The size of this area depends on the distribution and format of the key values as well as the actual
number of records, as indicated in Table 41 on page 378.

Table 41. Key distribution and format

Key distribution Key format Bytes per record
Dense (all keys are consecutive) binary 5.1
decimal 8.5
alphabetic 19

Sparse (no keys are consecutive) decimal 44

alphabetic 51

Worst possible case - 76

• ECSA storage is used for some small control blocks that need to be accessed by all regions that share
data tables.
Converting a file into a shared data table could lead to an increased use of real storage, but the use of
real storage for VSAM LSR buffers might be reduced if few updates are made. Also, an application that
currently achieves high performance by replicating read-only tables in each CICS region might be able to
make large storage savings by sharing a single copy of each table.
Once storage has been allocated to a data table, it remains allocated to that particular table until the table
is closed. For example, if a data table grows to 1 GB and then all the records are deleted from the table,
the table still owns 1 GB of data space storage. No other data table can use that storage until the owning
data table is closed.
Free space within a data table is tracked and reused when appropriate. For example, when table entry
descriptors or index nodes are no longer needed, they are added to a free chain for reuse within the same
table. Similarly, when all records in a record data frame have been deleted the empty frame goes back on
a free chain. When only some of the records in a frame have been deleted, the space is reused only if a
new record happens to have a key which immediately follows another existing record in the same frame
(or the previous frame, if there is no space in that frame). Unlike VSAM control intervals, records within a
frame are not necessarily in key sequence, because they are located indirectly by means of descriptors;
and records cannot be moved to consolidate free space, because this would not allow concurrent reading.
When records are allocated keys that are continuously increasing and being deleted in approximately the
same sequence, space is normally reused very efficiently, because new records normally fill up a frame
before going on to the next; and old frames eventually become completely empty, allowing them to be
reused. This is also the case for increasing keys within multiple separate ranges, provided that the ranges
are large enough for whole frames to be freed. In this situation, the amount of storage allocated to data
tables is close to the amount of storage in use.
When new data table applications are introduced, it can be helpful to monitor the storage allocated and
storage in use for each data table, to ensure that sufficient operating system resources are available to
support current and future usage. The readings for storage allocated show the storage owned by each
data table, which will not be given up until the data table is deleted. The readings for storage in use show
how much of the allocated storage is in use. The CICS sample statistics program DFH0STAT provides this
information. DFH0STAT is described in The sample statistics program, DFH0STAT.
It is possible that shared data tables may run out of space for control data (descriptors and index entries)
or record data. Running out of space can occur not only at loading time but also during normal running
when records are being added or even updated. CICS uses 64-bit storage in the FOR address space for
shared data table control data. The MVS MEMLIMIT parameter specifies the maximum amount of 64-bit
storage that a region can use. For an FOR that hosts shared data tables, MEMLIMIT must specify an
amount large enough to accommodate the shared data table control data plus any other 64-bit storage
(for example, Java virtual machines) that might be required by the FOR. The CICS SDTMEMLIMIT system
initialization parameter specifies how much of the amount specified by MEMLIMIT can be used by shared
data tables.

378 CICS TS for z/OS: Configuring CICS

 A very large data table might require more data space storage than your usual region limit set by the MVS
IEFUSI exit. In this case, you can either increase the limit by modifying the IEFUSI exit or use a CICS
XDTRD global user exit program to suppress some records. The IEFUSI exit is described in the z/OS MVS
Installation Exits manual (SA22-7593).

MVS JCL requirements when using shared data tables

Before using shared data tables, you might need to change some of your JCL statements, modify your
operational procedures, or increase the value of the MAXUSER MVS initialization parameter.
This is because MVS does not allow more than one step of a job to act as a shared data table server. If
a second job step attempts to act as a shared data table server, CICS issues message DFHFC0405. Also,
as job steps following the server step would also be unable to use cross-memory services with MRO, it is
recommended that none of the job steps following the server step are another execution of CICS.
If a job that includes a shared data tables server step ends before all requester job steps that connected
to this server have ended, the server address space is terminated by MVS. If the shared data table server
is running under the control of a batch initiator rather than as a started task, a new initiator must be
started when this situation occurs.
MVS terminates the batch initiator with the message IEF355A INITIATOR TERMINATED, RESTART
INITIATOR because for integrity reasons MVS would otherwise have to restrict the functions that could be
used by the next job that runs under that initiator, which might cause the job to fail. MVS does not allow
a shared data table rserver's ASID to be re-used until after all requester job steps that connected to the
server have ended.
Shared data table control data (descriptors and index entries) are stored in 64-bit storage. It might be
necessary to modify the MVS MEMLIMIT parameter value to accommodate 64-bit memory required for
shared data tables.

Selecting files for use as data tables

It is not possible to lay down any exact rules about whether a file will benefit from conversion to a shared
data table. The checklist in this topic gives some general guidance.
There are many considerations, and an analysis of the potential uses of shared data tables support should
be undertaken by someone who understands how the files are used by the various applications and the
configuration of the CICS regions.
Additional sources of information that could help you to select the files include:
• File statistics. “Using statistics to select data tables” on page 380 describes how you can use statistics
information as one of the inputs to the selection task.
• The LSR pool statistics.
• Trace entries.
• Monitoring data.
However, the most beneficial input to the selection process is a thorough understanding of the
applications and the way in which they use the files.
If your installation is using data tables for the first time, the following checklist gives some general
principles to help you select files for defining as data tables.
• You should consider using CICS-maintained data tables first, as these are easier to implement. If
you use a CICS-maintained data table, no changes are required to the applications. If you use a
user-maintained data table, some changes might be required.
• Use a CICS-maintained data table if you need to ensure the integrity of the data table across a CICS
restart.
• Use a CICS-maintained data table if you require journaling of updates. If you require journaling of all
access requests, the file is not suitable as a data table.

Chapter 8. Configuring shared data tables 379

 • The exec interface user exits XEIIN and XEIOUT, and the file control user exits XFCREQ and XFCREQC,
are not invoked in the file-owning region if a request to access a data table is satisfied by cross-memory
services. When selecting a file, you should ensure that successful operation of your application does not
depend on any activity performed at these user exits.
• You should be aware of the security implications of sharing a data table, as described in “Security
checking for data tables” on page 383.
• If a file is frequently accessed from another region, or if it is accessed by many other regions, or if the
accesses are predominantly read requests, the benefits of making it a data table can be very large.
Remember that the performance gain for a remote file is greater than for a local file.
• For a CICS-maintained data table, select files that have a reasonably high proportion of requests that
only access the data table (see Developing for access to data tables). From among those, select the files
with the highest usage of these requests in order to maximize the performance gains.
Information on file usage can be found in File control statistics in DFHSTUP reports. Not all read
requests can take advantage of the data table, so you should check the data table information in the
CICS statistics report afterward to verify that the data table is being used effectively. See Monitoring
data tables for more information.
• For a user-maintained data table, select files that have a large proportion of update activity but do not
require the updates to be recovered across a CICS restart (see “Data integrity” on page 387).
• Use performance measurements to estimate the approximate CPU savings, bearing in mind any
forecasts for future usage.
• Select one or two files with the best estimates. Give preference to a small file over a large file when the
estimated savings are similar, because a small file will probably use less real storage.
• Monitor your real storage consumption. If your system is already real-storage constrained, using a
large data table could increase your page-in rates. This in turn could adversely affect CICS system
performance. Use your normal performance tools, such as RMF(Version 5), to look at real-storage usage
and paging rates.
• Consider reducing the number of buffers in the LSR pool because the use of data tables could reduce
the number of times that the LSR pool is used.
• You can use the user exit XDTRD to select the records included in the data table. In addition, for a
user-maintained data table, you can use the user exit XDTRD to modify the records. You can thus
optimize the use of virtual and real storage by storing in the data table only the data that you need.

Using statistics to select data tables

If your sharing is confined to a single MVS image, you should consider which files have access patterns
that make the use of shared data tables beneficial.
If you need to share data between more that one MVS image, you should investigate using RLS mode to
share the files.
Figure 63 on page 381, Figure 64 on page 381, and Figure 65 on page 381 show some extracts from
a hypothetical set of file statistics for files accessed in non-RLS mode that are used in the following
discussion to demonstrate how CICS statistics can aid the selection process.
The statistics are displayed as they would be reported by the CICS offline formatting utility. Requested
file statistics are shown, but Interval or End of Day statistics would be equally suitable. The section of File
“Performance Information” statistics, which reports use of VSAM strings and buffers, is not shown here.
The numbers shown in the figures are purely for the purposes of illustration, and you should not expect
the statistics at your installation to resemble them. Similarly, the configuration of CICS regions and
files has been chosen to highlight certain points; it is not suggested that this is a typical or desirable
configuration.
Monitoring data tables discusses the statistics reported for files defined as data tables, which you can use
to assess the benefits being obtained.

380 CICS TS for z/OS: Configuring CICS

 Requested Statistics Report Collection Date-Time 12/25/99-11:51:51 Last Reset 09:00:00 Applid CICFOR Jobname SDTGSTF1
_________________________________________________________________________________________________________________________________
FILES - Resource Information
____________________________
File Data Set Name Data Set RLS DT Time Time Remote Remote Lsrpool
Name Base Data Set Name (If Applicable) Type File Indicator Opened Closed Name Sysid ID
_____________________________________________________________________________________________________________________________
APPLE CIC01.CICOWN.APPLES K NO 07:44:12 OPEN 1
BANANA CIC01.CICOWN.BANANAS K NO 09:45:08 OPEN 1
ORANGE CIC01.CICOWN.CITRUS K NO 10:51:10 OPEN 2
PEAR CIC01.CICOWN.PEARS K NO 07:30:14 OPEN 3
_____________________________________________________________________________________________________________________________
Requested Statistics Report Collection Date-Time 12/25/99-11:51:51 Last Reset 09:00:00 Applid CICFOR Jobname SDTGSTF1
_________________________________________________________________________________________________________________________________
FILES - Requests Information
____________________________
File Get Get Upd Browse Update Add Delete Brws Upd VSAM EXCP Requests RLS req
Name Requests Requests Requests Requests Requests Requests Requests Data Index Timeouts
____________________________________________________________________________________________________
APPLE 2317265 1020 0 1019 21 1 0 11503 310 0
BANANA 536452 1674 20344 1674 908 0 0 2651 70 0
ORANGE 2069454 98560 17831 98327 4543 2563 0 8511 481 0
PEAR 45871 65493 6512 65493 30109 362 0 3773 231 0
____________________________________________________________________________________________________
*TOTALS* 4969042 166747 44687 166513 35581 2926 0 0
Requested Statistics Report Collection Date-Time 12/25/99-11:51:51 Last Reset 09:00:00 Applid CICFOR Jobname SDTGSTF1
_________________________________________________________________________________________________________________________________
FILES - Data Table Requests Information
_______________________________________
File Close Read Recs ¬ Adds from Add Adds rejected Adds rejected Rewrite Delete Highest Storage
Name Type Requests in Table Reads Requests - Exit - Table Full Requests Requests Table Size Alloc(K)
___________________________________________________________________________________________________________________________
DFHST0223 I There are no data table statistics to report.

Figure 63. CICFOR requested file statistics

Requested Statistics Report Collection Date-Time 12/25/99-11:51:38 Last Reset 09:00:00 Applid CICAOR1 Jobname SDTGSTA1
_________________________________________________________________________________________________________________________________
FILES - Resource Information
____________________________
File Data Set Name Data Set RLS DT Time Time Remote Remote Lsrpool
Name Base Data Set Name (If Applicable) Type File Indicator Opened Closed Name Sysid ID
_______________________________________________________________________________________________________________________________
APPLE REMOTE CLOSED CLOSED APPLE CIF1 N
BANANA REMOTE CLOSED CLOSED BANANA CIF1 N
ORANGE REMOTE CLOSED CLOSED ORANGE CIF1 N
ZUCCHINI REMOTE CLOSED CLOSED COURGETT CIA2 N
_______________________________________________________________________________________________________________________________
Requested Statistics Report Collection Date-Time 12/25/99-11:51:38 Last Reset 09:00:00 Applid CICAOR1 Jobname SDTGSTA1
_________________________________________________________________________________________________________________________________
FILES - Requests Information
____________________________
File Get Get Upd Browse Update Add Delete Brws Upd VSAM EXCP Requests RLS req
Name Requests Requests Requests Requests Requests Requests Requests Data Index Timeouts
____________________________________________________________________________________________________
APPLE 1158701 532 0 531 11 1 0 0 0 0
BANANA 305641 0 19067 0 0 0 0 0 0 0
ORANGE 58709 32854 4265 32621 1018 1001 0 0 0 0
ZUCCHINI 78914 0 14765 0 0 0 0 0 0 0
____________________________________________________________________________________________________
*TOTALS* 1601965 33386 38097 33152 1029 1002 0 0
Requested Statistics Report Collection Date-Time 12/25/99-11:51:38 Last Reset 09:00:00 Applid CICAOR1 Jobname SDTGSTA1
_________________________________________________________________________________________________________________________________
FILES - Data Table Requests Information
_______________________________________
File Close Read Recs ¬ Adds from Add Adds rejected Adds rejected Rewrite Delete Highest Storage
Name Type Requests in Table Reads Requests - Exit - Table Full Requests Requests Table Size Alloc(K)
___________________________________________________________________________________________________________________________
DFHST0223 I There are no data table statistics to report.

Figure 64. CICAOR1 requested file statistics

Requested Statistics Report Collection Date-Time 12/25/99-11:49:31 Last Reset 09:00:00 Applid CICAOR2 Jobname SDTGSTA2
_________________________________________________________________________________________________________________________________
FILES - Resource Information
____________________________
File Data Set Name Data Set RLS DT Time Time Remote Remote Lsrpool
Name Base Data Set Name (If Applicable) Type File Indicator Opened Closed Name Sysid ID
_______________________________________________________________________________________________________________________________
COURGETT CIC02.CICOWN.COURGETT K NO 08:22:15 OPEN 1
LEMON REMOTE NO CLOSED CLOSED ORANGE CIF1 N
_______________________________________________________________________________________________________________________________
Requested Statistics Report Collection Date-Time 12/25/99-11:49:31 Last Reset 09:00:00 Applid CICAOR2 Jobname SDTGSTA2
_________________________________________________________________________________________________________________________________
FILES - Requests Information
____________________________
File Get Get Upd Browse Update Add Delete Brws Upd VSAM EXCP Requests RLS req
Name Requests Requests Requests Requests Requests Requests Requests Data Index Timeouts
____________________________________________________________________________________________________
COURGETT 78914 27469 14765 27469 336472 0 0 8212 481 0
LEMON 2010745 65706 13566 65706 3525 1562 0 0 0 0
____________________________________________________________________________________________________
*TOTALS* 2089659 93175 28331 93175 339997 1562 0 0
Requested Statistics Report Collection Date-Time 12/25/99-11:49:31 Last Reset 09:00:00 Applid CICAOR2 Jobname SDTGSTA2
_________________________________________________________________________________________________________________________________
FILES - Data Table Requests Information
_______________________________________
File Close Read Recs ¬ Adds from Add Adds rejected Adds rejected Rewrite Delete Highest Storage
Name Type Requests in Table Reads Requests - Exit - Table Full Requests Requests Table Size Alloc(K)
___________________________________________________________________________________________________________________________
DFHST0223 I There are no data table statistics to report.

Figure 65. CICAOR2 requested file statistics

Chapter 8. Configuring shared data tables 381

 The examples use a hypothetical configuration of three CICS regions. Most of the files used by CICS
applications are owned by the file-owning region CICFOR, and the applications mostly run in the
application-owning regions CICAOR1 and CICAOR2. This discussion assumes that each of the data sets
shown in the statistics reports is a VSAM base KSDS (as indicated by the Data Set Type of K), so any of
them can be defined as data tables.
This section focuses on identifying candidates for defining as CICS-maintained data tables, because the
decision to define a user-maintained data table is more likely to come from consideration of particular
applications than from a study of file performance in general. Because of this focus, none of the statistics
shown is for files accessed in RLS mode, because an RLS-mode data set cannot be the source for a
CICS-maintained data table.
The statistics also show you which file names in one region are defined to access file names in another
region. The Remote Sysid is the name given on the connection between the two regions. In the examples,
the SYSID of CICFOR is CIF2 and that of CICAOR2 is CIA2.

A file with a high read-to-update ratio

The file APPLE is used by applications that run on the application-owning region CICAOR1. It is defined in
CICAOR1 as a remote file, and the file definition points to the file APPLE owned by CICFOR.
This file would benefit from being redefined in CICFOR as a CICS-maintained data table because it has a
high ratio of remote reads (1158701 Get Requests in the time period covered by the reports) to remote
updates (11 adds, 1 delete and 531 updates) as seen in Figure 64 on page 381.
See File control statistics in DFHSTUP reports for guidance on the meanings of the “FILES - Requests
Information” section of a statistics report.

A file with a high proportion of remote reads

The file BANANA is updated and read on CICFOR, but is also accessed by CICAOR1.
Because all the remote accesses are reads and browses, with no updates, the applications running in
CICAOR1 would probably see large benefits if BANANA was defined as a data table, and the applications
on CICFOR would also benefit by reading from the local data table.

A file shared by several regions

It might appear that ORANGE is not an especially suitable data table candidate.
The statistics in Figure 64 on page 381 show that the numbers of remote retrievals from CICAOR1 (58709
Get Requests and 4265 Browse Requests) are relatively low. However, the remote file LEMON in
CICAOR2 also points to ORANGE in CICFOR, so defining ORANGE in CICFOR as a shared CICS-maintained
data table would probably benefit the performance of the applications in both AORs.

A good UMT candidate

The file COURGETT owned by CICAOR2 is accessed via the filename ZUCCHINI in CICAOR1.
CICAOR1 only reads or browses the file; any updating is issued by the owning region. Also, it is known
that these updates are relevant only to the day's CICS run and do not need to be retained permanently
(in fact, they are deleted at shutdown). The file is therefore an excellent candidate for defining as a
user-maintained data table. All the updates can then be made to the data table without any VSAM I/O
activity, and all the remote retrievals can be made without function shipping.

A rather poor candidate

The file PEAR would probably not benefit much from shared data tables support because it is not
accessed remotely and has many update and browse requests.
Local browsing does not offer as much benefit as either local reading or any form of remote retrieval,
because VSAM browsing (apart from processing of the STARTBR command) is very efficient. This analysis,

382 CICS TS for z/OS: Configuring CICS

 of course, does not consider the relative importance of the various file accesses; the reading might be
done by critical applications, but the time taken for updates might not be important.

Other possible candidates

The preceding examples illustrate only a small sample of the possible configurations and uses of files that
could benefit from shared data tables support.
You could also use shared data tables support to avoid the need to duplicate files or data tables in each
region. And, in addition to looking at existing files, you could consider moving files from an AOR to an FOR.
Moving files from an AOR to an FOR was not practical when shared data tables support was not available,
because of the cost of file accesses using function shipping.

Security checking for data tables

Shared data tables perform security checks at LOGON or CONNECT time to provide security when cross-
memory services are used. You should consider the implications of the security checks before sharing a
file that is associated with a data table.
Shared data tables must ensure that:
• The FOR cannot be impersonated. This is prevented by checking at LOGON time that the FOR is allowed
to log on with the specified generic applid of the CICS region.
• An AOR cannot gain access to data that it is not supposed to see. This is prevented by checking at
CONNECT time that the AOR is allowed access to the FOR and, if file security is in force, that the AOR is
allowed access to the requested file.
These security checks are performed by using the system authorization facility (SAF) to call the Resource
Access Control Facility (RACF) or an equivalent security manager.
Note: A region is still able to use data tables locally even if it does not have authority to act as a shared
data table server.
Shared data table support reproduces the main characteristics of function-shipping security that operate
at the region level, but the following differences should be noted:
• Shared data table support does not provide any mechanism for the FOR to perform security checks at
the transaction level (the equivalent of ATTACHSEC(IDENTIFY) or ATTACHSEC(VERIFY)). Therefore, if
you consider that the transaction-level checks performed by the AOR are inadequate for some files, you
must ensure that those files are not associated with data tables in the FOR.
• Shared data table support does not support preset security.
• Shared data table support does not pass any installation parameter list (INSTLN) information to the
security user exits.
For a description of the steps required to implement shared data table security, see Summary of RACF
classes for CICS resources.

LOGON security check

LOGON processing includes a security check to verify that the FOR is authorized to act as a server with the
specified application name.
This check minimizes the risk that an application-owning region (AOR) might accept counterfeit data
records from a file-owning region (FOR) that is in fact an impostor. The check is never bypassed, even
when SEC=NO is specified at system initialization.

Chapter 8. Configuring shared data tables 383

 CONNECT security checks
The security checks performed at CONNECT time provide two levels of security.
Bind security
Allows an FOR that runs without CICS file security to be able to restrict shared access to selected
AORs. (Running without file security minimizes run-time overheads and the number of security
definitions.)
File security
Can be activated in the FOR if you need a finer granularity of security checking. Shared data table
support then implements those checks that apply to the AOR as a whole.
Shared data table support provides no way of implementing those security checks that an FOR makes at
the transaction level when ATTACHSEC(IDENTIFY) or ATTACHSEC(VERIFY) is used with function shipping.

Preparing to use shared data tables support

To use shared data table support, you must perform the following tasks. Some of them will already have
been done for an installation that currently uses function shipping or data tables.

About this task

• Either ensure that the following modules are in an authorized system library in the LNKLST of the MVS
system, or move them into a library in the LPALST concatenation.
– DFHDTSVC and DFHDTCV, because all regions using shared data tables must use the same level of
SVC code.
– DFHMVRMS, the RESMGR exit stub, because CICS JOBLIB/STEPLIB data sets are unavailable at
end-of-memory.
The following modules are placed by the installation of CICS into the target library SDFHLINK, which is
normally included in the LNKLST concatenation.
– If SDFHLINK is in the LNKLST concatenation, you should issue the operator command MODIFY
LLA,REFRESH and wait for the confirmatory message CSV210I LIBRARY LOOKASIDE REFRESHED
in order to make the modules available.
– If SDFHLINK is not in the LNKLST concatenation, you should either copy the modules into a suitable
library that is included and issue an LLA refresh, or copy the modules into a library in the LPALST
concatenation and re-IPL the MVS system specifying CLPA.
• If any files in any AOR are to use sharing, make sure that CICS is defined as an MVS subsystem.
• Define security authorization so that FORs can act as shared data table servers and AORs can access
files owned by servers, depending on the level of security required. In a single MVS image:
– Any number of FORs can act as shared data table servers
– A single AOR can use any number of these FORs
– A single FOR can serve any number of AORs
– A region can act as an AOR for one data table and as an FOR for a different data table.
• If two FORs should have the same APPLID, at any given time only one of these FORs is used as a shared
data table server. However, there is nothing to prevent one FOR acting as a shared data table server and
another FOR, with the same APPLID, being used for function shipped requests. You should check that
your operational procedures do not allow this because there is a risk that data table requests that use
shared data table services are not directed to the same region as requests that use function shipping.
• Define those files in the FOR that are data tables as either CICS-maintained data tables or user-
maintained data tables.
• Create additional remote file definitions in the AOR if required. No changes are needed to existing
remote file definitions.

384 CICS TS for z/OS: Configuring CICS

 • For any AOR that is to share data tables, specify ISC=YES as a system initialization parameter and
define MRO or ISC links to the relevant FORs. For IP interconnectivity (IPIC) connections specify the
equivalent system initialization parameter TCPIP=YES and define an IPIC link to the relevant FOR.
• Before using shared data tables you might need to change some of your JCL statements, modify your
operational procedures, or increase the value of the MAXUSER MVS initialization parameter. For more
information, see “MVS JCL requirements when using shared data tables” on page 379.

Load modules
These load modules must be installed in your CICS region in order to use shared data tables.

Table 42. Load modules used by shared data table support

Load module Load library How loaded Description
DFHDTINS SDFHLOAD CICS load above the 16 MB line Initialization
DFHDTSVC SDFHLINK MVS LOAD above the 16 MB line Performs all functions that need
from link-list MVS authorization
DFHDTFOR SDFHAUTH MVS LOAD above the 16 MB line Data table FOR module
DFHDTAM SDFHAUTH MVS LOAD into subpool 252 Data table access manager. It
storage above the 16 MB line includes code that is executed
in cross-memory mode from an
AOR
DFHDTAOR SDFHAUTH MVS LOAD above the 16 MB line Data table AOR module
DFHDTCV SDFHLINK MVS LOAD into ECSA from link- Connection validation (AOR)
list
DFHDTXS SDFHAUTH MVS LOAD into ECSA Connection security checking
(FOR)
DFHMVRMS SDFHLINK MVS LOAD above the 16 MB line Resource manager EOT/EOM
from link-list interface code

Storage occupancy
The total size of the modules that occupy storage above the 16MB line is about 41KB. For modules that
are in ECSA storage, about 1.5KB are required for each logged-on FOR, and about 0.5KB for each AOR.
The modules are all eligible for inclusion in the link pack area (LPA), but only DFHDTFOR, DFHDTAM,
DFHDTAOR, and possibly DFHDTCV are used sufficiently frequently to be worth considering.

Resource definition for data tables

You define a data table in the same way as a CICS file, except that you also need to specify the type of
data table to be used, and the maximum number of records that can be held in the data table.
The VSAM KSDS definition supplies the maximum record length and the key length.
You can define a file as a data table by using the CEDA DEFINE FILE command, described in “The DEFINE
FILE command defines data tables” on page 387.
Also, to change or check the data table attributes of an existing file you can use:
• EXEC CICS SET FILE and INQUIRE FILE commands (see “EXEC CICS commands for data tables” on
page 390)
• CEMT SET FILE and INQUIRE FILE commands (see “CEMT commands for data tables” on page 391)

Chapter 8. Configuring shared data tables 385

Resource definition for CICS-maintained data tables
Either fixed-or variable-length record format can be specified for a CICS-maintained data table.
The maximum record length that is supported by shared data table support is 32KB. This length exceeds
that supported by CICS file management, which thus imposes the actual limit. See Lengths of areas
passed to CICS commands. The maximum number of records that is supported is 16,777,215.
Only the base VSAM cluster can have a CICS-maintained data table based on it. Read requests through
alternate index paths do not use the data table, but changes to the source data set through alternate
index paths are reflected in the data table.
Note that the source data set for a CICS-maintained data table cannot be open in RLS access mode. Thus
the file definition must specify RLSACCESS(NO), so any other files should be associated with the same
base data set.
After a file that is defined as a CICS-maintained data table has been opened, any other non-UMT file
(whether defined as a CMT or not) that names the same source data set in its definition automatically
uses the same data table. If any of these other files are defined as CMTs, message DFHFC0937 is issued
to the console when they are opened. This is not an error situation; the files are opened and use the
existing data table whenever possible.

VSAM SHAREOPTION
If the source data set is allocated with DISP=SHR, there is a risk that it could be updated by a region other
than the FOR. If this happened, the data table would no longer match the source data set. To minimize
this risk, the VSAM cross-region SHAREOPTION should be set to 1 or 2.
• 1 means that either one region can have update access to the data set or many regions can have
read-only access.
• 2 means that one region can have update access to the data set and, at the same time, many regions
can have read-only access.
Regardless of the setting of DISP, a warning message is issued if the cross-region SHAREOPTION is 3 or 4,
or if it is 2 but the CICS-maintained data table has read-only access (which means another region might
be able to update the data set).

Data integrity
A file that uses a CICS-maintained data table can be defined as a recoverable resource. The source data
set is recovered in the normal way after a system or transaction failure.
• After a system failure, the data table is reloaded from the recovered source data set when the file is
reopened.
• After a transaction failure, changes that are made to the source data set by dynamic transaction
backout are also made to the data table.
Automatic journaling is supported (in the same way as for any other file) for file operations that access the
source data set. File operations that do not access the source data set are not journaled.

Resource definition for user-maintained data tables

Variable-length record format must be specified for a user-maintained data table.
The maximum record length that is supported by shared data table support is 32KB. This length exceeds
that supported by CICS file management, which imposes the actual limit. See Lengths of areas passed to
CICS commands. The maximum number of records supported is 16 777 215.
The source data set for a user-maintained data table can be open in RLS access mode. You might want to
make an RLS-mode data set the source of a user-maintained data table if you have other file definitions
that access the data set and the data set is updated by other CICS regions.

386 CICS TS for z/OS: Configuring CICS

 You can load multiple user-maintained data tables from the same source data set by using a separate
command or macro to define each data table and making all the definitions refer to that data set.
Although a data table must be loaded from a VSAM KSDS, an application can then copy records to a
user-maintained data table from any data source that is accessible from the CICS address space. This
could be an IMS or Db2 file. The KSDS that is used as the source data set for the data table can be empty;
it is needed only to define the maximum record length and the key length and position.

Data integrity
A user-maintained data table can be defined as a recoverable resource. Changes to the data table are
not recorded in the system log, but they are held internally in CICS memory. Thus the data table can be
recovered after a transaction failure (by dynamic backout) but not after a system failure.
This is because the CICS Shared Data Table facility manages its own recovery and does not use the
services of the log manager or the recovery manager. The exception is when changes are made to a
recoverable data table as part of a distributed unit of work. In this case, as with other recoverable
resources, a record of the link is written to the system log as part of the two-phase commit process.
However, the changes themselves are not recorded in the system log.
After a system failure, the data table is reloaded from the source data set when the file is reopened.
Remember that, at the time of failure, the contents of the source data set and data table would not have
been the same unless you had ensured that:
• no change is made to either, or
• any change is made to both.
Automatic journaling is supported only for requests that access the source data set during loading. The
records that are accessed by the loading process are journaled before user exit XDTRD, and the records
that are accessed due to application requests are journaled after user exit XDTRD.

The DEFINE FILE command defines data tables

You use the DEFINE FILE command to define a file as either a CICS-maintained data table or a user-
maintained data table.
Full details of FILE definitions are given in FILE resources. Only the attributes that relate to data tables are
described in this topic.
TABLE({NO|CICS|USER|CF})
Specify TABLE(CICS) to define the file as a CICS-maintained data table.
Specify TABLE(USER) to define the file as a user-maintained data table.
If you do not specify the TABLE parameter, or specify TABLE(NO), or TABLE(CF), the file is not
defined as a CICS shared data table.
MAXNUMRECS(NOLIMIT|number)
Specifies the maximum number of records that can be contained in the data table, in the range 1
through 99999999. The default is that there is no limit on the maximum number of records.
FILE(name)
Specifies the name of the file.
For a CICS-maintained data table, this name is used to refer to both the data table and the source
data set, which are treated as a single entity by CICS.
For a user-maintained data table, this name is used to refer to only the data table.
DSNAME(name)
Specifies the name of the VSAM KSDS to be used as the source data set. This must be a base data
set, not a path, or an alternate index data set. If there is a path or alternate index associated with
the source data set, any updates for a CICS-maintained data table, made via the file, are reflected
in both the source data set and its alternate indexes. For a user-maintained data table, the updates

Chapter 8. Configuring shared data tables 387

 are not reflected in either the source data set or its alternate indexes. After loading has completed, a
user-maintained data table is entirely independent of its source data set.
LSRPOOLID(number|1)
This attribute is obsolete, but is supported to provide compatibility with earlier releases of CICS.
LSRPOOLNUM(number|1|NONE)
Specifies the number of the VSAM local shared resource (LSR) pool that is to be used by the data
table. You must specify an LSRPOOL number, in the range 1 through 255. The default value is 1,
unless a value has been specified for the NSRGROUP attribute, in which case the default value for
LSRPOOLNUM is NONE.
OPENTIME({FIRSTREF|STARTUP})
Specifies when the file is to be opened, either on first reference or immediately after startup, by the
automatically initiated transaction CSFU. OPENTIME(FIRSTREF) is assumed by default.
Remember that the data table is loaded when the file is opened, so if you are using the user exit
XDTRD, make sure that the user exit is activated before the file is opened (see Activating user exits for
data tables).
RECORDFORMAT({V|F})
Specifies the format of the records in the file—either RECORDFORMAT(V) for variable-length records
or RECORDFORMAT(F) for fixed-length records.
RECORDFORMAT(V) is assumed by default. A user-maintained data table must have variable-length
records.
ADD(NO|YES), BROWSE(NO|YES), DELETE(NO|YES), READ(YES|NO), and UPDATE(NO|YES)
Specifies the file operations that can be requested for the data table.
RECOVERY({NONE|BACKOUTONLY|ALL})
Specifies the type of recovery support that is required for the data table. The default is
RECOVERY(NONE).
For a user-maintained data table, only dynamic transaction backout is supported by CICS, so
RECOVERY(BACKOUTONLY) and RECOVERY(ALL) have the same meaning.
For a CICS-maintained data table, the RECOVERY parameter applies to the source data set; it must be
consistent with any other file definition for the same data set.
The recovery attributes of a user-maintained data table are independent of any recovery attributes
that its source data set might have.
When you define a user-maintained data table, you specify its recovery attributes on the file definition
by specifying either RECOVERY(NONE) if it is to be unrecoverable, or RECOVERY(BACKOUTONLY|
ALL) if it is to be recoverable after a transaction failure.
The source data set for the user-maintained data table can be unrecoverable, recoverable for backout
only (after both transaction and system failures), or forward recoverable, regardless of what you have
specified for the user-maintained data table.
The source data set can acquire its recovery attributes in one of two ways:
• By having the recovery attributes for the data set defined in the ICF catalog (this is possible in CICS
Transaction Server for z/OS, Version 6 Release 1 for both RLS and non-RLS mode files).
• By using another file name to access the data set as an ordinary CICS file, with the recovery
attributes specified in the file definition (this is only possible in CICS Transaction Server for z/OS,
Version 6 Release 1 for non-RLS mode files).

388 CICS TS for z/OS: Configuring CICS

Example of a CICS-maintained data table definition
This example shows the definition of a CICS-maintained data table. Only the relevant parameters are
shown.

File ==> APPLE

Group ==> FRUIT
DEscription ==>
VSAM PARAMETERS
DSNAme ==> CIC01.CICOWN.APPLES
Password : PASSWORD NOT SPECIFIED
RLSACCESS ==> NO YES|NO
LSRPOOLId ==> 1 1-8 | None
LSRPOOLNum ==> 002 1-255 | None
READINTEG ==> UNCOMMITTED UNCOMMITTED|CONSISTENT|REPEATABLE
DSNSharing ==> Allreqs Allreqs | Modifyreqs
STRings ==> 005 1 - 255
Nsrgroup ==>
REMOTE ATTRIBUTES
REMOTESystem ==>
REMOTEName ==>
REMOTE AND CFDATATABLE PARAMETERS
RECORDSize ==> 00080 1-32767
Keylength ==> 006 1-255 (1-16 For CF Datatable)
INITIAL STATUS
STAtus ==> Enabled Enabled | Disabled | Unenabled
Opentime ==> Startup Firstref | Startup
DIsposition ==> Share Share | Old
BUFFERS
DAtabuffers ==> 00002 2 - 32767
Indexbuffers ==> 00001 1 - 32767
DATATABLE PARAMETERS
TABLE ==> CICS No | Cics | User | CF
Maxnumrecs ==> 1000000 Nolimit | 1-99999999
CFDATATABLE PARAMETERS
Cfdtpool ==>
TABLEName ==>
UPDATEModel ==> Locking Contention | Locking
LOad ==> No No | Yes
DATA FORMAT
RECORDFormat ==> F V | F
OPERATIONS
Add ==> Yes No | Yes
BRowse ==> No No | Yes
DELete ==> Yes No | Yes
REAd ==> Yes Yes | No
Update ==> Yes No | Yes
AUTO JOURNALING
JOurnal ==> No No | 1 - 99
JNLRead ==> None None | Updateonly | Readonly | All
JNLSYNCRead ==> No No | Yes
JNLUpdate ==> No No | Yes
JNLAdd ==> None None | Before | AFter |ALl
JNLSYNCWrite ==> Yes Yes | No
RECOVERY PARAMETERS
RECOVery ==> All None | Backoutonly | All
Fwdrecovlog ==> 10 No | 1-99
BAckuptype ==> STAtic STAtic | DYNamic
SECURITY
RESsecnum : 00 0-24 | Public

Chapter 8. Configuring shared data tables 389

 Example of a user-maintained data table definition
This example shows the definition of a user-maintained data table. Only the relevant parameters are
shown.

File ==> COURGETT

Group ==> VEGS
DEscription ==>
VSAM PARAMETERS
DSNAme ==> CIC02.CICOWN.COURGETT
Password : PASSWORD NOT SPECIFIED
RLSACCESS ==> NO YES|NO
LSRPOOLId ==> 1 1-8 | None
LSRPOOLNum ==> 002 1-255 | None
READINTEG ==> UNCOMMITTED UNCOMMITTED|CONSISTENT|REPEATABLE
DSNSharing ==> Allreqs Allreqs | Modifyreqs
STRings ==> 005 1 - 255
Nsrgroup ==>
REMOTE ATTRIBUTES
REMOTESystem ==>
REMOTEName ==>
REMOTE AND CFDATATABLE PARAMETERS
RECORDSize ==> 00080 1-32767
Keylength ==> 006 1-255 (1-16 For CF Datatable)
INITIAL STATUS
STAtus ==> Enabled Enabled | Disabled | Unenabled
Opentime ==> Firstref Firstref | Startup
DIsposition ==> Share Share | Old
BUFFERS
DAtabuffers ==> 00002 2 - 32767
Indexbuffers ==> 00001 1 - 32767
DATATABLE PARAMETERS
TABLE ==> User No | CIcs | User | CF
Maxnumrecs ==> 2000000 Nolimit | 1-99999999
CFDATATABLE PARAMETERS
Cfdtpool ==>
TABLEName ==>
UPDATEModel ==> Locking Contention | Locking
LOad ==> No No | Yes
DATA FORMAT
RECORDFormat ==> V V | F
OPERATIONS
Add ==> Yes No | Yes
BRowse ==> Yes No | Yes
DELete ==> No No | Yes
REAd ==> Yes Yes | No
Update ==> Yes No | Yes
AUTO JOURNALING
JOurnal ==> No No | 1 - 99
JNLRead ==> None None | Updateonly | Readonly | All
JNLSYNCRead ==> No No | Yes
JNLUpdate ==> No No | Yes
JNLAdd ==> None None | Before | AFter |ALl
JNLSYNCWrite ==> Yes Yes | No
RECOVERY PARAMETERS
RECOVery ==> Backoutonly None | Backoutonly | All
Fwdrecovlog ==> No No | 1-99
BAckuptype ==> STAtic STAtic | DYNamic
SECURITY
RESsecnum : 00 0-24 | Public

EXEC CICS commands for data tables

You can use the EXEC CICS SET FILE command to change the definition of an existing file and the
EXEC CICS INQUIRE FILE command to check the definition of an existing file.
For programming information, including details of how to use these commands and the parameters
described here, see SET FILE. The parameters that are relevant to data tables are described below.
This section contains General-use Programming Interface and Associated Guidance Information.

SET FILE
The following parameters are relevant to data tables; you can use them only when the file is closed and
disabled.

390 CICS TS for z/OS: Configuring CICS

 You can specify a data table attribute of a file in a CICS-value data area (cvda):
TABLE(cvda)
Specify a CVDA value of CICSTABLE to define the file as a CICS-maintained data table.
Specify a CVDA value of USERTABLE to define the file as a user-maintained data table.
Specify a CVDA value of NOTTABLE to indicate that the file is not a data table.
Note: You can also specify CFTABLE to indicate a coupling facility data table.

MAXNUMRECS(value)
Specifies the maximum number of records that can be contained in the data table, in the range 1
through 99999999. The value of zero means no limit.

INQUIRE FILE
The following parameters are relevant to data tables.
You can request that each data table attribute of a file is returned in a CICS-value data area (cvda) by
specifying:
TABLE(cvda)
If the value CICSTABLE is returned, the file has been defined as a CICS-maintained data table.
If the value USERTABLE is returned, the file has been defined as a user-maintained data table.
If the value CFTABLE is returned, the file has been defined as a coupling facility data table.
If the value NOTTABLE is returned, the file is not currently defined as a data table.
If the value NOTAPPLIC is returned, the option is not applicable because the file is a remote file.
MAXNUMRECS(cvda)
The value returned indicates the maximum number of records that can be contained in the data table.
The value of zero means no limit.

CEMT commands for data tables

You can use the CEMT SET FILE command to change the definition of an existing file, and the CEMT
INQUIRE FILE command to check the definition of an existing file.
Full details of how to use these commands, including the parameters described here, are given in
INQUIRE FILE. The parameters that are relevant to data tables are described below.

SET FILE
The following parameters are relevant to data tables; you can use them only when the file is closed and
disabled.
{CICSTABLE|USERTABLE|CFTABLE|NOTTABLE}
specify CICSTABLE to define the file as a CICS-maintained data table
specify USERTABLE to define the file as a user-maintained data table
Note: You can also specify CFTABLE to indicate a coupling facility data table.
specify NOTTABLE to indicate that the file is not a data table
MAXNUMRECS(value)
Specify the maximum number of records that can be contained in the data table, in the range 1
through 99999999. The value of zero means no limit.

INQUIRE FILE
The following parameters are relevant to data tables.

Chapter 8. Configuring shared data tables 391

 Data table
If the value CICSTABLE is returned, the file has been defined as a CICS-maintained data table.
If the value USERTABLE is returned, the file has been defined as a user-maintained data table.
If the value CFTABLE is returned, the file has been defined as a coupling facility data table.
If the value NOTTABLE is returned, the file is not currently defined as a data table.
MAXNUMRECS(value)
The value returned indicates the maximum number of records that can be contained in the data table.
The value of zero means that there is no maximum limit.

392 CICS TS for z/OS: Configuring CICS

Chapter 9. Setting up a platform
Platforms are a key capability of cloud-enabling CICS Transaction Server for z/OS. CICS regions can be
grouped as platforms for rapid application deployments, decoupling applications from the underlying
topology and increasing flexibility.

Before you begin

CICSPlex SM is a prerequisite to provide a single system image of your CICS regions. Other features of
CICSPlex SM, such as Business Application Services (BAS) and workload management, are not required.
For an introduction to platforms, see How it works: platforms. For information about securing platform
resources, see Security for platforms and applications.

About this task

Most of the work in setting up a platform is done in CICS Explorer. The CICS Cloud perspective provides
the views to manage the lifecycle of platforms. In addition to the work in CICS Explorer, in zFS, you set up
the required directory structure.
The steps below outline the process of setting up a platform. Each step contains a link to more detailed
instructions.

Procedure
1. Design the platform.
You consider what applications, policies, and resources that you want to deploy on the platform and
whether you are creating new CICS regions and region types or adopting existing CICS regions and
system group definitions. For more information, see “Designing a CICS platform” on page 394.
2. In zFS, configure your platform home directory.
For more information, see Preparing zFS for platforms.
3. In CICS Explorer, create a platform project.
To this project, you add regions types, specify any CICS bundles to deploy and the regions types where
they will be deployed.
4. From CICS Explorer, export the platform project from to zFS.
The export process packages the CICS bundles that are referenced in the CICS platform project, then
exports all the files for the platform bundle and the CICS bundles to the platform home directory in
zFS. For more information, see “Deploying a platform” on page 400.
5. In CICS Explorer, create a platform definition.
The platform definition is a CICSPlex SM PLATDEF resource definition, which points to the platform
bundle in the platform home directory in zFS, and identifies the target CICSplex for the platform. For
more information, see Deploying a CICS platform.
6. For each CICS region definition that you created in a region type in your platform project, set up an
actual CICS region.
For more information, see “Deploying a platform” on page 400.
7. In CICS Explorer, install the platform definition into the CICSplex where you want to run the platform.
CICSPlex SM uses the information in the platform bundle to install the platform in the target CICSplex,
along with any CICS bundles that are installed with the platform. For more information, see “Deploying
a platform” on page 400.
8. Start your CICS regions.
9. If you have any CICS bundles deployed with the platform, in CICS Explorer, enable them so that they
are available to the platform.

© Copyright IBM Corp. 1974, 2022 393

 Results
You have a platform running in a CICSplex.

What to do next
After you set up a platform in your CICSplex, you can deploy packaged applications on it. For more
information, see Deploying an application to a platform . You can also add further quality of service by
deploying policies to control the environment. These policies can apply to every region in the platform, or
to particular applications. For more information, see CICS policies.
For more information about running a platform, see Administering platforms and applications .

Designing a CICS platform

Before you create a platform, identify how you plan to map your existing CICS regions to a platform
or identify what new CICS regions you might create specifically to use in a platform. Also consider the
services that your platform will make available to the applications that are deployed to it.
Consider the following items in the design for your platform:
• Existing CICS regions and system group definitions (CSYSGRPs) that you want to adopt as part of the
platform.
• New CICS regions and region types that you want to create in the platform.
• Applications that you want to deploy on your platform.
• Policies that you want to deploy on your platform.
• Individual resources that you want to deploy as CICS bundles on your platform.
If your capacity requirements increase or decrease after you have designed and installed your platform,
you can use the CICS Explorer to add further CICS regions to your active platform or remove CICS regions
from it.

Designing region types

A region type is a logical grouping that collects together a number of CICS regions that share common
characteristics, and enables them to be managed as a unit in a platform. Look for common characteristics
of CICS regions that you want to manage as a group, and use these characteristics to divide the CICS
regions in the platform into suitable region types. You could group your CICS regions by using region types
to meet functional, geographical, or legal requirements, as in these examples:
• Terminal owning region (TOR), File owning region (FOR), Application owning region (AOR): CICS function
type
• Production, Test, Development: business function type
• Payroll, Personnel, Accounts: business processing function type
• United Kingdom, Asia, Europe: geographical areas by continent, country, state, county
For some examples of platform architecture, see Platform examples.
You can design and create new region types to use in the platform. Alternatively, you can choose to
adopt existing system group definitions (CSYSGRPs) as region types in the platform. A single platform
can include both created region types and adopted region types. When you use created region types,
the CICSPlex SM topology for those CICS regions is created by the platform and is associated with the
lifecycle of the platform. When you use adopted region types, you set up and maintain the CICSPlex SM
topology for those CICS regions independently of the lifecycle of the platform.
If a CICS region has more than one purpose in the platform, you can include it in more than one region
type, as a shared region. You can also share CICS regions with region types in other platforms. If your
platform design involves sharing CICS regions between region types, be aware that a created region type
can only contain created regions, and an adopted region type can only contain adopted regions. For more

394 CICS TS for z/OS: Configuring CICS

information about region sharing, see “Sharing CICS regions between region types in platforms” on page
396.
A CICS TS Version 5.1 region connected as a MAS to a CICS TS Version 5.1, 5.2 or 5.3 CMAS can be part
of a platform together with CICS TS Version 5.2 and CICS TS Version 5.3 regions connected as a MAS to
a CICS TS Version 5.2 or CICS TS Version 5.3. It is possible to install applications created with CICS TS
Version 5.2 or Version 5.3 on platforms that include CICS TS Version 5.1 regions. However, installation
of CICS TS Version 5.2 or Version 5.3 applications into CICS TS Version 5.1 regions in a platform has the
following limitations:
• Private resources for applications, such as private PROGRAM or LIBRARY resources, are not supported
in CICS TS Version 5.1 regions, and are not created in those regions. If multiple versions of the
application are installed on the platform, resource name clashes can therefore occur in the CICS TS
Version 5.1 regions. In this situation, the duplicate resource fails to install in the CICS TS Version 5.1
regions with message DFHAM4950 or DFHAM4834 being issued, and the CICS bundle for the new
application version cannot be enabled in those regions.
• CICS bundles with the same ID and version are not supported in CICS TS Version 5.1 regions. If multiple
versions of the application are installed on the platform that include CICS bundles with the same ID
and version, the CICS bundles fail to install in the CICS TS Version 5.1 regions, and the regions will
issue message DFHAM4952. In this situation, the application is in INCOMPLETE status, and it cannot be
enabled in the CICS TS Version 5.1 regions.
Because of these limitations, although you can install multiple versions of an application created with
CICS TS Version 5.2 or Version 5.3 on a platform that includes CICS TS Version 5.1 regions, it is likely
that the later versions of the application will fail to install in the CICS TS Version 5.1 regions. To avoid
installation errors, only include CICS TS Version 5.2 or Version 5.3 regions in the region types where you
are installing multi-versioned applications.

Designing new CICS regions for a platform

When you design a platform, you can include new CICS regions in created region types to meet the exact
requirements of the applications that you want to deploy on your platform. You can use created regions
to provide extra functions that supplement existing CICS regions that you plan to adopt as part of the
platform. Or you can design a platform that consists entirely of created regions.
In your platform design, consider the characteristics that are required for the CICS regions in each
created region type. Created region types can specify the properties of the CICS regions that they contain.
You can clone certain region attribute values for all the CICS regions in a region type by specifying the
attributes at a region type level. Only CICS regions that can accept the required settings can be part of
that region type. The setting in the CICS region can be the same as the setting for the region type, or the
setting can be absent in the CICS region, in which case it is supplied from the setting for the region type.
However, the setting in the CICS region cannot conflict with the setting for the region type. Shared regions
must be able to accept settings from all the region types in which they are included.
You can specify the following region attribute values at a region type level:
Eligible as Routing Region (WLMSTATUS attribute)
Whether or not this CICS region is to participate in its associated workload as a routing region when
the CICS region is started.
Eligible as Target Region (DYNROUTE attribute)
Whether or not this CICS region is to be active as a target region and accept work for the workload for
which it is a target at CICS startup.
Enable BAS Install (AUTOINST attribute)
Whether resources associated with the CICS region through a resource description should be
automatically installed when the MAS connects to the CMAS.
BAS Install Failure Action (AINSFAIL attribute)
The action to be taken in the event of a BAS install failure.
If the architecture of your platform requires that all the CICS regions in a region type have particular
capabilities or restrictions in these areas, specify the appropriate values at a region type level when you

Chapter 9. Setting up a platform 395

 are setting up the region type. If a created region type has no special requirements for an attribute, do not
specify any value for that attribute, so that any setting is allowed in the CICS regions. When you specify
a region attribute value at a region type level, that attribute value is locked and cannot subsequently be
changed in a CICS region that is part of the region type.

Mapping existing CICS regions to a platform

When evaluating your existing systems for possible candidates to become a platform, look for any top-
level groups that contain two or more system group definitions (CSYSGRPs) and multiple CICS regions.
The top-level group could potentially be a good candidate to be re-implemented as a platform, and the
CSYSGRPs could potentially be good candidates for region type adoption. You can more easily manage
and deploy resources and applications to the CICS regions in the platform by packaging parts of your
existing topology as a platform.
Each CICS system group (CSYSGRP) that you include as part of a platform must meet the following
requirements:
• The group has not already been adopted by a platform that is already installed. If the group is already
associated with a platform, it cannot be adopted as a region type.
• The group does not contain any subgroups.
• The group will not require modification (for example, a group that is involved in WLM or RTA). Platforms
require a lock on the groups that are used as region types.
• All the CICS regions in the group have the CICSPlex SM system parameter MASPLTWAIT(YES) specified.
MASPLTWAIT(YES) is also required for Business Application Services. This parameter is required to
automatically install resources for an application or platform when the CICS region is initialized.
If you have CICS regions in a CSYSGRP that does not meet these requirements, and you want to use the
CICS regions as part of the platform, add their system definitions (CSYSDEFs) to a new CSYSGRP that you
create specifically for the platform.

Checking that CICSPlex SM data repository (EYUDREP) is big enough for platforms
If you are planning a large-scale deployment, check that the size of your CICSPlex SM data repository is
adequate. The data repository is the VSAM data set where system configuration and definition data for
CICSPlex SM is stored. Each CMAS has its own data repository.
The resources for platforms and applications are managed from the data repository, not from the CICS
CSD, so the data repository needs to have enough space for the definitions for your platform and the
applications and bundles deployed on it. You can determine the current size of the data repository by
using the LISTCAT function of the IDCAMS utility.
If you want to expand the data repository, use the REPRO function of the IDCAMS utility. An example of
the JCL to do this is in the EYUJXDRP member of the CICSTS51.CPSM.SEYUSAMP library. In that JCL, on
the RECORDS(xx,yy) statement, specify a primary (xx) and a secondary (yy) value that are appropriate for
your environment. The initial values are 500 and 3000.

Sharing CICS regions between region types in platforms

Sharing regions between region types can be a valuable configuration and easy to set up within a
platform. Although there are more considerations than keeping everything separate, these can be made
less severe with planning.
There are various reasons why you might want to share CICS regions. For example, in a platform on your
development CICSplex, you may want to use a single CICS region that is shared by all of your region
types. Using a single CICS region that is shared by all of your region types simplifies new development
because you do not have to configure, manage and maintain multiple CICS regions. You might also want
to share CICS regions in a production environment, where you have multiple platforms that share a single
set of TORs or an FOR.

396 CICS TS for z/OS: Configuring CICS

 You can share CICS regions between region types either when you are setting up your platform, or in
an installed and active platform. A created region type can only contain created CICS regions, and an
adopted region type can only contain adopted CICS regions.
In created region types, you can clone certain region attribute values for all the CICS regions by specifying
the attributes at a region type level, in the platform project. Shared CICS regions must be able to accept
these settings from all the region types in which they are included. For example, you might create a region
type that specifies that its CICS regions must be eligible as routing regions for workload management.
This region type cannot share a CICS region with a region type where the CICS regions are required to
be ineligible as routing regions. However, it can share a CICS region with a region type where the CICS
regions are also required to be eligible as routing regions, or where that setting has not been specified at
the region type level.
Whether you are sharing CICS regions within a platform or between multiple platforms, care must be
taken to ensure that conflicts between specific CICS resources do not exist. Bundle installation for
platforms and applications only checks for conflicts at the CICS bundle level. If two different bundles are
installed into the same region and both create the same resource, the duplicated bundle part becomes
unusable.
If multiple platforms are sharing a group of CICS regions, and both platforms require the same resources
to be installed, only one of the platforms should attempt to install those bundles. This platform should
be installed and discarded first. It is possible for both platforms to install the same set of bundles, but
the results of this approach are uncertain. The platform install will state that no bundles were installed
for the second platform. The second platform will show a platform ENABLESTATUS of INCOMPLETE,
and bundle installation failures will also be recorded in the shared region. With this second approach,
be careful about discarding a platform: because only one platform has the bundles installed, you must
make sure that the other platform has the bundles installed that it needs to function. The worst case
scenario with this technique is where both platforms are installed at the same time. In this case, each
platform may install a subset of the bundles and so both platforms will show a platform ENABLESTATUS
of INCOMPLETE. However, even in this scenario, the platform will correctly clean up all of the bundles that
are left behind when the platforms are discarded.

Preparing zFS for platforms

Before you can create and deploy a platform, you must configure your platform home directory in zFS.
Create a dedicated file system, set up the file system security, and set up FTP security for access from
CICS Explorer.

Before you begin

For an introduction to platforms, see How it works: platforms. This task assumes that you decided how to
structure your platforms. (If not, see .)

About this task

See Platform directory structure in z/OS UNIX for an overview of the directories. In the platform home
directory, a number of subdirectories hold the different platform and application resources. These
subdirectories are created when the platform is exported from CICS Explorer.

Procedure
1. Create a z/OS UNIX file system data set to use as the zFS platform home directory.
This is a dedicated file system for use by all CICS regions in the platform. The default platform home
directory is /var/cicsts/CICSplex/platform1, where CICSplex is the name of the CICSplex
where the platform will be installed, and platform1 is the name of your platform.
As a best practice, keep this default.If you use a different directory as the platform home directory, you
must change the platform bundle to specify the alternative directory name after you create the CICS
Platform project. You do this in the CICS Explorer platform descriptor editor.

Chapter 9. Setting up a platform 397

 a) If you use non-shared zFS, mount the data set onto /var as /var/cicsts, as a read-write file
system.
b) If you use a shared file system in a multi-system (LPAR) environment, mount the data set onto the
root file system (/) as /cicsts, and then for each system that requires access, create a symbolic
link from /var/cicsts to the shared /cicsts directory.
c) If you have a multi-system or cross-sysplex environment where file systems cannot be shared
between all the systems, duplicate the structure that you set up for the platform home directory
in each of the zFS file systems. Make sure that the contents of the platform home directory are
duplicated to each of the zFS file systems whenever you export a platform, application, or CICS
bundle. You can repeat the export process in CICS Explorer and select the appropriate z/OS
connection for each individual file system.
d) If the directories do not exist, create the /var/cicsts/CICSplex and /var/cicsts/
CICSplex/platform1 subdirectories.
If you use CICS Explorer, these directories are created for you.
2. Set up file system security.
This file system security ensures that all CICS regions in the platform, including the CICSPlex SM CMAS
regions, can read the bundle files in the platform home directory.
a) Change the owner of the directories in /var/cicsts to the user ID that is used to create the
bundle files.
b) Change the group ownership of the directories in /var/cicsts to a group that all the CICS regions
in the platform belong to.
c) Give the owner of the directories read, write, and execute permissions, and give the group read and
execute permissions.
For example, rwxr-x---.
d) Optional: If write access is required by multiple administrator user IDs, or read access is required
by different groups, you can use UNIX System Services (USS) access control list (ACL) entries to
add group or owner permissions. You can achieve this by activating the FSSEC resource class and
by using the setfacl command.
3. Set up FTP security.
This level of security ensures that bundles that are exported from CICS Explorer can be written to the
platform home directory on zFS, and read by all the CICS regions in the platform.
a) Set the file mode creation mask for the z/OS FTP daemon to ensure that the owner has write
permissions and the group has read permissions.
To configure this, use the UMASK statement in the FTP.DATA configuration file.
b) Optional: If you are also using ACL entries to control security, ensure that the default ACLs
are inherited from the zFS platform home directory, for example /var/cicsts/CICSplex/
platform1, where CICSplex is the name of your CICSplex and platform1 is the name of your
platform.

Results
Your zFS environment is now configured with the correct directories and permissions. Additional
directories are created when you export the platform from CICS Explorer to zFS as part of the deployment
process.

What to do next
You can now create a platform bundle by following the instructions in Creating a CICS platform.

398 CICS TS for z/OS: Configuring CICS

Creating a platform
You create a platform in CICS Explorer. Create a CICS Platform project to define a platform bundle. The
platform bundle is a type of management bundle that describes a platform. The platform bundle specifies
the region types for the platform.

Before you begin

For an introduction to platforms, see How it works: platforms. This task assumes that you already:
1. Decided how to structure your platforms. If not, see .
2. Set up the platform home directory in zFS. If not, see Preparing zFS for platforms.
If you want to deploy CICS bundles at the level of your platform, you can create them ready to add them
when you create your CICS Platform project. For example, you can deploy a CICS bundle that contains
a resource that is required in all the CICS regions in the platform, or a policy that applies to multiple
applications deployed on the platform. If you do not yet have any applications, resources, or policies set
up for your platform, you can add CICS bundles to the platform after you create it, or at any time after you
deploy it. For instructions to create a CICS bundle, see Defining CICS bundles.

About this task

You create a platform in CICS Explorer. The following steps outline the procedure. For detailed steps, see
Working with platforms and applications in the CICS Explorer product documentation.

Procedure
1. Create a CICS Platform project. Enter a name for the project, and a name and description for the
platform itself.
The project location specifies where the CICS Platform project is saved in your local workspace.
2. Add one or more region types for the platform. Name each region type, then specify whether it is a
created region type with a new system group, or an adopted region type that uses an existing system
group. For a created region type, enter a name for the CICS system group (CSYSGRP) that will be
created for the region type.
To add an existing CICS system group as an adopted region type, you must have a connection to
CICSPlex SM.
3. Optional: Specify any CICS bundles that you want to deploy with the platform, then select the region
types where they will be deployed.
If you do not have any CICS bundles ready to deploy with the platform, skip this stage.
4. Use the platform descriptor editor in the CICS Explorer to edit the CICS Platform project to check and
complete your specifications for the platform bundle.
The platform descriptor editor opens automatically after you create a platform project. To open the
platform descriptor editor later, double-click any of the .xml files for the platform bundle, except the
manifest.xml file.
a) If you need to use a different directory instead of the default platform home directory, browse for
the home directory that you set up and specify it as the platform home directory.
b) Verify your region types, and add or remove created and adopted region types as required.
After a platform is installed and active, you can add and remove individual CICS regions in region
types. However, you cannot modify the region types in an installed platform, so finalize your region
types before you install the platform.
c) For each of the created region types in your platform, specify any settings that must apply in all the
CICS regions in the region type.
Only CICS regions that can accept the settings can be part of that region type. If your created region
type has no special requirements for an attribute, do not specify any value for that attribute so that
any setting is allowed in the CICS regions.

Chapter 9. Setting up a platform 399

 d) For each of the created region types in your platform, add one or more CICS region definitions for
CICS regions that will be part of the region type. A default CICS region definition is provided, which
you must replace with a real definition for a CICS region in the created region type.
Specify the basic properties for each CICS region, and the created region types where the region
will be included.
e) Verify any CICS bundles that are to be deployed with the platform. Add or remove bundles as
required, and verify or change the region types where each CICS bundle is to be deployed.
You can deploy further CICS bundles at the level of the platform after you install the platform, as
you develop your applications and policies.

What to do next
Export the CICS Platform project to the platform home directory on zFS, set up CICS regions to match
each CICS region definition that you created in a region type in your platform, and install the platform in
the CICSplex to make it available. For instructions, see Deploying a platform.

Deploying a platform
To deploy a platform, you export the CICS Platform project from CICS Explorer to the platform home
directory in zFS, set up CICS regions to match each CICS region definition that you created in your
platform, and create and install a platform definition (PLATDEF) in CICSPlex SM.

Before you begin

For an introduction to platforms, see How it works: platforms. This task assumes that you already:
• Decided how to structure your platforms. If not, see .
• Set up the platform home directory in zFS. If not, see Preparing zFS for platforms.
• Created a CICS Platform project in CICS Explorer. If not, see Creating a CICS platform.
Also check that the size of your CICSPlex SM data repository is sufficient. See “Checking that CICSPlex SM
data repository (EYUDREP) is big enough for platforms” on page 396.

About this task

You deploy a platform in CICS Explorer but you must take some additional steps outside CICS Explorer to
set up and start your CICS regions and make them known to CICSPlex SM. The following steps outline the
procedure. For detailed steps, see Working with platforms and applications in the CICS Explorer product
documentation.

Procedure
1. Using the CICS Cloud perspective in the CICS Explorer, export the CICS Platform project from CICS
Explorer to the platform home directory in zFS.
The export process packages the CICS bundles that are referenced in the CICS Platform project and
exports all the files for the platform bundle and the CICS bundles to the platform home directory in
zFS. During the export, the wizard checks that the subdirectories of the platform home directory exist,
and creates them if they do not exist. For more information about the platform directory structure, see
Platform directory structure in z/OS UNIX.
2. Use the CICS Explorer to create a platform definition (PLATDEF). This definition points to the platform
home directory in zFS, and identifies the target CICSplex for the platform.
You can choose to create a platform definition immediately after exporting your platform project, by
checking the box in the platform export wizard. To create your platform definition at another time, use
the New Platform Definition wizard in the CICS Explorer.
The platform definition is created in the data repository of the CICSPlex SMCMAS.

400 CICS TS for z/OS: Configuring CICS

3. For each CICS region definition that you created in a region type in your platform project, set up an
actual CICS region. As an alternative to setting up a new CICS region, you can use an existing CICS
region that was not previously managed by CICSPlex SM.
a) Create the CICS region with an APPLID, SYSID, and other attributes that match the system
definition that you created. As a best practice, CICS regions in a region type should be clones
of each other. For instructions to do this, see Setting up a CICS region.
b) Perform the steps on the CICS region to make it known to CICSPlex SM as a managed application
system (MAS). For instructions to do this, see Setting up a CICSPlex SM managed application
system (MAS).
Do not start the CICS regions yet.
4. Use CICS Explorer to install the platform definition. This creates the platform in the target CICSplex.
When you install the platform definition, CICSPlex SM creates a PLATFORM resource to represent the
platform in the CICSplex. CICSPlex SM also creates a record for the platform in the data repository,
which is used in recovery processing for any bundles for the platform.
5. For any CICS regions in created region types, start the regions now, using your normal method, then
refresh the Cloud Explorer view in the CICS Explorer and confirm that the status of the platform is now
ACTIVE.
6. If you have any CICS bundles deployed with the platform, right-click the platform and click Enable.

Results
The platform is installed and enabled.

What to do next
You can deploy packaged applications on the platform. For more information, see Deploying an
application to a platform. You can also add further quality of service by deploying policies to control
the environment. For more information, see CICS policies.
For more information about running a platform, see Administering platforms and applications.

Chapter 9. Setting up a platform 401

402 CICS TS for z/OS: Configuring CICS
Chapter 10. Setting up CMCI
To configure and manage CICS regions from an HTTP system management client such as CICS Explorer
through an API, you must set up the CICS management client interface (CMCI) in your CICS environment.

About this task

You can set up the CMCI by configuring the CMCI JVM server in a single CICS region or a CICSPlex
SM. The CMCI JVM server provides support for the CMCI REST API, CMCI GraphQL API, CICS bundle
deployment API, and so on. If you don't want the CMCI JVM server, you can still set up the basic
CMCI, which provides the CMCI REST API. For more information about different CMCI APIs, see CICS
management client interface (CMCI).
Depending on your environment, you can set up the CMCI in either a CICSPlex SM environment or in a
single CICS region that is not managed by any CICSPlex SM.
CMCI in a CICSPlex SM environment
Allows you to manage definitional resources, such as CSD and BAS resources, and operational
resources in all of the CICS regions managed by CICSPlex SM, with an HTTP client.
CMCI in a single CICS region
Allows you to manage only the CSD and operational resources associated with that region through an
HTTP client, and the context is specified as the application ID of that CICS region.
When a single CICS region is configured with the CMCI, it becomes a CICS System Management Single
Server (SMSS).

Setting up CMCI with CICSPlex SM

To install the CICS management client interface (CMCI) in a CICSPlex SM environment, you must
configure the CMCI in a WUI region.

Planning for CMCI setup

1. For high availability, you can have multiple CICSPlex SM WUI regions.
2. To use enhanced client authentication in the CMCI such as multifactor authentication (MFA), the CMCI
GraphQL API, or the CICS bundle deployment API (extra configuration needed), you must use the
CMCI JVM server with the CMCI.
Note: In CICSPlex SM, the CMCI uses the CMCI JVM server by default, as described in this CMCI
configuration procedure. If you do not want to use the CMCI JVM server with the CMCI, it's possible to
set the feature toggle com.ibm.cics.cmci.jvmserver=false to switch off the CMCI JVM server
and use the instructions in Setting up CMCI with CICSPlex SM in the CICS TS 5.4 product information
to set up the basic CMCI. However, this feature toggle will be removed in a future release of CICS TS;
therefore, you are strongly encouraged to upgrade to the CMCI JVM server as soon as possible.
3. Estimate storage requirements for the CMCI.
Estimate storage requirements for the CMCI.
You can use the following values as an initial estimate for 24-bit and 31-bit storage:
• 24-bit storage: 512 KB
• 31-bit storage: 100 MB
This is because the supplied JVM profile disables the use of the shared library region, which
reduces the amount of non-CICS 31-bit storage required. By default, the JVMSERVER resource that is
automatically created for the CMCI JVM server has a value of 15 for the THREADLIMIT attribute. As
the workload changes, for example, if you change the number of threads, you need to recalculate the
storage requirements as described in Calculating storage requirements for JVM servers .

© Copyright IBM Corp. 1974, 2022 403

 For 64-bit storage and auxiliary storage, calculate their requirements as described in “Estimating
storage requirements for CMCI” on page 427.

Setup guide
Scenario 1: You want to set up the CMCI in a WUI region that does not have CMCI configured.
Follow the instructions in “Configuring CMCI with CMCI JVM server in a WUI region” on page 404.
Scenario 2: You have a WUI region that is already set up with the basic CMCI. You want to convert
the WUI region to use the CMCI JVM server.
For instructions, see “Converting a WUI region with basic CMCI to use CMCI JVM server” on page 408.
Scenario 3: You want to have several CMCI JVM servers running in a CICSplex.
If you have several CMCI JVM servers running in a CICSplex, you can configure the single sign-on
(SSO) support in Liberty to enable HTTP client users to authenticate once with one CMCI JVM server,
thus having access to other CMCI JVM servers in the same CICSplex without re-authentication. For
instructions, see “Setting up for multiple CMCI JVM servers in a CICSplex” on page 411.

Configuring CMCI with CMCI JVM server in a WUI region

If a WUI region does not have the CMCI configured, you can set it up by configuring a CMCI JVM server
(EYUCMCIJ) in this WUI region. The CMCI JVM server is a Liberty server that supports the CMCI REST API,
enhanced client authentication, the CMCI GraphQL API, and the CICS bundle deployment API.
Setup guide: If your WUI regions is already configured with the basic CMCI, you can upgrade it to use the
CMCI JVM server. See instructions in “Converting a WUI region with basic CMCI to use CMCI JVM server”
on page 408. If you are setting up CMCI in a single CICS region that is not part of a CICSplex, see “Setting
up CMCI in a single CICS region” on page 416.

Before you begin

Plan for CMCI setup, such as the number of CMCI JVM servers needed and storage requirements. For
instructions, see “Planning for CMCI setup” on page 403.
System requirements for the CMCI JVM server
1. You must have configured one or more CICSPlex SM WUI regions. To set up a CICSPlex SM WUI
region, follow Setting up a CICSPlex SM Web User Interface server.
2. Verify that all of the required Java components are installed. You can follow the Java components
checklist.
3. You must have set up Java support in CICS. That is, you have also set the JVM profile location and
grant the CICS region required access. For instructions, see Setting up Java support.
Additional requirements for enabling connections with multi-factor authentication (MFA) credentials
• You must have IBM Multi-Factor Authentication for z/OS or an equivalent product configured with
RACF to support multi-factor authentication. If you use an alternative external security manager
(ESM), refer to your vendor for details.
• Ensure that the region where the CMCI JVM server will be running, and the CMAS to which it
connects are at the same CICS level. For information about CICS level considerations for setting up
your CICSPlex SM topology, see Designing your CICSPlex SM environment.
Additional requirements for enabling CICS bundle deployment API
For the minimum CICS TS version required for the region to be configured with the API, see Software
requirements at “Configuring the CMCI JVM server for the CICS bundle deployment API” on page 421.
Additional requirements for advanced capabilities in CICS Explorer
For the region version requirements for the aggregation function, the Map view, and sign-on with MFA
credentials in CICS Explorer, see Configuring for CICS Explorer.

404 CICS TS for z/OS: Configuring CICS

Procedure
1. Specify storage limits on the following parameters, according to the estimate you get from Step “3” on
page 403 of Planning for CMCI setup:

Parameters Storage affected

EDSALIM system initialization parameter 31-bit (above 16 MB, above-the-line) storage

CICSPlex SM system parameters: Auxiliary storage of the CMAS

• MAXAUXCPSM
• MAXAUXTOTL

z/OS MEMLIMIT parameter 64-bit (above-the-bar) storage

z/OS REGION parameter 24-bit storage (below 16 MB, below-the-line)

31-bit storage

2. Specify or review the following system initialization parameters for the WUI region:

SIT parameters Description

START=INITIAL
Other system initialization parameters
in the Mapping between region SIT
parameters and CMCI JVM server
configuration elements table
Ensures the WUI region starts with the status of CICS
resource definitions saved in the global catalog at the
previous shutdown ignored.
The CMCI JVM server is autoconfigured using the values
of these mapped system initialization parameters.
Review and update these parameters as needed. For
example, if you need to enable authentication for the
CMCI, you need to set SEC to YES to enable Liberty
security for the CMCI JVM server.

3. Specify WUI server initialization parameters to enable the CMCI, such as CMCI options and TCP/IP
options.
These configuration options are specified on the job card using a DD statement. For WUI regions, the
DD statement is EYUWUI. For detailed instructions on how to specify these parameters, see Web User
Interface server initialization parameters.
Some of the parameters are mandatory for the CMCI. For example, you must specify CMCIPORT and
TCPIPHOSTNAME. And you might need a nonzero value on the DEFAULTWARNCNT parameter for the
CMCI.
Extra configuration is also needed if the WUI server initialization parameter values that map to
the CMCI JVM server configuration elements are not compatible with the CMCI JVM server. For
more information on these options and how they are mapped to the CMCI JVM server configuration
elements, see the Mapping between TCP/IP options and configuration elements in server.xml table.
Configuring the CMCI JVM server
4. Create the JVM profile for the CMCI JVM server.
a) Copy EYUCMCIJ.jvmprofile from its installation location to the location that is specified on the
JVMPROFILEDIR parameter for customization. If you haven't set JVMPROFILEDIR, see Setting the
location for the JVM profiles.
The installation location is controlled by the root directory specified on USSHOME. The default
installation location is /usr/lpp/cicsts/cicsts61/JVMProfiles.
b) Validate or update the values of the JAVA_HOME and WORK_DIR options in the JVM profile.
For detailed description or requirements of each option, see JVM server profile options.

Chapter 10. Setting up CMCI 405

 c) Verify that -Dcom.ibm.ws.zos.core.angelRequired=true and
-Dcom.ibm.ws.zos.core.angelRequiredServices=SAFCRED,PRODMGR,ZOSAIO have been
set in EYUCMCIJ.jvmprofile.
d) Ensure that RACF profiles BBG.AUTHMOD.BBGZSAFM.SAFCRED,
BBG.AUTHMOD.BBGZSAFM.PRODMGR and BBG.AUTHMOD.BBGZSAFM.ZOSAIO in class SERVER
have been created and that the CICS region user ID has been granted READ access to those
profiles. See Enabling z/OS authorized services on Liberty for z/OS.
e) If you want a selection of regions that contain CMCI JVM servers to share security configurations,
specify the same SAF profile prefix for these regions.
Note: The SAF profile prefix is used by SAF authorization to determine which RACF rules the CICS
region uses. SAF authorization is automatically enabled for the CMCI JVM server.
For example, when authenticating users for the CICS bundle deployment API, CMCI JVM servers in
the CICS regions with the same SAF profile prefix will allow the same users to access the API.
For the CMCI JVM server, the SAF profile prefix defaults to the APPLID of the region. To override it,
add the following line to the JVM profile:

-Dcom.ibm.cics.jvmserver.wlp.saf.profilePrefix=${MYPREFIX}

where ${MYPREFIX} specifies the SAF profile prefix for the CICS regions that need to share
security configurations.
5. The CMCI JVM server enables SAF authorization by default. You then need to configure a Liberty angel
process to use the z/OS authorized services, including SAF.
Create a Liberty angel if you don't have one, or use an existing Liberty angel. You can use either the
default Liberty angel or a named angel provided that the version of Liberty for the angel process is the
same as or higher than the version of Liberty that's running in CICS. If the default one doesn't match
that criterion, either update it or use a named angel that does. For instructions on how to configure a
Liberty angel process, identify the Liberty version of an existing angel, or specify a named angel, see
The Liberty server angel process.
6. Permit the user ID of the region that contains the CMCI JVM server to use the Liberty angel process.
If you are using RACF, you can use the sample CLIST EYU$ANGL in SEYUSAMP to create RACF
definitions for the WUI region to use the Liberty angel process, as follows:
a) Take a copy of the CLIST EYU$ANGL in SEYUSAMP.
b) Update the copy by specifying the following variables:
WUI_REGION_USERID
Specify the user ID under which the WUI region runs.
ANGEL_NAME
If you are using a named angel process, the value is ANGEL.name where name is the value of
the -Dcom.ibm.ws.zos.core.angelName property.
If you are not using a name angel process (-Dcom.ibm.ws.zos.core.angelName is not
specified), the value is ANGEL.
c) Run the CLIST.
If you are using an external security manager other than RACF, refer to the documentation of the
external product for instructions.
7. Tasks starting from the CMCI JVM server that are not classified as web requests run under the CJSU
transaction by default. If transaction security is active in the region that contains the CMCI JVM server,
give the CICS default user ID access to the CJSU transaction.
Alternatively, you can:
• Create a new user ID based on the CICS default user, with additional access to the CJSU transaction.
You must specify the user ID in the com.ibm.cics.jvmserver.unclassified.userid property
to override the default user ID.

406 CICS TS for z/OS: Configuring CICS

 • Or, use a duplicate transaction of CJSU for unclassified work that is run in a JVM server. You must
specify the transaction ID in the com.ibm.cics.jvmserver.unclassified.tranid property to
override the default transaction ID (CJSU), and give required access to this transaction.
For more information about Liberty JVM server security configuration, see Configuring security for a
Liberty JVM server.
8. Check the feature toggle configuration file that the feature toggle for the CMCI JVM server is set to
true, or is left to the default.

com.ibm.cics.cmci.jvmserver=true

For information about the feature toggle configuration, see Specifying feature toggles.
9. Enable users to authenticate through the CMCI JVM server.
You must give users access to authenticate with the CMCI JVM server, including the authority to use
the CMCI.
If you are using RACF, you must define the RACF EJBROLE profile
&PROFILE_PREFIX.CMCI.CMCIUSER and give all CMCI users read access to this profile. To do so,
you can update the sample CLIST EYU$CMCI in SEYUSAMP, as follows:
a) Take a copy of the CLIST EYU$CMCI in SEYUSAMP.
b) Update the copy by specifying the following variables:
WUI_REGION_USERID
Specify the user ID under which the WUI region runs.
WUI_APPLID
Specify the APPLID of the WUI region.
CMCIUSER_ACCESS_LIST
Specify the list of users or groups of users that will access the CMCI through CICS Explorer.
PROFILE_PREFIX
Specify the prefix for SAF profiles in the EJBROLE class. By default, it's the
APPLID of the WUI region. If you specified a SAF profile prefix on the
com.ibm.cics.jvmserver.wlp.saf.profilePrefix property in the JVM profile in Step
“6.e” on page 418. You can override the default value by setting PROFILE_PREFIX to the value
specified on com.ibm.cics.jvmserver.wlp.saf.profilePrefix.
c) Optionally, you can overwrite default values on the following options if needed:
NOTIFY
The TSO user ID to be notified in case of access violations. The default value is IBMUSER.
OWNER
The TSO user ID of the profile owner. The default value is IBMUSER.
PROGRAM_CLASS
The name of the RACF program grouping class. The default value is NCICSPPT.
d) Run the CLIST.
If you are using an external security manager other than RACF, refer to the documentation of the
external product for instructions.

What to do next
If you want to limit clients that can connect to the CMCI JVM server, you can define a client allowlist to
the CMCI JVM server. For instructions, see “Defining a client allowlist to CMCI JVM server in a CICSplex”
on page 414.
If you want to deploy CICS bundles through the CICS bundle deployment API, you must perform
additional configurations for the CMCI JVM server. For instructions, see “Configuring the CMCI JVM server
for the CICS bundle deployment API” on page 421.

Chapter 10. Setting up CMCI 407

Converting a WUI region with basic CMCI to use CMCI JVM server
If a WUI region has the basic CMCI configured, you can upgrade the WUI region to use the CMCI JVM
server (EYUCMCIJ). The CMCI JVM server is a Liberty server that supports the CMCI REST API, enhanced
client authentication, the CMCI GraphQL API, and the CICS bundle deployment API.
Setup guide: If your WUI region is not configured with any CMCI, configure the CMCI from scratch by
following instructions in “Configuring CMCI with CMCI JVM server in a WUI region” on page 404. If you
are setting up CMCI in a single CICS region that is not part of a CICSplex, see “Setting up CMCI in a single
CICS region” on page 416.

Before you begin

System requirements for the CMCI JVM server
1. You must have configured one or more CICSPlex SM WUI regions. To set up a CICSPlex SM WUI
region, follow Setting up a CICSPlex SM Web User Interface server.
2. Verify that all of the required Java components are installed. You can follow the Java components
checklist.
3. You must have set up Java support in CICS. That is, you have also set the JVM profile location and
grant the CICS region required access. For instructions, see Setting up Java support.
Additional requirements for enabling connections with multi-factor authentication (MFA) credentials
• You must have IBM Multi-Factor Authentication for z/OS or an equivalent product configured with
RACF to support multi-factor authentication. If you use an alternative external security manager
(ESM), refer to your vendor for details.
• Ensure that the region where the CMCI JVM server will be running, and the CMAS to which it
connects are at the same CICS level. For information about CICS level considerations for setting up
your CICSPlex SM topology, see Designing your CICSPlex SM environment.
Additional requirements for enabling CICS bundle deployment API
For the minimum CICS TS version required for the region to be configured with the API, see Software
requirements at “Configuring the CMCI JVM server for the CICS bundle deployment API” on page 421.
Additional requirements for advanced capabilities in CICS Explorer
For the region version requirements for the aggregation function, the Map view, and sign-on with MFA
credentials in CICS Explorer, see Configuring for CICS Explorer.

About this task

You must configure and enable the use of the CMCI JVM server in the WUI region.

Procedure
1. Specify storage limits on the following parameters, according to the estimate you get from Step “3”
on page 403 of Planning for CMCI setup. appropriate levels of 64-bit (above-the-bar) storage in the
region, and auxiliary storage, as follows:

Parameters Storage affected

EDSALIM system initialization parameter 31-bit (above 16 MB, above-the-line) storage

z/OS REGION parameter 24-bit storage (below 16 MB, below-the-line)

31-bit storage

2. Specify or review the following system initialization parameters for the WUI region:

408 CICS TS for z/OS: Configuring CICS

 SIT parameters
START=INITIAL
Other system initialization parameters
in the Mapping between region SIT
parameters and CMCI JVM server
configuration elements table
Description
Ensures the WUI region starts with the status of CICS
resource definitions saved in the global catalog at the
previous shutdown ignored.
The CMCI JVM server is autoconfigured using the values
of these mapped system initialization parameters.
Review and update these parameters as needed. For
example, if you need to enable authentication for the
CMCI, you need to set SEC to YES to enable Liberty
security for the CMCI JVM server.

3. Review your WUI server initialization parameters such as CMCI options and TCP/IP options.
You might need to change some values that are incompatible with the CMCI JVM server. For more
information, see “Configuration parameter mapping between WUI or SMSS region and CMCI JVM
server” on page 423.
4. Create the JVM profile for the CMCI JVM server.
a) Copy EYUCMCIJ.jvmprofile from its installation location to the location that is specified on the
JVMPROFILEDIR parameter for customization. If you haven't set JVMPROFILEDIR, see Setting the
location for the JVM profiles.
The installation location is controlled by the root directory specified on USSHOME. The default
installation location is /usr/lpp/cicsts/cicsts61/JVMProfiles.
b) Validate or update the values of the JAVA_HOME and WORK_DIR options in the JVM profile.
For detailed description or requirements of each option, see JVM server profile options.
c) Verify that -Dcom.ibm.ws.zos.core.angelRequired=true and
-Dcom.ibm.ws.zos.core.angelRequiredServices=SAFCRED,PRODMGR,ZOSAIO have been
set in EYUCMCIJ.jvmprofile.
d) Ensure that RACF profiles BBG.AUTHMOD.BBGZSAFM.SAFCRED,
BBG.AUTHMOD.BBGZSAFM.PRODMGR and BBG.AUTHMOD.BBGZSAFM.ZOSAIO in class SERVER
have been created and that the CICS region user ID has been granted READ access to those
profiles. See Enabling z/OS authorized services on Liberty for z/OS.
e) If you want a selection of regions that contain CMCI JVM servers to share security configurations,
specify the same SAF profile prefix for these regions.
Note: The SAF profile prefix is used by SAF authorization to determine which RACF rules the CICS
region uses. SAF authorization is automatically enabled for the CMCI JVM server.
For example, when authenticating users for the CICS bundle deployment API, CMCI JVM servers in
the CICS regions with the same SAF profile prefix will allow the same users to access the API.
For the CMCI JVM server, the SAF profile prefix defaults to the APPLID of the region. To override it,
add the following line to the JVM profile:

-Dcom.ibm.cics.jvmserver.wlp.saf.profilePrefix=${MYPREFIX}

where ${MYPREFIX} specifies the SAF profile prefix for the CICS regions that need to share
security configurations.
5. The CMCI JVM server enables SAF authorization by default. You then need to configure a Liberty angel
process to use the z/OS authorized services, including SAF.
Create a Liberty angel if you don't have one, or use an existing Liberty angel. You can use either the
default Liberty angel or a named angel provided that the version of Liberty for the angel process is the
same as or higher than the version of Liberty that's running in CICS. If the default one doesn't match
that criterion, either update it or use a named angel that does. For instructions on how to configure a
Liberty angel process, identify the Liberty version of an existing angel, or specify a named angel, see
The Liberty server angel process.

Chapter 10. Setting up CMCI 409

 6. Permit the user ID of the region that contains the CMCI JVM server to use the Liberty angel process.
If you are using RACF, you can use the sample CLIST EYU$ANGL in SEYUSAMP to create RACF
definitions for the WUI region to use the Liberty angel process, as follows:
a) Take a copy of the CLIST EYU$ANGL in SEYUSAMP.
b) Update the copy by specifying the following variables:
WUI_REGION_USERID
Specify the user ID under which the WUI region runs.
ANGEL_NAME
If you are using a named angel process, the value is ANGEL.name where name is the value of
the -Dcom.ibm.ws.zos.core.angelName property.
If you are not using a name angel process (-Dcom.ibm.ws.zos.core.angelName is not
specified), the value is ANGEL.
c) Run the CLIST.
If you are using an external security manager other than RACF, refer to the documentation of the
external product for instructions.
7. Tasks starting from the CMCI JVM server that are not classified as web requests run under the CJSU
transaction by default. If transaction security is active in the region that contains the CMCI JVM server,
give the CICS default user ID access to the CJSU transaction.
Alternatively, you can:
• Create a new user ID based on the CICS default user, with additional access to the CJSU transaction.
You must specify the user ID in the com.ibm.cics.jvmserver.unclassified.userid property
to override the default user ID.
• Or, use a duplicate transaction of CJSU for unclassified work that is run in a JVM server. You must
specify the transaction ID in the com.ibm.cics.jvmserver.unclassified.tranid property to
override the default transaction ID (CJSU), and give required access to this transaction.
For more information about Liberty JVM server security configuration, see Configuring security for a
Liberty JVM server.
8. Check the feature toggle configuration file that the feature toggle for the CMCI JVM server is set to
true, or is left to the default.

com.ibm.cics.cmci.jvmserver=true

For information about the feature toggle configuration, see Specifying feature toggles.
9. Enable users to authenticate through the CMCI JVM server.
You must give users access to authenticate with the CMCI JVM server, including the authority to use
the CMCI.
If you are using RACF, you must define the RACF EJBROLE profile
&PROFILE_PREFIX.CMCI.CMCIUSER and give all CMCI users read access to this profile. To do so,
you can update the sample CLIST EYU$CMCI in SEYUSAMP, as follows:
a) Take a copy of the CLIST EYU$CMCI in SEYUSAMP.
b) Update the copy by specifying the following variables:
WUI_REGION_USERID
Specify the user ID under which the WUI region runs.
WUI_APPLID
Specify the APPLID of the WUI region.
CMCIUSER_ACCESS_LIST
Specify the list of users or groups of users that will access the CMCI through CICS Explorer.

410 CICS TS for z/OS: Configuring CICS

 PROFILE_PREFIX
Specify the prefix for SAF profiles in the EJBROLE class. By default, it's the
APPLID of the WUI region. If you specified a SAF profile prefix on the
com.ibm.cics.jvmserver.wlp.saf.profilePrefix property in the JVM profile in Step
“6.e” on page 418. You can override the default value by setting PROFILE_PREFIX to the value
specified on com.ibm.cics.jvmserver.wlp.saf.profilePrefix.
c) Optionally, you can overwrite default values on the following options if needed:
NOTIFY
The TSO user ID to be notified in case of access violations. The default value is IBMUSER.
OWNER
The TSO user ID of the profile owner. The default value is IBMUSER.
PROGRAM_CLASS
The name of the RACF program grouping class. The default value is NCICSPPT.
d) Run the CLIST.
If you are using an external security manager other than RACF, refer to the documentation of the
external product for instructions.

What to do next
If you want to limit clients that can connect to the CMCI JVM server, you can define a client allowlist to
the CMCI JVM server. For instructions, see “Defining a client allowlist to CMCI JVM server in a CICSplex”
on page 414.
If you want to deploy CICS bundles through the CICS bundle deployment API, you must perform
additional configurations for the CMCI JVM server. For instructions, see “Configuring the CMCI JVM server
for the CICS bundle deployment API” on page 421.

Setting up for multiple CMCI JVM servers in a CICSplex

You can have several CMCI JVM servers running in a CICSplex. However, to enable HTTP client users to
authenticate once with one CMCI JVM server, thus having access to other CMCI JVM servers in the same
CICSplex without re-authentication, you must configure the single sign-on (SSO) support in Liberty.
SSO enables a user to authenticate with one CMCI JVM server and access the other CMCI JVM servers in
the CICSplex without getting prompted again. When a user is authenticated with one CMCI JVM server,
the SSO token that is created for the user during the authentication process is transported to the client in
a cookie. The cookie is used to propagate the authentication information to the other CMCI JVM servers in
the same CICSplex.
Only the authentication is shared. CMCI cached result sets are not shared.
For an overview of Liberty support for LTPA and SSO, see Authentication.

About this task

To make SSO work across CMCI JVM servers, the CMCI JVM servers running in the CICSplex must use the
same LTPA keys and share the same user registry.
You can configure SSO to support CMCI JVM servers that are in different domains.

Procedure
• Configure LTPA in Liberty.
Follow the instructions in Configuring LTPA in Liberty. See LTPA Token (ltpa) for LTPA properties that
you can set in the Liberty server configuration.
• Customize the SSO configuration support to use LTPA cookies in Liberty.
Follow the instructions in Customizing SSO configuration using LTPA cookies in Liberty.

Chapter 10. Setting up CMCI 411

Record count warnings for CMCI in a CICSplex
Setting up record count warnings causes a CICS management client interface (CMCI) request to fail if
a request is likely to result in the retrieval of an unacceptably large amount of data. You set up record
count warnings by specifying a nonzero value for the DEFAULTWARNCNT initialization parameter during
WUI server configuration when setting up the CMCI.
DEFAULTWARNCNT can take an integer value in the range 0 - 99999999. The default value is 0, meaning
that no warnings are issued.
If the warning mechanism determines that the number of records to be returned is greater than the value
of the warning count, the request fails with an HTTP 403 response code. Users must issue a new request
with different values for the SCOPE, CRITERIA and, in some cases, PARAMETER options to retrieve any
results. If the returned value is less than or equal to the warning count value, the request is processed, in
the usual way.
Note: In CMCI requests, the options count, index and SUMMONLY can be used to limit or prevent the
display of records. However, these options do not influence the number of records requested and have no
affect on the record count warning mechanism.

How to allow users to bypass record count warnings

If DEFAULTWARNCNT is set to a nonzero value, a warning count limit is in effect. Users can bypass the
warning count limit by using the CMCI URI option OVERRIDEWARNINGCOUNT in their requests. For the
CMCI URI option OVERRIDEWARNINGCOUNT to take effect, when setting up the CMCI, you must set the
RESOURCELIMIT initialization parameter to WARNING during WUI server configuration. If you want to
prevent users from bypassing the warning count limit, set RESOURCELIMIT to FAIL.
When RESOURCELIMIT(WARNING) is in effect, if a request results in the retrieval of an amount of data
larger than the warning count limit, a 403 HTTP response is returned and indicates that the errorInfo
attribute override_warning_count_allowed is set to yes. The user can then bypass the warning
count limit by using the CMCI URI option OVERRIDEWARNINGCOUNT in the request.
However, when RESOURCELIMIT(FAIL) is in effect, such requests are denied, and in the 403 HTTP
response, the errorInfo attribute override_warning_count_allowed is set to no. Issuing a request
with the OVERRIDEWARNINGCOUNT option will still result in the same 403 HTTP response.

Which CMCI resources are applicable

This feature does not apply to all resources. In the CMCI, record count warnings apply only to CMCI
requests associated with the following resources:

412 CICS TS for z/OS: Configuring CICS

CMCI Resources (A - D) CMCI Resources (E - F) CMCI Resources (H - L)

AIMODEL EJCOBEAN HOST

ATOMSERV EJCOSE HTASK
BRFACIL EJDJAR INDTDQ
BUNDLE EJDJBEAN INTRATDQ
BUNDPART ENQUEUE IPCONN
CFDTPOOL ENQMODEL IPFACIL
CICSDSA EPADAPT JRNLMODL
CICSPAGP EPADSET JRNLNAME
CICSRGN EPAINSET JVM
CICSSTOR EVCSDATA JVMPOOL
CLCACHE EVCSINFO JVMPROF
CMDT EVCSOPT JVMSERV
CONNECT EVCSPEC LIBDSN
DBCTLSS EVNTBIND LIBRARY
DB2CONN EVNTGBL LOADACT
DB2ENTRY EXCI LOADER
DB2TRN EXITGLUE LOCFILE
DOCTEMP EXITTRUE LOCTRAN
DOMSPOOL EXTRATDQ LSRPBUF
DSNAME FEPICONN LSRPOOL
DSPGBL FEPINODE
DSPMODE FEPIPOOL
DSPPOOL FEPIPROP
FEPITRGT

Chapter 10. Setting up CMCI 413

CMCI Resources (M - S) CMCI Resources (T - U) CMCI Resources (W - X)

MASHIST TASK WEBSERV

MODENAME TASKASSC WORKREQ
MONITOR TASKESTG XMLTRANS
MQCON TASKFILE
MQCONN TASKRMI
MQINI TASKTSQ
MVSESTG TCPIPGBL
MVSTCB TCPIPS
MVSTCBGL TDQGBL
MVSWLM TERMNL
OSGIBUND TRANCLAS
OSGISERV TRANDUMP
PARTNER TSKSPOLS
PIPELINE TSKSPOOL
PROCTYP TSMODEL
PROFILE TSPOOL
PROGRAM TSQGBL
RECOVERY TSQNAME
REMFILE TSQSHR
REMTDQ UOW
REMTRAN UOWDSNF
REQID UOWENQ
RPLLIST UOWLINK
RQMODEL URIMAP
RULE URIMPGBL
STREAMNM
SYSDUMP
SYSPARM

Defining a client allowlist to CMCI JVM server in a CICSplex

You can use a client allowlist to limit clients that can connect to the CMCI JVM server. For example, you
can limit which levels of CICS Explorer or a browser can connect to the CMCI JVM server.
Note: This capability allows you to manage clients that are allowed to connect to the CMCI, but do not
expect this to secure the CMCI.

Before you begin

The CMCI JVM server must be set up and running in your CMCI configuration. To set up the CMCI JVM
server, follow the instructions in “Configuring CMCI with CMCI JVM server in a WUI region” on page 404
or “Converting a WUI region with basic CMCI to use CMCI JVM server” on page 408.

About this task

The client allowlist is an ASCII file that contains a list of valid User-agent HTTP headers that are sent by a
client such as CICS Explorer or a browser.
You use the com.ibm.cics.jvmserver.cmci.user.agent.allow.list JVM property to specify the
location to the allowlist file. If the property is not defined in the JVM profile of the CMCI JVM server, all
clients are accepted.

414 CICS TS for z/OS: Configuring CICS

 If a user-agent is not in the file, the request is rejected with HTTP code 403, and message
DFHSJ1412 is issued. You can specify an alternative response text to return to the user by using the
com.ibm.cics.jvmserver.cmci.user.agent.allow.list.reject.text JVM property.
For more information about these JVM system properties, see JVM system properties.
Note: The CICS Explorer user-agent encodes the versions of several CICS Explorer components and
therefore can change when components are updated. With IBM CICS Explorer for Aqua 3.11 (Fix Pack
5.4.0.5) or later, you can discover the user-agent that a running CICS Explorer installation presents by
clicking Help > About > Installation Details > Configuration. The CMCI User Agent string is listed in the
Configuration tab of the Installation Details dialog box.

Procedure
1. Define a client allowlist file.
In the file, you can use a number sign (#) at the start of a line to specify a comment. You can also use
an asterisk (*) as the last character in an entry as a wild card. The file must be saved in the ASCII file
encoding.

# CICS Explorer User-Agent header

IBM_CICS_Explorer/5.5.6.201912070533 IBM_zOS_Explorer/3.2.9.201912061644 JRE/1.8.0_211 (Windows 7)

IBM_CICS_Explorer/5.5.6.201912070533 IBM_zOS_Explorer/3.2.9.201912061644 JRE/1.8.0_211 (Windows 8)

IBM_CICS_Explorer/5.5.6.201912070533 IBM_zOS_Explorer/3.2.9.201912061644 JRE/1.8.0_211 (Mac OS X)

Figure 66. Examples of client allowlist files where CICS Explorer is the client

Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0

Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/
71.0.3578.98 Safari/537.36

Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_2) AppleWebKit/605.1.15 (KHTML, like Gecko)

Version/12.0.2 Safari/605.1.15

Figure 67. Examples of client allowlist files where a browser is the client
2. Specify the file location as follows:
Uncomment the following line in the JVM profile for the CMCI JVM server, EYUCMCIJ.jvmprofile,
and specify the file location.

-Dcom.ibm.cics.jvmserver.cmci.user.agent.allow.list=/var/userAgentallowlist

If a user attempts to connect to the CMCI JVM server from a client that is not in the allowlist, the request
is rejected with HTTP code 403. If you want to return a custom response text to the user, continue with
step “3” on page 415.
3. Optional: In the JVM profile for the CMCI JVM server, EYUCMCIJ.jvmprofile, add the following line,
where response_text is your message to the user:

-Dcom.ibm.cics.jvmserver.cmci.user.agent.allow.list.reject.text=response_text

Results
For each valid user-agent that is processed in the allowlist, message DFHSJ1410I is issued. Only user-
agents that are defined in the allowlist are allowed to connect to the CMCI.

1 Aqua refers to IBM Explorer for z/OS Aqua.

Chapter 10. Setting up CMCI 415

 Troubleshooting: If no user-agents are allowed access to the CMCI, there might be
an issue with the client allowlist configuration. For example, the file specified in the
com.ibm.cics.jvmserver.cmci.user.agent.allow.list JVM property cannot be found, or the
file contains invalid values. In such cases, message DFHSJ1408 is issued to CSMT, and message
DFHWU4303 is issued to the user who attempts to connect to the CMCI.

What to do next
Updating the allowlist
The allowlist values in this file are held in a cache, which by default is refreshed by Liberty cache file
monitoring. Liberty cache file monitoring checks whether the file has changed every 10 seconds by
default.
If you need to update the list, you might want to override the default by setting the following Java
system property in the JVM profile of the CMCI JVM server:

-Dcom.ibm.cics.jvmserver.cmci.user.agent.allow.list.monitor.interval=20s

Setting up CMCI in a single CICS region

To manage a CICS region that is not part of any CICSplex by an HTTP client, you must set up the CICS
management client interface (CMCI) in this region to turn it into a CICS System Management Single Server
(SMSS). You can either configure the basic CMCI or the CMCI JVM server.
The CMCI JVM server is a Liberty server that supports the CMCI REST API, enhanced client
authentication, the CMCI GraphQL API, and the CICS bundle deployment API.
Note: This configuration procedure uses the CMCI JVM server to configure the CMCI in a single CICS
region. If you don't want the CMCI JVM server, you can set up the basic CMCI by following instructions in
Setting up CMCI in a single CICS region in the CICS TS 5.5 product information.
These instructions cover how to install the CMCI JVM server in a single CICS region, including how to
remove any existing basic CMCI configuration, if any. The CMCI JVM server (EYUCMCIJ) is automatically
created in an SMSS region by setting the CPSMCONN system initialization parameter to SMSSJ. Resources
required by the CMCI JVM server are automatically created, and the server is automatically configured.
You then add a DD statement to the region for the EYUSMSS data set to initialize it. A sample JVM profile
(EYUSMSSJ.jvmprofile) is also provided for configuring the CMCI JVM server further.

Before you begin

Planning for CMCI setup
1. To use enhanced client authentication in the CMCI such as multifactor authentication (MFA), the
CMCI GraphQL API, or the CICS bundle deployment API (extra configuration needed), you must
use the CMCI JVM server with the CMCI.
2. The CMCI JVM server must be dedicated to hosting the CMCI. Do not use the CMCI JVM server to
host other applications. Because a CICS region can host multiple JVM servers, use a separate JVM
server to run applications.
3. Estimate storage requirements for the CMCI.
You can use the following values as an initial estimate for 24-bit and 31-bit storage:
• 24-bit storage: 512 KB
• 31-bit storage: 100 MB
This is because the supplied JVM profile disables the use of the shared library region, which
reduces the amount of non-CICS 31-bit storage required. By default, the JVMSERVER resource
that is automatically created for the CMCI JVM server has a value of 15 for the THREADLIMIT
attribute. As the workload changes, for example, if you change the number of threads, you need

416 CICS TS for z/OS: Configuring CICS

 to recalculate the storage requirements as described in Calculating storage requirements for JVM
servers .
For 64-bit storage, calculate their requirements as described in “Estimating storage requirements
for CMCI” on page 427.
System requirements for the CMCI JVM server
1. Your CICS region must be at CICS TS 5.6 with APAR PH35122, or a later release.
2. Verify that all of the required Java components are installed. You can follow the Java components
checklist.
3. You must have set up Java support in CICS. That is, you have also set the JVM profile location and
grant the CICS region required access. For instructions, see Setting up Java support.
Additional requirements for enabling connections with multi-factor authentication (MFA) credentials
You must have IBM Multi-Factor Authentication for z/OS or an equivalent product configured with
RACF to support multi-factor authentication. If you use an alternative external security manager
(ESM), refer to your vendor for details.
Additional requirements for enabling CICS bundle deployment API
For the minimum CICS TS version required for the region to be configured with the API, see Software
requirements at “Configuring the CMCI JVM server for the CICS bundle deployment API” on page 421.
Additional requirements for advanced capabilities in CICS Explorer
For the region version requirements for the aggregation function, the Map view, and sign-on with MFA
credentials in CICS Explorer, see Configuring for CICS Explorer.

Procedure
1. If your CICS region is already configured with the basic CMCI, remove the TCPIPSERVICE and
URIMAP resources that you installed when configuring the basic CMCI, and ensure that they are
not reinstalled at CICS restart. For example, you can remove them from any group list that is
autoinstalled at CICS startup.
This is to avoid conflicts with the resources required by the CMCI JVM server. If the region starts with
previous resources installed and the CMCI JVM server configured, EYUNX0110W or EYUNX0013E is
issued.
If your region is not configured with any CMCI yet, skip to Step “2” on page 417.
2. Review or change your CICS startup JCL:
a) Ensure the hlq.CPSM.SEYUAUTH library is added to the STEPLIB concatenation, where hlq is your
high-level qualifier; for example CICSTS61
b) Ensure the hlq.CPSM.SEYULOAD library is added to the DFHRPL concatenation, where hlq is your
high-level qualifier; for example CICSTS61
These libraries must be at the same CICS TS level as those for CICS; that is, the same as the CICS
hlq.CICS.SDFHAUTH and CICS hlq.CICS.SDFHLOAD libraries in the STEPLIB concatenation.
3. Specify storage limits on the following parameters, according to the estimate you get from Step “3”
on page 416 of Before you begin.

Parameters Storage affected

EDSALIM system initialization parameter 31-bit (above 16 MB, above-the-line) storage

z/OS MEMLIMIT parameter 64-bit (above-the-bar) storage

z/OS REGION parameter 24-bit storage (below 16 MB, below-the-line)

31-bit storage

4. Add the following system initialization parameters to the region:

Chapter 10. Setting up CMCI 417

 SIT parameters Description
CPSMCONN=SMSSJ Automatically creates a Liberty JVM server named
EYUCMCIJ, which will run the CMCI JVM server.
Other system initialization parameters in the The CMCI JVM server is autoconfigured using
Mapping between region SIT parameters the values of these mapped system initialization
and CMCI JVM server configuration elements parameters.
table
Review and update these parameters as needed. For
example, if you need to enable authentication for the
CMCI, you need to set SEC to YES to enable Liberty
security for the CMCI JVM server.

5. Specify CMCI options and TCP/IP options to enable the CMCI in the region.
Add a DD statement to the region for the EYUSMSS data set. For detailed instructions, see “Specifying
CMCI and TCP/IP options for the SMSS” on page 420.
Some option parameters are mandatory. For example, you must specify CMCIPORT and
TCPIPHOSTNAME. For more information on these options and how they are mapped to the CMCI JVM
server configuration elements, see the Mapping between TCP/IP options and configuration elements
in server.xml table.
Configuring the CMCI JVM server and its security
6. Create the JVM profile for the CMCI JVM server.
a) Copy EYUSMSSJ.jvmprofile from its installation location to the location that is specified on the
JVMPROFILEDIR parameter for customization. If you haven't set JVMPROFILEDIR, see Setting
the location for the JVM profiles.
The installation location is controlled by the root directory specified on USSHOME. The default
installation location is /usr/lpp/cicsts/cicsts61/JVMProfiles.
b) Validate or update the values of the JAVA_HOME and WORK_DIR options in the JVM profile.
For detailed description or requirements of each option, see JVM server profile options.
c) Verify that -Dcom.ibm.ws.zos.core.angelRequired=true and
-Dcom.ibm.ws.zos.core.angelRequiredServices=SAFCRED,PRODMGR,ZOSAIO have
been set in EYUSMSSJ.jvmprofile.
d) Ensure that RACF profiles BBG.AUTHMOD.BBGZSAFM.SAFCRED,
BBG.AUTHMOD.BBGZSAFM.PRODMGR and BBG.AUTHMOD.BBGZSAFM.ZOSAIO in class SERVER
have been created and that the CICS region user ID has been granted READ access to those
profiles. See Enabling z/OS authorized services on Liberty for z/OS.
e) If you want a selection of regions that contain CMCI JVM servers to share security configurations,
specify the same SAF profile prefix for these regions.
Note: The SAF profile prefix is used by SAF authorization to determine which RACF rules the CICS
region uses. SAF authorization is automatically enabled for the CMCI JVM server.
For example, when authenticating users for the CICS bundle deployment API, CMCI JVM servers
in the CICS regions with the same SAF profile prefix will allow the same users to access the API.
For the CMCI JVM server, the SAF profile prefix defaults to the APPLID of the region. To override
it, add the following line to the JVM profile:

-Dcom.ibm.cics.jvmserver.wlp.saf.profilePrefix=${MYPREFIX}

where ${MYPREFIX} specifies the SAF profile prefix for the CICS regions that need to share
security configurations.
7. The CMCI JVM server enables SAF authorization by default. You then need to configure a Liberty
angel process to use the z/OS authorized services, including SAF.
Create a Liberty angel if you don't have one, or use an existing Liberty angel. You can use either the
default Liberty angel or a named angel provided that the version of Liberty for the angel process is the

418 CICS TS for z/OS: Configuring CICS

 same as or higher than the version of Liberty that's running in CICS. If the default one doesn't match
that criterion, either update it or use a named angel that does. For instructions on how to configure a
Liberty angel process, identify the Liberty version of an existing angel, or specify a named angel, see
The Liberty server angel process.
8. Permit the user ID of the region that contains the CMCI JVM server to use the Liberty angel process.
If you are using RACF, you can use the sample CLIST EYU$ANGL in SEYUSAMP to create RACF
definitions for the region to use the Liberty angel process, as follows:
a) Take a copy of the CLIST EYU$ANGL in SEYUSAMP.
b) Update the copy by specifying the following variables:
WUI_REGION_USERID
Specify the user ID under which the region that contains the CMCI JVM server runs.
ANGEL_NAME
If you are using a named angel process, the value is ANGEL.name where name is the value of
the -Dcom.ibm.ws.zos.core.angelName property.
If you are not using a name angel process (-Dcom.ibm.ws.zos.core.angelName is not
specified), the value is ANGEL.
c) Run the CLIST.
If you are using an external security manager other than RACF, refer to the documentation of the
external product for instructions.
9. Tasks starting from the CMCI JVM server that are not classified as web requests run under the CJSU
transaction by default. If transaction security is active in the region that contains the CMCI JVM
server, give the CICS default user ID access to the CJSU transaction.
Alternatively, you can:
• Create a new user ID based on the CICS default user, with additional
access to the CJSU transaction. You must specify the user ID in the
com.ibm.cics.jvmserver.unclassified.userid property to override the default user ID.
• Or, use a duplicate transaction of CJSU for unclassified work that is run in a JVM server. You must
specify the transaction ID in the com.ibm.cics.jvmserver.unclassified.tranid property
to override the default transaction ID (CJSU), and give required access to this transaction.
For more information about Liberty JVM server security configuration, see Configuring security for a
Liberty JVM server.
10. Enable users to authenticate through the CMCI JVM server.
You must give users access to authenticate with the CMCI JVM server, including the authority to use
the CMCI.
If you are using RACF, you must define the RACF EJBROLE profile
&PROFILE_PREFIX.CMCI.CMCIUSER and give all CMCI users read access to this profile. To do so,
you can update the sample CLIST EYU$CMCI in SEYUSAMP, as follows:
a) Take a copy of the CLIST EYU$CMCI in SEYUSAMP.
b) Update the copy by specifying the following variables:
WUI_REGION_USERID
Specify the user ID under which the region that contains the CMCI JVM server runs.
WUI_APPLID
Specify the APPLID of the region that contains the CMCI JVM server.
CMCIUSER_ACCESS_LIST
Specify the list of users or groups of users that will access the CMCI through CICS Explorer.
PROFILE_PREFIX
Specify the prefix for SAF profiles in the EJBROLE class. By default, it's the APPLID of
the region that contains the CMCI JVM server. If you specified a SAF profile prefix on the
com.ibm.cics.jvmserver.wlp.saf.profilePrefix property in the JVM profile in Step

Chapter 10. Setting up CMCI 419

 “6.e” on page 418. You can override the default value by setting PROFILE_PREFIX to the
value specified on com.ibm.cics.jvmserver.wlp.saf.profilePrefix.
c) Optionally, you can overwrite default values on the following options if needed:
NOTIFY
The TSO user ID to be notified in case of access violations. The default value is IBMUSER.
OWNER
The TSO user ID of the profile owner. The default value is IBMUSER.
PROGRAM_CLASS
The name of the RACF program grouping class. The default value is NCICSPPT.
d) Run the CLIST.
If you are using an external security manager other than RACF, refer to the documentation of the
external product for instructions.

Results

What to do next
If you want to limit clients that can connect to the CMCI JVM server, you can define a client allowlist to
the CMCI JVM server. For instructions, see “Defining a client allowlist to CMCI JVM server in a CICSplex”
on page 414.
If you want to deploy CICS bundles through the CICS bundle deployment API, you must perform
additional configurations for the CMCI JVM server. For instructions, see “Configuring the CMCI JVM server
for the CICS bundle deployment API” on page 421.

Specifying CMCI and TCP/IP options for the SMSS

When enabling the CMCI JVM server in a single CICS region, you must add a DD statement to the region’s
startup JCL for the EYUSMSS data set. This data set includes the CMCI and TCP/IP options that can
initialize the single CICS region as a CICS System Management Single Server (SMSS) and configure its
CMCI and TCP/IP connection.
Note: The EYUSMSS data set is only used when you configure the CMCI JVM server in a single CICS region
(SMSS). If you're configuring the basic CMCI as instructed in Setting up CMCI in a single CICS region in the
CICS TS 5.5 product information, you do not need to specify the data set.

How to specify the EYUSMSS data set

Follow these rules when you specify option parameters in the EYUSMSS data set:
• Lines with an asterisk in column 1 are comments and are ignored.
• Values must not contain lowercase characters.
• Values must be specified in parentheses immediately following the parameter.
• Values must not be greater than 32 characters.
Here is an example:

* An EYUSMSS parameter data set

TCPIPADDRESS(MVSXX.COMPANY.COM)
CMCIPORT(4445)

Options included in EYUSMSS

The CMCI and TCP/IP options that can be specified using the EYUSMSS data set are as follows.
Note: The CMCI JVM server is a Liberty server to serve the CMCI APIs. That server is automatically
configures based on the values of these configuration options. You can reference tables in “Configuration

420 CICS TS for z/OS: Configuring CICS

 parameter mapping between WUI or SMSS region and CMCI JVM server” on page 423 to decide which
options to specify.
CMCI options:
CMCIAUTH(NO | BASIC | CERTIFICATE | AUTOREGISTER | AUTOMATIC)
Specifies the settings for the CMCI TCPIPSERVICE AUTHENTICATE attribute or for the CMCI JVM
server authentication configuration. If CMCIAUTH is specified, CMCISSL must also be specified.
CMCIPORT(value)
Required Specifies the TCP/IP port number allocated to the CMCI. When the CMCI JVM server is
configured, it is instructed to use this port.
CMCISSL(NO | YES | CLIENTAUTH | ATTLSAWARE)
Specifies the settings for the CMCI JVM server SSL configuration. If CMCISSL is specified, CMCIAUTH
must also be specified.
Note: TCPIPSSLCERT and TCPIPSSLCIPHERS settings are ignored when CMCISSL is set with the NO
or ATTLSAWARE value.
TCP/IP options:
TCPIPADDRESS(name | INADDR_ANY)
Specifies the dotted decimal or colon hexadecimal IP address on which the CMCI listens for incoming
requests. If INADDR_ANY is specified (the default), the CMCI listens on any of the addresses known to
the TCP/IP for z/OS host.
TCPIPSSLCERT(name)
If specified, this value is used to set the serverKeyAlias value on the ssl element in the
server.xml configuration file of the CMCI JVM server. Otherwise the default certificate from the
keyring is used. It is recommended that the keyring specify a default certificate.
TCPIPSSLCIPHERS(cipher_list)
Lists ciphers available to the CMCI. The TCPIPSSLCIPHERS attribute is specified by referencing
the name of the SSL cipher suite specification file, which is a z/OS UNIX file in the security/
ciphers subdirectory of the directory that is specified by the USSCONFIG system initialization
parameter. For example, if USSCONFIG is set to /var/cicsts/dfhconfig and CIPHERS
is set to defaultciphers.xml, the fully qualified file name is /var/cicsts/dfhconfig/
security/ciphers/defaultciphers.xml. For more information, see Creating a TLS cipher suite
specification file.
It is recommended that you copy the sample default ciphers file from usshome/security/
ciphers/defaultciphers.xml to ussconfig/security/ciphers/defaultciphers.xml
and customize to ensure that the ciphers used conform to your compliance rules.
The cipher suite codes are used to describe the set of algorithms that are supported by the CMCI for
SSL communications.

Configuring the CMCI JVM server for the CICS bundle deployment
API
The CICS management client interface (CMCI) supports deploying CICS bundles into a region through the
CICS bundle deployment API. This API can be used by HTTP clients, including a Gradle or Maven plug-in.
To use the CICS bundle deployment API, system programmers must perform additional configuration for
the CMCI JVM server.

Before you begin

It's recommended that you understand how the API works before configuring for it. See How it works:
CICS bundle deployment API.
Software requirements
The CICS bundle deployment API is supported by the CMCI JVM server.

Chapter 10. Setting up CMCI 421

 • For a CICSPlex SM environment, set up the CMCI JVM server in the WUI region of the CICSplex that
contains the deployment target region. The WUI region must be at CICS TS 5.6 or later. See “Setting
up CMCI with CICSPlex SM” on page 403.
• For a single CICS region environment, set up the CMCI JVM server in the deployment target region.
The region must be at CICS TS 5.6 with APAR PH35122, or a later release. See “Setting up CMCI in a
single CICS region” on page 416.
Set the system initialization parameter SEC=YES.

Procedure
1. Enable the CICS bundle deployment API by specifying the bundles directory (-
Dcom.ibm.cics.jvmserver.cmci.bundles.dir) in your JVM profile of the CMCI JVM server, that
is, EYUCMCIJ.jvmprofile for a CICSplex or EYUSMSSJ.jvmprofile for a single CICS region.
Add the following line:

-Dcom.ibm.cics.jvmserver.cmci.bundles.dir=<bundles_directory>

Tips: It's recommended that you create a directory on zFS dedicated for the use of the API in
managing bundles. If you are configuring the API for multiple single CICS regions (SMSS), you are
also advised to create a separate dedicated bundles directory for each of them. Bundles pushed to
the CICS bundle deployment API are stored in the bundles directory and accessed by the CICS target
region.
2. Optional: In the JVM profile, you can also add specifications about the data that's allowed to pass the
API.
-Dcom.ibm.cics.jvmserver.cmci.deploy.timeout={120000|timeout_limit}
Specifies the timeout limit for deploying a CICS bundle, in milliseconds. This includes the time for
all bundle lifecycle actions, including disable, discard, install and enable.
The default value is 120000 (120 seconds).
-Dcom.ibm.cics.jvmserver.cmci.max.file.size={52428800|max_file_size}
Specifies the maximum size allowed for the uploaded CICS bundle, in bytes. The default size is
52428800 (50 MB).
If the size of any uploaded bundle is greater than this size, you'll receive a 400 Bad Request
message SRVE8021E: The file being uploaded is too large.
-Dcom.ibm.cics.jvmserver.cmci.max.request.size={104857600|max_request_size}
Specifies the maximum size allowed for a multipart or form-data request, in bytes. The default size
is 104857600 (100 MB).
The web container will throw an exception if the overall size of all uploaded files exceeds this
threshold.
3. Configure security levels in the CLIST.
If you're using RACF, you can copy and update the sample CLIST in SEYUSAMP. Use the EYU$BUND
sample for CICSPlex SM or EYU$BNDS for SMSS.
Specify the following required options:
Table 43. Required CLIST options for CICS bundle deployment API setup

Required options Description Applicable to Applicable to

CICSPlex SM single CICS
(EYU$BUND) regions
(EYU$BNDS)
deploy_userid The user ID with permission to deploy the bundle. You are recommended to ✓ ✓
create a functional ID (for example, DPLYUSR) for this purpose. Alternatively,
make sure your region user ID has sufficient permissions and specify it in place
of the functional ID. The ID specified on this option needs to be granted access
to the DEPLOYER subcategory of transactions in your RACF.

422 CICS TS for z/OS: Configuring CICS

Table 43. Required CLIST options for CICS bundle deployment API setup (continued)

Required options Description Applicable to Applicable to

CICSPlex SM single CICS
(EYU$BUND) regions
(EYU$BNDS)
mngdbndl_access_l The user groups that have access to the CICS bundle deployment API, for ✓ ✓
ist example, DEVELOPER.
profile_prefix The SAF profile prefix of the regions that contain the CMCI JVM server, as ✓ ✓
defined in your JVM profiles.
region_userid The user ID of the single CICS region that is configured with the CMCI JVM NA ✓
server.
wui_region_userid The user ID of the CICSPlex SM WUI region that is configured with the CMCI JVM ✓ NA
server, for example, CICSRGN.
cmas The CMAS that deploy_userid, usually the deployment functional ID, is ✓ NA
authorized to query.
cicsplex The CICSplex that deploy_userid, usually the deployment functional ID, is ✓ NA
authorized to query and deploy bundles to.
region The target CICS region that deploy_userid, usually the deployment functional ✓ NA
ID, is authorized to query and deploy bundles to in the specified CICSplex.

The following options are optional. If not specified, the default value is used.
Table 44. Optional CLIST options for CICS bundle deployment API setup

Optional options Description Applicable to Applicable to

CICSPlex SM single CICS
(EYU$BUND) regions
(EYU$BNDS)
command_class The name of the RACF command grouping class. The default value is VCICSCMD. NA ✓
resource_class The name of the RACF resource grouping class. The default value is WCICSRES. NA ✓
notify The TSO user ID to be notified in case of access violations. The default value is ✓ ✓
IBMUSER.
owner The TSO user ID of the profile owner. The default value is IBMUSER. ✓ ✓

Then run the CLIST.

4. Give user IDs access to the bundles directory on zFS using the UNIX command chmod or by applying
access control lists (ACLs). For more information, see Implementing security for z/OS UNIX files and
Giving CICS regions access to z/OS UNIX directories and files.
• The user ID specified on the deploy_userid CLIST option (usually the deployment functional ID)
needs READ, WRITE, and EXECUTE access to the bundles directory.
• The target CICS region's region user ID needs READ and EXECUTE access to the directory.

What to do next
After you have configured CICS for the CICS bundle deployment API, Java developers can deploy CICS
bundles using clients including the CICS-provided Gradle or Maven plug-in. For instructions, see their
GitHub repositories: cics-bundle-maven and cics-bundle-gradle.

Configuration parameter mapping between WUI or SMSS region

and CMCI JVM server
During setup, the CMCI JVM server reads the configuration properties from the CMCI and TCP/IP
options, and the system initialization parameters of the region, to configure the properties in its Liberty
configuration file (server.xml) accordingly. The mapping from the CMCI and TCP/IP options, and region
SIT parameters to the CMCI JVM server configuration elements in server.xml is listed. Note that for
some parameters, additional configuration is required in the CMCI JVM server.

Chapter 10. Setting up CMCI 423

 Mapping from CMCI options and TCP/IP options to CMCI JVM server configuration
elements
Table 45 on page 424 shows how CMCI options of the WUI or SMSS region are mapped to the CMCI JVM
server configuration elements in server.xml and indicates any additional configuration that is required
in the CMCI JVM server.

Table 45. Mapping between CMCI options and configuration elements in server.xml
CMCI options Option Effect on CMCI CMCI JVM server configuration
value elements
CMCIAUTH AUTOMATIC The CMCI supports both basic clientAuthenticationSupporte
authentication and client certificate d="true" on the ssl element.
authentication. 1
allowFailOverToBasicAuth="tr
ue" on the webAppSecurity
element.
Basic authentication and client
authentication are supported.

AUTOREGIS Not supported Configured as Not supported Configured as

TER AUTOMATIC. AUTOMATIC.
BASIC The CMCI requires basic clientAuthentication="false"
authentication. This is the default and
when SEC=YES is in effect. 1 clientauthenticationSupporte
d="false" on the ssl element.
allowFailOverToBasicAuth="fa
lse" on the webAppSecurity
element.
Only basic authentication is
supported.

CERTIFICAT The CMCI requires client certificate clientAuthentication="true"

E authentication. 1 2 on the ssl element.
allowFailOverToBasicAuth="fa
lse" on the webAppSecurity
element.
Only client authentication is
supported.

NO The CMCI does not require client No security configured.

authentication. This is the default
when SEC=NO is in effect.
CMCIPORT value Sets the HTTP or HTTP port for the httpPort or httpsPort on the
(Required) CMCI. httpEndPoint element.
You must specify a unique value
for the CMCIPORT parameter. This
parameter allocates a TCP/IP port
number to the CMCI. Setting a value
for the CMCIPORT parameter ensures
that the CMCI is installed on the WUI
region. The CMCI must use a different
port to the Web User Interface.

424 CICS TS for z/OS: Configuring CICS

Table 45. Mapping between CMCI options and configuration elements in server.xml (continued)
CMCI options Option Effect on CMCI CMCI JVM server configuration
value elements
CMCISSL ATTLSAWA Non-HTTPS connections to the CMCI Do not configure the CMCI JVM
RE are used. server to use SSL and disable the
(Overrides
httpsPort on the httpEndPoint
TCPIPSSL)
element.
CLIENTAUT HTTPS connections to the CMCI clientAuthentication="true"
H are used. The CMCI requires client on the ssl element.
certificate authentication.
Configure the CMCI JVM server to use
SSL and disable the httpPort on the
httpEndPoint element.

NO Non-HTTPS connections to the CMCI Do not configure the CMCI JVM

are used. server to use SSL and disable the
httpsPort on the httpEndPoint
element.
YES HTTPS connections to the CMCI are Configure the CMCI JVM server to use
used. SSL and disable the httpPort on the
httpEndPoint element.

Note:
1. Valid when SEC=YES is in effect.
2. The KEYRING system initialization parameter must be in effect.

Table 46. Mapping between TCP/IP options and configuration elements in server.xml
TCIP/IP options Option Effect on CMCI CMCI JVM server configuration
value elements
TCPIPADDRESS name Allows client connections to the host on the httpEndPoint
CMCI by using only the provided element.
(Overrides
TCP/IP address.
TCPIPHOSTNAME
for WUI) INADDR_A Allows client connections to the host="*" on the httpEndPoint
NY CMCI by using any TCP/IP address element.
associated with the LPAR. This is the
default.
TCPIPHOSTNAME name WUI only Allows client connections host on the httpEndPoint
(Required for by using any host name associated element.
WUI) with the LPAR.
TCPIPHTTPHOST YES|NO WUI only Not used by the CMCI. Not used
TCPIPSSL YES HTTPS connections to the CMCI are Configure the CMCI JVM server to use
used. SSL and disable the httpPort on the
(Can be
httpEndPoint element.
overridden by
CMCISSL) NO Non-HTTPS connections to the CMCI Do not configure the CMCI JVM
are used. This is the default. server to use SSL and disable the
httpsPort on the httpEndPoint
element.

Chapter 10. Setting up CMCI 425

Table 46. Mapping between TCP/IP options and configuration elements in server.xml (continued)
TCIP/IP options Option Effect on CMCI CMCI JVM server configuration
value elements
TCPIPSSLCERT name Takes effect when TCPIPSSL=YES is If specified, this value is used to set
in effect, or when CMCISSL is set to a the serverKeyAlias value on the
value other than NO or ATTLSAWARE. ssl element. Otherwise the default
certificate from the keyring is used.
It is recommended that the keyring
specify a default certificate.
TCPIPSSLCIPHER cipher_list Takes effect when TCPIPSSL=YES is enabledCiphers on the ssl
S in effect, or when CMCISSL is set to a element.
value other than NO or ATTLSAWARE.
Only used when SSL is active. 1
Provides the list of ciphers available
to the CMCI. 1

Note:
1. If the list contains any invalid ciphers, CICS removes invalid ciphers and continues as long as at
least one valid cipher remains. If there are no valid ciphers, access to the CMCI will be rejected.
Liberty allows invalid ciphers to be configured but rejects connections with message Unsupported
ciphersuite in the Liberty logs. In such cases, the following messages help you identify the cause of
the problem:
DFHSO0145W indicates that invalid ciphers have been supplied.
DFHSO0146I lists the invalid ciphers that were removed by CICS.
Liberty references:
For information about the attributes on the ssl element, see SSL configuration attributes in Liberty.
For information about the attributes on the webAppSecurity element, see Web Container Application
Security (webAppSecurity) in Liberty.
For information about the attributes on the httpEndPoint element, see HTTP Endpoint (httpEndpoint)
in Liberty.

Mapping between region SIT parameters and CMCI JVM server configuration
elements
Table 47 on page 426 shows how the WUI or SMSS region system initialization parameters are mapped to
the CMCI JVM server configuration parameters and indicates what additional configuration is required in
the CMCI JVM server.

Table 47. Mapping between region system initialization parameters and CMCI JVM server configuration elements
Region SIT Region SIT Effect on CMCI CMCI JVM server configuration
parameter parameter elements
name value
APPLID applid When SAF authorization is in use, profilePrefix on the
sets the prefix for CMCI security safCredentials element.
profiles unless overridden by the
safCredentials element. For more
information, see Authorization using
SAF role mapping.

426 CICS TS for z/OS: Configuring CICS

Table 47. Mapping between region system initialization parameters and CMCI JVM server configuration elements
(continued)
Region SIT Region SIT Effect on CMCI CMCI JVM server configuration
parameter parameter elements
name value
DFLTUSER userid Sets the CMCI unauthenticated default unauthenticatedUser on the
user. safCredentials element
Used when security is active.

KEYRING keyring-name Provides the name of the Keyring location on the keyStore element
used for HTTPS or client certificate
Used when SSL or client certification is
authentication.
active.

MINTLSLEVE WUI only Not used by the CMCI. You can configure sslProtocol on
L the ssl element to set the SSL
protocol.
NISTSP8001 NOCHECK| Instructs the CMCI to check for Configure Liberty to run in
31A CHECK conformance to the NIST SP800-131A SP800-131a.
standard.
SEC NO Disables authentication. Disables Liberty security.
YES Enables basic authentication in Enables Liberty security.
the CMCI, unless overridden by
CMCIAUTH.

Liberty references:
For information about the attributes on the safCredentials element, see Interface SAFCredential in
Liberty.
For information about the attributes on the ssl element, see SSL configuration attributes in Liberty.

Estimating storage requirements for CMCI

To avoid possible storage problems when you use the CICS management client interface (CMCI), you
must specify appropriate levels of required storage in the CICS region. Any CMCI including the basic CMCI
REST API requires 64-bit storage, and, if you have a CICSplex, auxiliary storage for the CMAS. If you are
setting up the CMCI JVM server for the CMCI, you must also calculate the MVS storage required in 24-bit,
31-bit, and 64-bit storage.
Use the z/OS REGION parameter to set the limit for 24-bit and 31-bit (below-the-bar) storage. Use the
z/OS MEMLIMIT parameter to set the limit for 64-bit (above-the-bar) storage in your WUI region or CICS
region, and the MAXAUXCPSM and MAXAUXTOTL CICSPlex SM system parameters to set auxiliary storage
for the CMAS.

About this task

If you are calculating storage requirements for a CICSPlex SM environment, consider the following
factors:
• Running the CMCI with large workloads can lead to short-on-storage situations on the WUI server and
possible CMAS shutdowns caused by running out of auxiliary storage.
• The CMCI stores retained results sets for the WUI server in 64-bit storage in the CICS region, in subpool
WU_64 in the GCDSA.

Chapter 10. Setting up CMCI 427

 • During a CMCI request, the CMAS collects and stores the requested resource records, which are then
backed up in auxiliary storage. Running requests concurrently through the CMCI multiplies the number
of records held by the CMAS with each request.
If you are setting up the CMCI JVM server for the CMCI in your CICS region, the JVM server uses MVS
storage in 24-bit, 31-bit, and 64-bit dressing areas in addition. Ensure that you include the storage
requirement of the CMCI JVM server in your estimation.

Procedure
1. Calculate the storage requirement for a typical request.
Select the resource that is likely to generate the largest number of records in a request and multiply
the number of records by the size of each record. See the appropriate table in CICSPlex SM resource
tables to determine the record size.
2. Calculate your total requirements for 64-bit storage for retained result sets.
Estimate your expected maximum number of retained result records for a single request and multiply
this figure by your estimate of the storage required for each request. For example, if you can have
100,000 CICS terminals in a single request, multiply this figure by the size of the resource record as
determined in Step “1” on page 428.
3. If you are setting up the CMCI in a CICSPlex SM environment, estimate your auxiliary storage
requirements for your CMAS.
Estimate the maximum number of concurrent requests that you can expect and multiply this figure by
your estimate of the storage required for each request as calculated in Step “2” on page 428. You can
derive your estimate of concurrent requests from the total number of users that you expect to be using
the CMCI at any one time and how many simultaneous requests they are likely to make.
4. Consider adding more storage for metadata.
The CMCI stores all requested resource records for each request for a new retained result. For
the initial request of a new resource type, for example, a first request for CICS programs, a small
amount of attribute metadata is also stored. For large requests, the size of the attribute metadata and
any other storage used while making the request is negligible compared to the storage required for
records themselves. Consider adding an extra 2% to your final estimate to cover any extra metadata
used internally by the CMCI on the WUI server. This extra metadata is not necessary for the CMAS
calculation.
If you are setting up the CMCI JVM server, calculate its storage requirements also:
5. The CMCI JVM server is a Liberty JVM server running in a WUI region of a CICSplex or a single CICS
region. The JVM server requires MVS storage in 24-bit, 31-bit, and 64-bit addressing areas, in addition
to the storage calculated in the previous steps.
To calculate storage requirements for JVM servers, see Calculating storage requirements for JVM
servers .
The recommended maximum heap size for the CMCI JVM server is at least 2 GB in a CICSPlex SM
environment, or 1 GB in a single CICS region (SMSS). Use it as an initial estimate and increase it as
the scale of your environment needs.

What to do next
• If the CMCI is installed in a CICSplex SM environment, use your estimate of auxiliary storage to set
values for the MAXAUXCPSM and MAXAUXTOTL parameters on the CMAS associated with your WUI
server.
• Use your estimate of the 64-bit storage required for retained result sets plus the maximum heap size
to help determine the z/OS MEMLIMIT value for your WUI region, or your single CICS region if you are
running the CICS System Management Single Server for the CMCI. You must allow for the other CICS
facilities that use 64-bit storage.
For information about the MEMLIMIT value for CICS, and instructions to check the value of MEMLIMIT
that currently applies to the CICS region, see Estimating and checking MEMLIMIT. For further

428 CICS TS for z/OS: Configuring CICS

 information about MEMLIMIT in z/OS, see Limiting the use of private memory objects in the z/OS MVS
Programming: Extended Addressability Guide.
• Use your estimate of the 24-bit and 31-bit storage to help determine the z/OS REGION parameter for
your region.

Chapter 10. Setting up CMCI 429

430 CICS TS for z/OS: Configuring CICS
Chapter 11. Setting up event processing
Before you can use event processing, your CICS system must be correctly configured. You can stop and
start event processing in CICS using a number of methods, including using IBM CICS Explorer.

About this task

You might want to stop event processing for an upgrade or system maintenance, and then start event
processing again. This task explains the process usingCICS Explorer.
Use the LOCALCCSID system initialization parameter to specify the coded character set identifier for
your local CICS region. This is the default code page for application programs. The default setting for
LOCALCCSID is the EBCDIC code page 037. CICS translates the data content of event binding files into
this code page before using it for event capture filtering operations, and assumes that any captured
character data is in this code page.
Event processing is enabled by default when a START=INITIAL or START=COLD parameter is used during
the startup of your CICS systems.
When a START=WARM or START=EMERGENCY parameter is used, the settings from the previous run of
CICS are used.
Note: Do not change the status of event processing (that is, set to start, drain, or stop) while a unit of work
that captures synchronous transactional events is in progress because you might cause the events to be
backed out and the transaction to end abnormally.

Procedure
Use this task to stop or start event processing.
1. Using the CICSplex Explorer view in CICS Explorer, click the CICSplex or CICS region to select the
CICSplex or CICS region on which you want to stop event processing.
2. Using the CICS Explorer toolbar, click Operations > Event Processing.
The status of event processing is displayed.
3. Right-click to select the region on which you want to stop event processing and click Stop. Then click
OK.
Note: The status does not update until you click the refresh icon at which point the STOPPED status is
displayed in the Event Processing Status column, indicating that event processing is stopped.
4. To restart event processing, right-click to select the region for which you want to start event processing
and click Start. Then click OK.
Note: The status does not update until you click the refresh icon at which point the STARTED status is
displayed, indicating that event processing is started.

Results
When event processing is STOPPED, event capture is stopped immediately. All events on the dispatcher
queue are deleted.
When event processing is STARTED, for in flight transactions, the capture of nontransactional events
starts immediately and the capture of transactional events starts at the next sync point.

What to do next
You must enable an event binding and an EP adapter before you can emit any events for processing by
an event consumer. For more information, see Enabling an event binding in the CICS Explorer product
documentation and Enabling an EP adapter in the CICS Explorer product documentation.

© Copyright IBM Corp. 1974, 2022 431

 If you are using the WebSphere MQ EP adapter to format and process your events, you must set up the
CICS-WebSphere MQ adapter to provide a connection between the CICS region and IBM MQ on z/OS. For
instructions to do this, see Setting up the CICS-MQ adapter.

432 CICS TS for z/OS: Configuring CICS

Chapter 12. Configuring the Link3270 bridge
The 3270 bridge provides an interface so that you can run 3270-based CICS transactions without a 3270
terminal. This section provides instructions for configuring the Link3270 bridge.

Defining Link3270 system initialization parameters

You can optionally define system initialization parameters to help manage the Link3270 bridge.

About this task

Typically, CICS defines all bridge facilities automatically. However, you can write a user replaceable
module to control the autoinstallation of bridge facilities if required.

Procedure
1. In the bridge router region, define the AIBRIDGE system initialization parameter to specify whether
the autoinstall user replaceable module (URM) is called when bridge facilities are created and deleted.
2. Define the SPCTR and STNTR system initialization parameters if you want standard and special tracing
for the bridge (BR) and partner (PT) domains.
3. Optional: The Link3270 bridge runs under CSMI by default. If you want to use a transaction ID other
than CSMI for the Link3270 bridge, specify an INITPARM system initialization parameter for program
DFHL3270, as follows:

INITPARM=(DFHL3270='tttt'),

where tttt is the desired transaction ID. The definition of your transaction tttt must be a copy of the
definition of CSMI, so that the initial program is DFHMIRS and the profile is the same as that used by
CSMI.

Results
You have configured CICS to use a URM to install bridge facilities and added tracing.

Defining the bridge facility

The bridge facility is an emulated 3270 terminal. It is a virtual terminal, created by DFHL3270 when it
receives a single transaction mode request, or a session mode request to allocate a bridge facility.
You do not provide a TERMINAL resource definition for the bridge facility, but you can control the terminal
properties used by providing a 3270 TERMINAL resource definition to be used as a template. This
TERMINAL definition, is known as the facilitylike.

Defining the facility

The facilitylike value is the name of a real terminal resource definition that is used as a template for some
of the properties of the bridge facility.
The name of the facilitylike definition to be used can be passed to CICS in one of three ways (the first
non-blank value found is used):
• From the BRIH-FACILITYLIKE parameter in the Link3270 call.
• From the PROFILE resource definition for the user transaction.
• The default is CBRF, a definition supplied by CICS to support the bridge.
.

© Copyright IBM Corp. 1974, 2022 433

 Once the bridge facility has been defined, its facilitylike template cannot be changed. Therefore, if the
bridge facility is reused in session mode, CICS ignores the facilitylike value passed in subsequent calls.
Note: If you are running in a CICS system started with the VTAM=NO system initialization parameter,
the resource definition specified by facilitylike must be defined as REMOTE. A default definition of CBRF,
defined as REMOTE, is provided in the group DFHTERM.
Note: VTAM is now the z/OS Communications Server.
For information about the PROFILE resource definition, see PROFILE resources.

Defining the bridge facility name

When CICS creates a bridge facility, it creates both an eight-byte token to identify it (the facilitytoken) and
a four-character terminal identifier, which is used as both TERMID and NETNAME.
The facilitytoken is returned on the Link3270 allocate call and must be supplied by you on all subsequent
session mode calls ( See Using Link3270 session mode).
For bridge facilities created by the Link320 bridge, the token and name are unique across the CICSplex,
and the TERMID and NETNAME are of the form AAA}. Naming occurs in the routing region, at the time
of processing an allocate command in session mode, or the internal allocate step in single-transaction
mode. See Using the Link3270 bridge for information about session and single-transaction modes.
Link3270 bridge facility namespace allocation information is recorded in a shared file, DFHBRNSF, to
ensure uniqueness of the names. The router regions that share file DFHBRNSF and their associated AOR's
form the bridge CICSplex. Multi-bridge CICSplexes can be set up within a larger CICSplex , each router
region within a bridge CICSplex sharing the same DFHBRNSF file. The AOR regions of a bridge CICSplex
can only be associated with router regions on one bridge CICSplex.
To improve performance, the Link3270 bridge namespace is split into allocation ranges, so that a 'chunk'
of names is allocated to each router region, and the DFHBRNSF file is only accessed when a namespace
range is allocated or released. Names within the allocated chunks can be reused when keeptimes expire,
and chunks may also be reused in other regions, so you may see the same names appearing in different
regions, but they are only active in one region at any given time.
Message DFHBR0505 is issued when 90% of the DFHBRNSF names have been allocated and is issued
for each percentage point increase in the names being allocated. Message DFHBR0506 is issued for each
percentage point reduction in names allocated until below 90%. When no more names are available,
message DFHBR0507 is issued, and client application new allocation (or one shot) requests receive a
return code of BRIHRC_NO_FREE_NAME.

DFHBRNSF file types

The bridge facility namespace allocation file (DFHBRNSF) can be a local user data table, a local VSAM file,
a coupling facility data table (CFDT), a remote VSAM file or a VSAM RLS file.
If only one router region is used a user maintained data table or local VSAM version of DFHBRNSF is
recommended.
If multi-router regions are used, the DFHBRNSF file can be defined as a local VSAM file in a remote file
owning region (FOR) and as a remote VSAM file in the router regions; as a VSAM RLS in all the router
regions, or as a coupling facility data table in all the router regions.
If the user maintained data table version of DFHBRNSF is used, the VSAM data set specified in the CICS
file definition must be empty; no records should be loaded from the file to the data table. The data table
should not be closed when the router region is running, because all bridge facility namespace data will be
lost and the next request to allocate or release a range of bridge facilities will fail. For this reason, a user
maintained data table is not recommended for a production environment.

434 CICS TS for z/OS: Configuring CICS

Defining DFHBRNSF
For VSAM files and data tables, you need to use IDCAMS to create file DFHBRNSF.
Figure 68 on page 435 shows a some sample IDCAMS statements that you can modify to create the
DFHBRNSF file. Change the cluster name and volume values to comply with your own standards.

//DEFDS JOB accounting info,name,MSGCLASS=A

//TDINTRA EXEC PGM=IDCAMS
//SYSPRINT DD SYSOUT=A
//SYSIN DD *
DEFINE CLUSTER(NAME(CICSTS22.CICS.DFHBRNSF)-
INDEXED-
TRK(1 1)-
RECORDSIZE(384 384)-
KEYS(13 20)-
FREESPACE(0 50)-
SHAREOPTIONS(2 3)-
LOG(NONE)-
VOLUME(DISK01)-
CISZ(512)) -
DATA (NAME(CICSTS22.CICS.DFHBRNSF.DATA)-
CISZ(512)) -
INDEX (NAME(CICSTS22.CICS.DFHBRNSF.INDEX)-
CISZ(512))
/*
//

Figure 68. Sample IDCAMS job to create the DFHBRNSF file

See Coupling facility data tables for guidance on creating coupling facility data tables.
File DFHBRNSF contains two control records plus 1 record for each router region that accesses the file.
The maximum number of records that can be written to DFHBRNSF is 731 (this includes the 2 control
records).
You need to define file DFHBRNSF to CICS in the Link3270 router regions. Resource definitions have been
provided for all versions of the file. You should include the appropriate group in your startup grouplist, or
copy chosen definitions into a group in the grouplist. You will need to edit the definitions to match your
IDCAMS statements. Change the DSN field to match the cluster name used with IDCAMS to create the
file, unless the CFDT version of the file is to be used. If the CFDT definition is being used, change the
CFDTPOOL value to the name of the pool containing the table defined by the file definition. The table
shows the groups provided that contain the DFHBRNSF definitions.

Table 48. Supplied resource definitions for DFHBRNSF

Group Type
DFHBRVR VSAM RLS
DFHBRVSL Local VSM, non-RLS
DFHBRVSR Remote VSAM, non-RLS
DFHBRCF Coupling facility data table
DFHBRUT User maintained data table

Note:
1. If DFHBRNSF becomes unavailable, only Link3270 requests that do not cause an allocation or release
of a bridge facility namespace range will still complete successfully.
2. If DFHBRNSF file has to be redefined for any reason, all router regions that access the file should be
shut down before the file is redefined, and restarted after the file has been redefined.

Chapter 12. Configuring the Link3270 bridge 435

 DFHBRNSF at CICS termination
During the normal termination of a CICS router region, new Link3270 requests are rejected and existing
Link3270 facilities are released. When all facilities have been released, the DFHBRNSF name ranges
associated with the router region are freed.
It is possible that the freeing of the DFHBRNSF name ranges will fail. For example, if file DFHBRNSF is
remote, the shutdown transaction CESD breaks the connection to the file owning region before the name
ranges have been freed. If this happens an error message will be issued. The name ranges are only freed
when the CICS region is restarted and a Link3270 transaction has run in that region.
If the CICS termination is immediate, the Link3270 request is rejected with return code BRIH-CICS-
TERMINATION, but the Link3270 facilities and DFHBRNSF name ranges associated with the facilities
are not released. The name ranges are only freed when the CICS region is restarted and a Link3270
transaction has run in that region.

Defining a specific bridge facility name

If the name or netname of the 3270 terminal is important to the logic of the 3270 application, you can
supply a specific name in the BRIH-TERMINAL or BRIH-NETNAME parameter on the Link3270 call and
also optionally request that the autoinstall user replaceable module (URM) is called when the bridge
facility is allocated.
The autoinstall URM is called if you specify the system initialization parameter AIBRIDGE=YES at CICS
startup, or use SET AUTOINSTALL to activate this option at a later time.
The AUTOINSTALL URM can accept, reject, or modify the supplied or generated terminal name and
netname. See How bridge facility virtual terminals are autoinstalled for information about the autoinstall
URM.

Initializing the TCTUA

The bridge facility can have a Terminal Control Table User Area (TCTUA), which can be accessed by EXEC
CICS ADDRESS TCTUA in the normal way.
The TCTUA is initialized to nulls when the bridge facility is created. A global user exit (GLUE) called
XFAINTU is called when a bridge facility is created and discarded. XFAINTU is passed the address of the
TCTUA, so you can use this exit to initialize the TCTUA.

Accessing bridge facility properties

The user transaction can retrieve information about its principal facility (the bridge facility) from the EIB
or by using INQUIRE and ASSIGN commands, in exactly the same way that it does when running normally,
where the principal facility is a real 3270.
For example, the TERMID can be obtained from EIBTERMID or from an ASSIGN FACILITY, INQUIRE TASK
FACILITY or INQUIRE NETNAME command, and the NETNAME can be obtained with ASSIGN NETNAME
or INQUIRE TERMINAL.
You can use the INQUIRE BRFACILITY command to obtain information about any bridge facility, identified
by its facilitytoken, but all other INQUIRE commands return only information about the bridge facility
that is the principal facility of the transaction issuing the command. To other transactions, a transaction
running in a bridged environment appears to be a non-terminal transaction, and an INQUIRE TERMID
against a bridge facility TERMID issued by another transaction will result in TERMIDERR. INQUIRE
NETNAME and INQUIRE TASK behave similarly.
Bridge facilities do not appear in response to INQUIRE TERMINAL browses.
All keywords of ASSIGN and INQUIRE are supported and return the values that have been set for the
bridge facility from the FACILITYLIKE terminal definition, or that have been set during the execution of the
transaction.
Some keywords return values fixed by CICS for the bridge environment. These are:

436 CICS TS for z/OS: Configuring CICS

Table 49. INQUIRE TERMINAL values

Keyword Returned value

ACQSTATUS ACQUIRED

ACCESSMETHOD VTAM

CORRELID blanks

EXITTRACING NOTAPPLIC

LINKSYSTEM blanks

MODENAME blanks

REMOTENAME blanks

REMOTESYSTEM blanks

REMOTESYSNET blanks

SERVSTATUS INSERVICE

TCAMCONTROL X'FF'

TERMSTATUS ACQUIRED

TTISTATUS YES

ZCPTRACING NOZCPTRACE

Note: VTAM is now the z/OS Communications Server.

Table 50. INQUIRE TASK values

Keyword Returned value

FACILITY the bridge facility name

FACILITYTYPE TERM or TASK

STARTCODE S,SD,TO,TP

Chapter 12. Configuring the Link3270 bridge 437

 QUERY
The keywords listed represent terminal attributes that can be set by the 3270 Query function at logon
time for a real device.

ALTSCRNHT ALTSCRNWD APLKYBDST APLTEXTST

BACKTRANSST COLORST EXTENDEDDSST GCHARS

GCODES HILIGHTST MSRCONTROLST OUTLINEST

PARTITIONSST PROGSYMBOLST SOSIST VALIDATIONST

If the real FACILITYLIKE terminal is logged on when the bridge facility is created, the QUERY will have
been performed and the values returned will apply to the bridge facility.
If the real FACILITYLIKE terminal is not logged on at the time that the bridge facility is created, the QUERY
will not have been performed and the bridge facility will be created using values from the FACILITYLIKE
resource definition.

SET TERMINAL/NETNAME
The following table shows the effect of each of the SET TERMINAL/NETNAME keywords when issued by a
user transaction for its bridge facility. Unless otherwise specified, the response is DFHRESP(NORMAL).

KEYWORD EFFECT
ACQSTATUS Ignored.
ALTPRINTER Value is SET, and is returned on INQUIRE, but is never used by CICS.
ALTPRTCOPYST Value is SET, and is returned on INQUIRE, but is never used by CICS.
ATISTATUS Works as for normal 3270.
CANCEL Ignored
CREATESESS Ignored.
DISCREQST Value is SET, and is returned on INQUIRE, but is never used by CICS.
EXITTRACING Ignored.
FORCE Ignored.
MAPNAME Works as for normal 3270.
MAPSETNAME Works as for normal 3270.
NEXTTRANSID Works as for normal 3270.
OBFORMATST Works as for normal 3270.
PAGESTATUS Ignored.
PRINTER Value is SET, and is returned on INQUIRE, but is never used by CICS.
PRTCOPYST Value is SET, and is returned on INQUIRE, but is never used by CICS.
PURGE Ignored.
PURGETYPE Ignored.
RELREQST Value is SET, and is returned on INQUIRE, but is never used by CICS.

438 CICS TS for z/OS: Configuring CICS

KEYWORD EFFECT
SERVSTATUS Works as for normal 3270.
TCAMCONTROL Returns INVREQ, as for normal 3270.
TERMPRIORITY Value is SET, and is returned on INQUIRE, but is never used by CICS.
TERMSTATUS Ignored.
TRACING Value is SET, and is returned on INQUIRE, but is never used by CICS.
TTISTATUS Ignored.
UCTRANST Works as for normal 3270.
ZCPTRACING Ignored.

Chapter 12. Configuring the Link3270 bridge 439

440 CICS TS for z/OS: Configuring CICS
Chapter 13. Configuring EXCI
The external CICS interface (EXCI) is an application programming interface that enables a non-CICS
program (a client program) running in MVS to call a program (a server program) running in a CICS
region and to pass and receive data by using a communications area or by using a channel and a set of
containers. This section provides instructions for configuring EXCI.

Setting up EXCI for static routing

You can statically route requests to CICS programs from applications that use the EXCI.

Before you begin

Before you begin, verify that the MVS parameter Maxmember is set to a high value. This parameter
controls how many connections can be made to the DFHIRP00 resource.

Procedure
1. Add RDO group EXCIXXXX to the grouplist of the CICS region. If EXCIXXXX is not available, make a
copy from the supplied DFH$EXCI RDO group.
This group contains all connections required for EXCI functions and can support up to 100 connections
for batch requests.
2. Add the RDO group for the application to the grouplist of the CICS region.
3. Assemble DFHXCOPT into the SDFHEXCI load library. Ensure that DFHXCOPT has SURROGATE=YES.
4. Assemble and compile your application programs.
If your application program is written in Assembler, use the linkage editor parameters AMODE(31) and
RMODE(ANY). Link the program into your application load library.
5. Configure the batch JCL to run your application program.
a) Edit the JCL to specify to which CICS region the batch program will send the EXCI request:

//step0010 EXEC PGM=program,PARM='applid,userid'

applid is the CICS region and userid is a RACF user ID.

b) Ensure your load library is concatenated as follows:

//STELIB DD Disp=shr,Dsn=SYS5C.CICn.CICS740.SDFHEXCI
//DD Disp=shr,Dsn=Your.application.loadlib

6. Run the batch program and check that the results are as expected.

Setting up EXCI for dynamic routing

You can dynamically route requests to CICS programs from applications that use the EXCI using CICSPlex
SM.

Procedure
1. Specify the following system initialization parameters in the CICS region:
• DSRTPGM=EYU9XLOP
• DTRPGM=EYU9XLOP
2. Update your RDO group as follows:
a) Add an RDO entry for the EXCI server program, DFHMIRS.

© Copyright IBM Corp. 1974, 2022 441

 You can use another transaction instead of EXCI if required, but it must point to program DFHMIRS
and have a profile of DFHCICSA. Model it after the EXCI transaction in group DFH$EXCI. This
transaction will point to DFHMIRS program.
Note: The user transaction when defined as remote will only work within an APPC configuration.
Within an EXCI or MRO configuration the mirror transaction must run in the local CICS region,
by specifying DYNAMIC(NO) and no REMOTE attributes. Routing the mirror transaction to another
CICS region can impact performance and make problem determination more difficult.
b) Add the RDO group to the terminal-owning region (TOR) LIST.
Ensure that the TOR region has program autoinstall disabled.
3. Log into CICSPlex SM and define the transaction for the routing region into these CPSM groups:
TXNGRP, WLMDEF, WLMGRP WLMSPEC.
4. For each application-owning region (AOR), create the RDO group in the same way as the sample
definition DFH$EXCI.
This group must contain only the connections, sessions, and application programs, or equivalent
transactions. If you used a different transaction instead of EXCI, you must specify it in this group.

Results
When an application issues a distributed program link, CICSPlex SM checks if the incoming transaction is
under its control. When it finds that EXCI or its equivalent is valid in its transaction group, CICSPlex SM
routes the transaction to one of the candidate AORs for processing.
An alternative to this approach is to define an RDO definition for the program or transaction with
DYNAMIC=Yes. CICSPlex SM routes the request to the selected region.

Defining connections to CICS

Connections between an EXCI client program and a CICS region require connection definitions in the CICS
region. You define these using the CONNECTION and the SESSIONS resource definition facilities provided
by CICS.

The following options are provided specifically for the external CICS interface:
• CONNTYPE on the CONNECTION resource definition
• EXCI on the PROTOCOL attribute of the CONNECTION and SESSIONS resource definitions.

CONNECTION resource definition for EXCI

The EXCI option is provided on the PROTOCOL attribute of the CONNECTION resource definition to
indicate that the connection is for use by an MVS program using the external CICS interface.
The CONNTYPE attribute is provided on the CONNECTION resource definition. For EXCI connections, this
indicates whether the connection is generic or specific. It is not to be used for any protocol other than the
external CICS interface.
The following parameters are relevant to EXCI:
CONNTYPE({SPECIFIC|GENERIC})
For external CICS interface connections, indicates the nature of the connection.
SPECIFIC
The connection is for communication from a non-CICS client program to the CICS region, and is
specific. A specific connection is an MRO link with one or more sessions dedicated to a single user
in a client program.
Note: A user is a program that has issued an Initialize_User request (or for which an Initialize_User
request has been issued), with a unique name per TCB. For example:
• A simple client program running under MVS can be a single user of the external CICS interface.

442 CICS TS for z/OS: Configuring CICS

 • A client program running under MVS can open several pipes and issue external CICS interface
calls over them sequentially, on behalf of different vendor packages. In this case, from the
viewpoint of the client program, each of the packages is a user, identified by a unique user name.
Thus a single client program can operate on behalf of multiple users.
• A program running under MVS can attach several TCBs, under each of which a vendor package
issues external CICS interface calls on its own behalf. Each package is a client program in its
own right, and runs under its own TCB. Each is also a user, with a unique user name.
For a specific connection, NETNAME is mandatory.
GENERIC
The connection is for communication from a non-CICS client program to the CICS system, and is
generic. A generic connection is an MRO link with a number of sessions to be shared by multiple
EXCI users. For a generic connection you cannot specify the NETNAME attribute.
Note: You must install only one generic EXCI connection in a CICS region.
NETNAME
For an external CICS interface connection, NETNAME corresponds to the name of the user of a
specific pipe, as specified on the user_name parameter of an INITIALISE_USER call.
For an external CICS interface specific pipe, you must specify a NETNAME.
For external CICS interface generic pipes, you must leave NETNAME blank.
PROTOCOL({APPC|LU61|EXCI|blank})
The type of protocol that is to be used for the link.
blank
For MRO between CICS regions. You must leave the PROTOCOL blank for MRO, and on the
SESSIONS definition you must specify LU6.1 as the PROTOCOL.
APPC (LUTYPE6.2 protocol)
Advanced program-to-program communication, or APPC protocol. This is the default value for
ACCESSMETHOD(VTAM). Specify this for CICS-CICS ISC.
Note: VTAM is now the z/OS Communications Server.
LU61
LUTYPE6.1 protocol. Specify this for CICS-CICS ISC or CICS-IMS ISC, but not for MRO.
EXCI
The external CICS interface. Specify this to indicate that this connection is for use by a non-CICS
client program using the external CICS interface.
If you specify PROTOCOL(EXCI), you must also specify ACCESSMETHOD(IRC). EXCI is
implemented in MRO using the CICS interregion communication program, DFHIRP, and cannot
use MRO links that use MVS cross-memory services (XM). EXCI can use also XCF MRO links, which
also work through DFHIRP.

SESSIONS resource definitions for EXCI connections

You indicate on the PROTOCOL attribute of the SESSIONS resource definition whether the sessions
allocated on the MRO connection are for use by the external CICS interface.
For full details of the SESSIONS resource definition, see SESSIONS resources. The following parameters
are relevant to EXCI:
PROTOCOL({APPC|LU61|EXCI})
Indicates the type of protocol that is to be used for an intercommunication link (ISC or MRO).
APPC (LUTYPE6.2)
Advanced program-to-program communication (APPC) protocol. Specify this for CICS-CICS ISC.
LU61
LUTYPE6.1 protocol. Specify this for CICS-CICS ISC, for CICS-IMS, or for MRO.

Chapter 13. Configuring EXCI 443

 EXCI
The external CICS interface. Specify this to indicate that the sessions are for use by a non-CICS
client program using the external CICS interface. If you specify EXCI, you must leave SENDCOUNT
blank.
RECEIVECOUNT({blank|number})
The number of MRO, LUTYPE6.1, or EXCI sessions that usually receive before sending.
For MRO, receive sessions can only receive before sending.
blank
These sessions can send only; there are no receive sessions.
number
Specifies the number of receive sessions on connections that specify blank, LU61, or EXCI on the
protocol parameter of the CONNECTION definition. CICS uses the number to generate the last two
or three characters of the session names (see RECEIVEPFX for details).
If you are using the default receive prefix (<), or your own 1-character prefix, specify a number in
the range 1 through 999.
If you specify a 2-character prefix, the number is restricted to the range 1 through 99.
Except for external CICS interface (EXCI) connections, the RECEIVECOUNT in this system should
equal SENDCOUNT in the other system.
RECEIVEPFX(<|prefix)
Specifies a 1- or 2-character prefix that CICS is to use as the first 1 or 2 characters of the receive
session names (the names of the terminal control table terminal entries (TCTTEs) for the sessions).
Prefixes must not cause a conflict with an existing connection or terminal name.
< (MRO and EXCI sessions)
For MRO sessions, if you do not specify your own receive prefix, CICS enforces the default prefix—
the less-than symbol (<), which is used in conjunction with the receive count to generate receive
session names.
CICS creates the last three characters of the session names from the alphanumeric characters
A through Z, and 1 through 9. These 3-character identifiers begin with the letters AAA, and
continue in ascending sequence until the number of session entries reaches the limit set by the
RECEIVECOUNT value. Note that receive session names are generated after the send sessions,
and they follow in the same sequence.
For example, if the last session name generated for the send sessions is <AAJ, using the default
prefix (<) CICS generates the receive session names as <AAK, <AAL, <AAM, and so on. (This
method of generation of session identifiers is the same as for APPC sessions, except for the initial
prefix symbol.)
Note: If you specify your own prefix, CICS generates the session names as in earlier releases,
which is the same as for LUTYPE6.1 sessions.
prefix (LUTYPE6.1 sessions)
If the sessions are on LUTYPE6.1 ISC connections, you must specify a 1- or 2-character prefix. Do
not use the default < symbol for LUTYPE6.1 sessions.
For LUTYPE6.1 sessions (and MRO if you specify your own 1- or 2-character prefix) CICS
generates session names by appending a number to the prefix, either in the range 1 through
99, or 1 through 999. The number begins with 1 and is incremented by 1 until the specified
RECEIVECOUNT is reached.
SENDCOUNT(blank|number)
The number of MRO or LUTYPE6.1 sessions that usually send before receiving.
For MRO, send sessions must send before they can receive.
blank
These sessions can receive only; there are no send sessions.

444 CICS TS for z/OS: Configuring CICS

 You must leave this field blank when the sessions are on an external CICS interface (EXCI)
connection.
number
Specifies the number of send sessions on connections that specify blank or LU61 on the protocol
parameter of the CONNECTION definition. CICS uses the number to generate the last two or three
characters of the session names (see SENDPFX for details).
If you are using the default send prefix (>), or your own 1-character prefix, specify a number in the
range 1 through 999.
If you specify a 2-character prefix, the number is restricted to the range 1 through 99.
Except for external CICS interface (EXCI) connections the SENDCOUNT in the sending system
should equal RECEIVECOUNT in the receiving system.
SENDPFX(>|prefix)
Specifies a 1- or 2-character prefix that CICS is to use as the first 1 or 2 characters of the send session
names (the names of the terminal control table terminal entries (TCTTEs) for the sessions).
Prefixes must not cause a conflict with an existing connection or terminal name.
> (MRO sessions)
For MRO sessions, if you do not specify your own send prefix, CICS enforces the default prefix—
the greater-than symbol (>), which is used in conjunction with the send count to generate send
session names.
CICS creates the last three characters of the session names from the alphanumeric characters
A through Z, and 1 through 9. These 3-character identifiers begin with the letters AAA, and
continue in ascending sequence until the number of session entries reaches the limit set by the
SENDCOUNT value.
For example, using the default prefix (>) CICS generates session names as >AAA, >AAB, >AAC,
and so on. (This method of generation of session identifiers is the same as for APPC sessions,
except for the initial symbol.)
Note: If you specify your own prefix, CICS generates the session names as in earlier releases,
which is the same as for LUTYPE6.1 sessions.
prefix (for LUTYPE6.1 sessions)
If the sessions are on LUTYPE6.1 ISC connections, you must specify a 1- or 2-character prefix. Do
not use the default > symbol for LUTYPE6.1 sessions.
For LUTYPE6.1 sessions (and MRO if you specify your own 1- or 2-character prefix) CICS
generates session names by appending a number to the prefix, either in the range 1 through 99, or
1 through 999. The number begins with 1 and is incremented by 1 until the specified SENDCOUNT
is reached.
USERID(userid)
The preset user identifier to be used for link security checking.
If you do not specify a preset userid for link security, CICS uses the userid passed from the remote
user as the userid for link security. For an external CICS interface link, this is the client userid.

Inquiring on the state of EXCI connections

If you have access, through a CICS terminal, to the CICS server region, you can inquire about batch jobs
that are running a client application program, and which are using the external CICS interface (EXCI) to
link to a server program in CICS.

About this task

To obtain this information about batch jobs linked to CICS through MRO, you use the CEMT INQUIRE
EXCI command. This command enables you to identify the names of EXCI batch jobs currently connected
to CICS through the interregion communication (IRC) facility.

Chapter 13. Configuring EXCI 445

 CICS returns job identifications in the form:

jobname.stepname.procname - mvsid

Either stepname, or procname, or both may not be present, indicated by the periods (.) being adjacent to
one another.
The mvsid identifies the MVS system on which the job is running. If XCF/MRO is in use, the job can reside
on a different MVS image from that on which CICS is running.
Information about jobs using the external CICS interface is available only when the job has issued at least
one DPL request. A non-zero task number indicates that a DPL request is currently active. A zero task
number indicates an external CICS interface session is still open (connected) for that job, although no DPL
request is currently active.
See CEMT - main terminal for more information about the CEMT command.

The EXCI user-replaceable module

The external CICS interface provides a user-replaceable module, DFHXCURM.
The load module is supplied in CICSTS61.CICS.SDFHEXCI, and the source in CICSTS61.CICS.SDFHSAMP.
You can find information about assembling and link-editing user-replaceable programs in Assembling and
link-editing user-replaceable programs.
DFHXCURM is started by the external CICS interface in the non-CICS region during the processing of
allocate_pipe commands, and after the occurrence of any retryable error.
The retryable responses are:
• The target CICS region is not available.
• There are no pipes available on the target CICS region.
• There has been no IRC activity since the MVS IPL.
To retry after a retryable error, issue the EXCI call again.
As supplied, DFHXCURM is effectively a dummy program because of a branch instruction that bypasses
the sample logic and returns control to the external CICS interface caller. To use the sample logic, remove
the branch instruction and assemble and link edit the module. You can customize DFHXCURM to do the
following actions:
• During allocate_pipe processing, you can change the specified CICS APPLID, to route the request to
another CICS system.
• During allocate_pipe processing, you can direct the request to a different XCF group.
• When DFHXCURM is started after an error that can be tried again, you can store information about CICS
availability. You can then use this information on the next invocation of DFHXCURM for allocate_pipe
processing, so that you can decide which CICS system to route the request.
DFHXCURM is called using standard MVS register conventions, with register 1 containing the address of
the parameter list, and register 14 the return address of the caller. The parameters addressed by register
1 are mapped in the EXCI_URM_PARMS DSECT, which is contained within the DFHXCPLD copybook. The
parameters passed to DFHXCURM are as follows:
URMINV
The address of a fullword that contains the reason for the invocation of DFHXCURM, defined by the
following equates:

URM_ALLOCATE EQU 1 This invocation is for an Allocate_Pipe

URM_NO_CICS EQU 2 The target CICS region is not available
URM_NO_PIPE EQU 3 There are no pipes available
URM_NO_CICS_IRC EQU 4 There has been no IRC activity since the MVS IPL

446 CICS TS for z/OS: Configuring CICS

 URMCICS
The address of an 8-byte area that contains the APPLID of the target CICS system, as specified on
the CICS_applid parameter of the Allocate_Pipe command, or on the APPLID parameter of the
EXEC CICS LINK command.
When specified by one of these commands, you can change the APPLID to that of a different target
CICS region. Also, if the APPLID specified by one of these commands is not a valid specific applid, you
must change the APPLID to that of a valid specific applid.
If the CICS_applid parameter is omitted from the allocate_pipe request, or APPLID is omitted from
the EXEC CICS LINK command, the field addressed by this parameter contains 8 blanks. In this
case, you must specify an APPLID in DFHXCURM before returning control to the caller.
URMAPPL
The address of an 8-byte area that contains the client program's user name as specified on the
my_name parameter of the Initialize_User command. If DFHXCURM is started for an EXEC CICS LINK
command, this name is always set to DFHXCEIP.
URMPROG
The address of an 8-byte area that contains the name of the target program (if available). This name
is available only if DFHXCURM is started for an EXEC CICS LINK command. For an external CICS
interface allocate_pipe command, the program name is not known until the DPL call is issued.
URMOPTS
The address of a 1-byte area that contains the allocate options, which can be X'00' or X'80', as
specified on the allocate_opts parameter. This address is valid for an Allocate_Pipe request only.
URMANCH
The address of a 4-byte area that is provided for use by DFHXCURM only. A typical use for this is to
store a global anchor address of an area used to save information across a number of invocations of
DFHXCURM. For example, you can GETMAIN the necessary storage and save the address in the 4-byte
area addressed by this parameter. The initial value of the 4-byte area is set to zero.
There is one URMANCH parameter for each TCB in the address space using EXCI.
URMXCFG
The address of an 8-byte area that contains the XCF group name as specified in the XCFGROUP
parameter of the DFHXCOPT table. Use this parameter to change the XCF group name when
DFHXCURM is called during the processing of EXCI Allocate_Pipe commands. If the call to DFHXCURM
failed but can be tried again, the area contains the value used when previously allocating the pipe.
Changing the value has no affect.
The group name must be 8 characters long, padded on the right with blanks if necessary. Valid
characters are A-Z 0-9 $ # @. Do not begin group names with the letters A, B, C, E, F, G, H, I "SYS."
These names are used by IBM for its XCF groups. Also, do not use the name "UNDESIG", which is
reserved for use by the system programmer in your installation.
It is advisable to use a group name beginning with the letters "DFHIR".

Using the EXCI options table, DFHXCOPT

The EXCI options table, which is generated by the DFHXCOPT macro, enables you to specify a number of
parameters that are required by the external CICS interface.

DFHXCOPT options table: New format versus older format

The DFHXCOPT options table changed since it was first introduced and now includes a version number to
allow more flexibility for future extensions. You need to be aware of this change if, for example, you plan
to migrate a customized DFHXCOPT table from an earlier release of CICS.
To distinguish between the old and newer formats, the new-format table is link-edited with an alias called
DFHXCOPE. The following sequence is used to load the options table:

Chapter 13. Configuring EXCI 447

 1. CICS tries to load the DFHXCOPT table using its alias name of DFHXCOPE. If it finds and successfully
loads a load module named DFHXCOPE, CICS assumes that the table is in the new format.
2. If CICS does not find a load module named DFHXCOPE (or finds it but fails to load it), it tries to load
the table using its base name of DFHXCOPT. In this case, CICS assumes that the table is in the older
format.
CICS provides a default DFHXCOPT table and supplies the source code of the default table in the
CICSTS61.CICS.SDFHSAMP library. The load module of the default DFHXCOPT table, with its alias
DFHXCOPE, is in the CICSTS61.CICS.SDFHEXCI library.

Creating customized DFHXCOPT table

You can tailor the source code of the CICS-supplied default DFHXCOPT table to your own requirements.
You must assemble and link-edit your customized DFHXCOPT table into a suitable library in the STEPLIB
concatenation of the job that runs the MVS client program.
Important: If you create your own, customized, DFHXCOPT table, ensure that you link-edit it using
the DFHXCOPE alias. Using the standard DFHAUPLE procedure ensures that this happens. If you
reassemble and link-edit your table without the alias, CICS will load the default table (found by means of
its DFHXCOPE alias), rather than your customized table.
You can use your own version of the CICS DFHAUPLE procedure to do this. The DFHAUPLE procedure is
supplied in CICSTS61.CICS.SDFHINST.

DFHXCOPT macro: Format and parameters

Unlike the tables you specify for CICS regions, the DFHXCOPT table cannot be suffixed.
The following table shows the format of the DFHXCOPT macro and its parameters.

DFHXCO TYPE={CSECT|DSECT}
[,ABENDBKOUT={NO|YES}]
[,CICSSVC={216|number}]
[,CONFDATA={HIDE|SHOW}]
[,DURETRY={30|number-of-seconds}]
[,GTF={OFF|ON}]
[,LOCALCCSID={037|CCSID}]
[,MSGCASE={MIXED|UPPER}]
[,TIMEOUT={0|number}]
[,TRACE={OFF|1|2|3}]
[,TRACESZE={16|number-of-kilobytes}]
[,TRAP={OFF|ON}]
[,XCFGROUP={DFHIR000|name}]

You must terminate your parameters with the following END statement.

END DFHXCOPT

448 CICS TS for z/OS: Configuring CICS

TYPE={CSECT|DSECT}
Indicates the type of table to be generated.
CSECT
A regular control section that is normally used.
DSECT
A dummy control section.
ABENDBKOUT={NO|YES}
Specifies whether a task that abends within the CICS server is to trigger an automatic rollback of the
global unit of work. A global unit of work exists when an EXCI client program is controlling resource
recovery through MVS RRS (that is, SYNCONRETURN is not specified on the DPL request). In this
case you may well want the global unit of work to be marked for rollback if the CICS server program
abends.
Note: ABENDBKOUT has no effect when SYNCONRETURN is specified on the DPL request.
NO
The global unit of work is not marked for rollback.
YES
When processing the abend of the server program, the CICS mirror program marks the global unit
of work for backout.
In both cases the EXCI client program receives a return code of 422, SERVER_ABENDED, on the EXCI
DPL request.
CICSSVC={216|number}
Specifies the CICS type 3 SVC number being used for MRO communication. The default is 216.
The external CICS interface must use the same SVC number that is in use by the CICS MRO regions
that reside in the MVS image in which the client program is running.
0
Specify zero to indicate that the external CICS interface is to obtain the CICS SVC number from
MVS by means of an MVS VERIFY command.
You should only specify zero when you are sure that at least one CICS region has logged on to
DFHIRP during the life of the MVS IPL.
number
Specify the CICS SVC number, in the range 200—255, that is in use for CICS interregion
communications. This must be the SVC number that is installed in the MVS image in which the
client program is running (the local MVS).
If no MRO CICS regions have ever logged on to DFHIRP in the local MVS during the life of the IPL,
you must specify a non-zero SVC number. If you specify zero, the external CICS interface requests
the SVC from MVS, which will fail if no CICS region has logged on to DFHIRP.
A non-zero value is required in those MVS images that do not run any CICS regions, and the client
program is issuing DPL requests to a server CICS region that resides in another MVS. In these
circumstances, the client program logs on to the local DFHIRP using the locally defined SVC, and
communicates with the remote CICS region using XCF/MRO.
Note: All CICS regions using MRO within the same MVS image must use the highest level of both
DFHIRP and the CICS SVC, DFHCSVC. If your MRO CICSplex consists of CICS regions at different
release levels, the DFHIRP and DFHCSVC installed in the LPA must be from the highest release level of
CICS within the CICSplex.
CONFDATA={HIDE|SHOW}
Code this parameter to indicate whether the external CICS interface is to suppress (hide) user data
that might otherwise appear in EXCI trace entries output to GTF or in EXCI dumps. This option applies
to the tracing of the COMMAREA or CONTAINER data flowing between the EXCI client program and
the CICS server program.

Chapter 13. Configuring EXCI 449

 HIDE
EXCI is to ‘hide' user COMMAREA or CONTAINER data from trace entries. Instead the trace entry
contains a character string stating that the data has been suppressed.
SHOW
Data suppression is not in effect. User data is traced.
DURETRY={30|number-of-seconds|0}
Specifies the total time, in seconds, that the external CICS interface is to continue trying to obtain an
MVS system dump using the SDUMP macro.
DURETRY allows you to control whether, and for how long, the external CICS interface is to reissue
the SDUMP if another address space in the same MVS system is already taking an SDUMP when the
external CICS interface issues an SDUMP request.
In the event of an SDUMP failure, the external CICS interface reacts as follows:
• If MVS is already taking an SDUMP for another address space, and the DURETRY parameter is
nonzero, the external CICS interface issues an MVS STIMERM macro to wait for five seconds, before
retrying the SDUMP macro. The external CICS interface issues a message to say that it will retry the
SDUMP every five seconds until the DURETRY time limit.
• If the SDUMP fails for any other reason such as the following, the external CICS interface issues a
message to inform you that the SDUMP has failed, giving the reason why.
– There are no SYS1.DUMP data sets available.
– There are I/O errors preventing completion of the dump.
– The DURETRY limit expires while retrying SDUMP.
30
30 seconds allows the external CICS interface to retry up to six times (once every five seconds).
number-of-seconds
Code the total number of seconds (up to 32767 seconds) during which you want the external CICS
interface to continue retrying the SDUMP macro. The external CICS interface retries the SDUMP,
once every five seconds, until successful or until retries have been made over a period equal to or
greater than the DURETRY value.
0
Code a zero value if you do not want CICS to retry the SDUMP.
GTF={OFF|ON}
Specifies whether all trace entries normally written to the external CICS interface trace table are also
to be written to an MVS generalized trace facility (GTF) data set (if GTF tracing is active).
OFF
Code this if trace entries are not to be written to GTF.
ON
Code this if trace entries are to be written to GTF.
LOCALCCSID={037|CCSID}
Specifies the default CCSID for the EXCI job. The CCSID is a value of up to 8 characters. If a CCSID
value is not specified, the default LOCALCCSID is set to 037. For lists of valid CCSIDs, see the
following information:
• CICS-supported conversions
• The relevant appendix in z/OS Unicode Services User's Guide and Reference
037
The default value for LOCALCCSID.
CCSID
Represents any other valid EBCDIC CCSID value.
MSGCASE={MIXED|UPPER}
Specifies whether the DFHEXxxxx messages are to be issued in mixed case or in uppercase.

450 CICS TS for z/OS: Configuring CICS

 MIXED
Code this if messages are to be issued in mixed case.
UPPER
Code this if messages are to be issued in uppercase.
TIMEOUT={0|number}
Specifies the time interval, in hundredths of a second, during which the external CICS interface waits
for a DPL command to complete.
DPL commands can pass a channel and set of containers to CICS. Commands that pass this
information can involve multiple flows of data up to CICS in order to construct the container data.
The timeout interval starts when the last flow of data is sent to CICS, which completes the data and
initiates the invocation of the CICS server program.
0
Specifies that you do not want any time limit applied, and that the external CICS interface is to
wait indefinitely for a DPL command to complete.
number
Specifies the time interval, in hundredths of a second, that the external CICS interface is to wait
for a DPL command to complete. The number represents hundredths of a second, from 1 up to a
maximum of 2 147 483 647. For example:
6000
Represents a timeout value of one minute.
30000
Represents a timeout value of five minutes.
60000
Represents a timeout value of ten minutes.
TRACE={OFF|1|2|3}
Specifies whether you want internal tracing for the external CICS interface, and at what level.
OFF
Internal tracing for the external CICS interface is not required. However, even with normal tracing
switched off, exception trace entries are always written to the external CICS interface trace table
in the CICS region.
1
Exception and level-1 trace entries are written to the external CICS interface trace table.
2
Exception, level-1, and level-2 trace entries are written to the external CICS interface trace table.
3
Exception, level-1, level-2, and level-3 trace entries are written to the external CICS interface
trace table.
TRACESZE={16|number-of-kilobytes}
Specifies the size in kilobytes of the trace table that is used by the external CICS interface. This trace
table is allocated in 31-bit storage (above the line) in the CICS region.
16
The default size of the trace table, and also the minimum size.
number-of-kilobytes
The number of kilobytes of storage to be allocated for the trace table, in the range 16 KB through
1 048 576 KB. Subpool 1 is used for the trace table storage, which exists for the duration of
the job step TCB. The table is page-aligned and occupies a whole number of pages. If the value
specified is not a multiple of the page size (4 KB), it is rounded up to the next multiple of 4 KB.
TRAP={OFF|ON}
Specifies whether the service trap module, DFHXCTRA, is to be used. DFHXCTRA is supplied as a
user-replaceable module, in which IBM service personnel can add code to trap errors.

Chapter 13. Configuring EXCI 451

 OFF
Code this if you do not want to use DFHXCTRA.
ON
Code this if you require DFHXCTRA.
XCFGROUP={DFHIR000|name}
Specifies the name of the cross-system coupling facility (XCF) group to be joined by this client
program.
Note: XCF groups allow CICS regions in different MVS images within the same sysplex to
communicate with each other across multi-region operation (MRO) connections. For introductory
information about XCF/MRO, and instructions on how to set up XCF groups, see Cross-system
multiregion operation (XCF/MRO).
Each client program can join a maximum of one XCF group.
DFHIR000
The default XCF group name.
name
The group name must be eight characters long, padded on the right with blanks if necessary. The
valid characters are A-Z 0-9 and the national characters $ # and @. To avoid using the names IBM
uses for its XCF groups, do not begin group names with the letters A through C, E through I, or
the character string "SYS". Also, do not use the name "UNDESIG", which is reserved for use by the
system programmer in your installation.
It is recommended that you use a group name beginning with the letters "DFHIR".

452 CICS TS for z/OS: Configuring CICS

Chapter 14. Setting up and configuring CICS ONC
RPC
CICS ONC RPC allows client applications to access CICS programs by calling them as remote procedures
using the ONC RPC format. Follow this information to set up CICS ONC RPC.

Before you begin

Check that the following prerequisite conditions are met:
Clients
Clients must access servers on CICS ONC RPC over a TCP/IP network.
Client systems must use a library compatible with the library for ONC RPC Version 3.9, as this is
the ONC RPC version supported by TCP/IP for MVS (Versions 2.2.1 and 3.1). To communicate over a
TCP/IP network, appropriate hardware and software must be in place.
MVS
The following items are prerequisite, that is, must be installed on the MVS system for CICS ONC RPC
to run.
• TCP/IP for MVS Version 2.2.1 or above. TCP/IP for MVS ports must be made available for use by the
CICS region involved.
• Language Environment. This provides the C runtime libraries that are a prerequisite for running CICS
ONC RPC.
• If you are using RPCGEN, or writing your own XDR routines, you need a C compiler to compile
RPCGEN output and your XDR routines.
CICS
CICS must be set up for Language Environment support.
Note: TCP/IP for MVS CICS Sockets is not a prerequisite for CICS ONC RPC.
TCP/IP for MVS
CICS ONC RPC and TCP/IP for MVS CICS Sockets Version 2.2.1 cannot operate together from one
CICS region to one TCP/IP for MVS region. You are advised to run CICS Sockets and CICS ONC RPC in
different CICS regions.
TCP/IP for MVS Version 3.1 users do not have this problem; CICS Sockets and CICS ONC RPC can both
be run from the same CICS region.
TCP/IP for MVS 2.2.1
There are no prerequisites for running CICS ONC RPC.
Note: CICS ONC RPC and TCP/IP for MVS CICS Sockets Version 2.2.1 cannot operate together from
one CICS region to one TCP/IP for MVS region. You are advised to run CICS Sockets and CICS ONC
RPC from different CICS regions.
TCP/IP for MVS 3.1
The following PTF is a prerequisite for running CICS ONC RPC:
• A PTF, number UN79963, related to the use of the xdr_text_char XDR library function.
Note: CICS ONC RPC and TCP/IP for MVS CICS Sockets Version 2.2.1 cannot operate together from
one CICS region to one TCP/IP for MVS region. You are advised to run CICS Sockets and CICS ONC
RPC from different CICS regions.

© Copyright IBM Corp. 1974, 2022 453

 Storage requirements
Except where otherwise noted, the storage used by CICS ONC RPC is obtained from CICS subpools.
When CICS ONC RPC is enabled, its storage requirements are as follows:
• 40 KB base storage
• 100 bytes for each registered 4-tuple.
For each client request being processed the following storage is required:
• MVS-controlled storage used by the inbound XDR routine for internal data structures
• Storage used by the inbound XDR routine for the data structure it builds for the Decode function
• Storage for the CICS program communication area
• Storage used by the alias transaction while running the CICS program
• Storage used by the Encode function to create a data structure for the outbound XDR routine
• MVS-controlled storage used by the outbound XDR routine

Setting up CICS ONC RPC

Perform the following tasks:
Create the CICS ONC RCP data set
The JCL to create the CICS ONC RPC data set is provided in the DFHCOMDS job.
The data set is defined as a VSAM key-sequenced data set by a DEFINE CLUSTER command like the
following:

DEFINE CLUSTER ( -
NAME( xxxxxxxx.CICSONC.RESOURCE ) -
CYL ( 2 1 ) -
KEYS( 19 0 ) -
INDEXED -
VOLUME ( vvvvvv ) -
RECORDSIZE( 150 150 ) -
FREESPACE( 5 5 ) -
SHAREOPTIONS( 1 ) -
)

The job to define the data set must be run before you start the connection manager for the first time.
(Optional) Switch dump formatting for CICS ONC RPC
To switch dump formatting on for CICS ONC RPC (and for all running features), change the IPCS
VERBEXIT control statement. The JCL entry for dump formatting is as follows:

IPCS VERBEXIT DFHPD740 FT=2

The VERBEXIT provides a formatted dump of CICS ONC RPC control blocks.
Modify z/OS Communications Server data sets
You can define the CICS Transaction Server region to z/OS Communications Server in the
TCPIP.PROFILE. data set to reserve specific ports for ONC RPC applications. This is described in
z/OS Communications Server: IP Configuration Guide.
Important: CICS ONC RPC is part of the CICS Transaction Server base. None of the IBM-supplied
programs for CICS ONC RPC can be moved to CICS Transaction Server from earlier releases.

454 CICS TS for z/OS: Configuring CICS

Defining CICS ONC RPC resources to CICS
CICS ONC RPC provides two RDO groups defining CICS resources used by CICS ONC RPC: DFHRP and
DFHRPF.

Transaction definitions for CICS ONC RPC transactions

These CICS ONC RPC transactions are defined in the locked group DFHRP.
CRPA
Alias
CRPC
Connection manager
CRPM
Server controller
These definitions cannot be changed.

Transaction definitions for extra alias transactions

You may want to use other alias transaction names for various reasons.
• Auditing purposes
• Resource and command checking
• Allocating initiation priorities
• Allocating database plan selection
• Assigning different runaway values for different CICS programs
If you do, you must also define these to CICS, copying the definition from CRPA, and making amendments
as necessary. The CRPA definition is as follows:

DEFINE TRANSACTION(CRPA) GROUP(DFHRP)

PROGRAM(DFHRPAS) TWASIZE(0)
PROFILE(DFHCICST) STATUS(ENABLED)
TASKDATALOC(BELOW) TASKDATAKEY(USER)
RUNAWAY(SYSTEM) SHUTDOWN(ENABLED)
PRIORITY(1) TRANCLASS(DFHTCL00)
DTIMOUT(NO) INDOUBT(BACKOUT)
SPURGE(YES) TPURGE(NO)
RESSEC(NO) CMDSEC(NO)

If you want a CICS program to run under an alias with a name other than CRPA, you can enter this in
the connection manager when defining the attributes of the 4-tuple associated with the CICS program, as
described in “Defining the attributes of a 4-tuple” on page 465. The name of the alias can also be changed
by the Decode function, as described in Changing the alias and CICS program.

Changing the CMDSEC and RESSEC values

You might want to define new alias transactions with CMDSEC(YES) or RESSEC(YES) in order to enforce
security checking on the programs run under the alias transaction, including the CICS program that
services the client request.
None of the IBM-supplied programs used by the alias use any of system programmer interface (SPI)
commands, so CMDSEC need not be changed. However, if you want to oversee the use of SPI commands
by the CICS program, resource checker, or Encode function of the converter, CMDSEC(YES) is required.

Program definitions for CICS ONC RPC programs

All the CICS ONC RPC programs are defined in the locked group DFHRP.

Chapter 14. Setting up and configuring CICS ONC RPC 455

Program definitions for user-written programs
You need to make definitions for CICS programs, converters, user-written XDR routines, and a resource
checker.

LANGUAGE option
User-written XDR routines should be defined with LANGUAGE(C). Converters and CICS programs should
be defined with an appropriate LANGUAGE.

CEDF option
Program definitions for CICS programs must include CEDF(YES) if EDF is required for debugging.
If you want to use EDF, you must enter a terminal ID in the connection manager when defining the
attributes of the 4-tuple associated with the CICS program, as described in “Defining the attributes of a
4-tuple” on page 465.

EXECKEY option
CICS programs should be defined as EXECKEY(USER), unless there is some reason for defining them as
CICS-key in your CICS system. Defining programs as EXECKEY(USER) prevents them from overwriting
CICS.
Converters and the resource checker should not be regarded as application programs when defining
storage. You are recommended to define them as EXECKEY(CICS). This allows them to modify CICS-key
storage.
When the Decode and Encode functions allocate storage to hold the converted data, that storage should
be allocated as CICS-key.
User-written XDR routines must be defined as EXECKEY(CICS).
If you specify EXECKEY(USER) for the CICS program, ensure that TASKDATAKEY(USER) is specified for the
alias. USER is the default TASKDATAKEY setting in the alias definition in the supplied group DFHRP.
If you have CICS programs that need to be specified with EXECKEY(CICS), you are advised to specify
TASKDATAKEY(CICS) for the alias that will execute them.
CICS operates with storage protection when the system initialization parameter STGPROT is set to YES, or
allowed to default to YES.

RELOAD option
You should specify RELOAD(YES) for any user-written XDR routines to prevent errors in CICS ONC RPC
disable processing.

Program definitions for remote CICS programs

If a CICS program that is to service a remote procedure call runs in a different CICS system from CICS
ONC RPC, a program definition is required on both the local system and the remote system.
The program resides on the remote system, so its definition there is straightforward. The program
definition on the local system:
• Must include a REMOTESYSTEM parameter to specify the system on which the program resides.
• Can optionally include a REMOTENAME parameter if you want the names on the local system and
remote system to be different.
• Can optionally include a TRANSID parameter:
– If TRANSID is not specified, the CICS program runs under the CICS mirror transaction on the remote
CICS system.

456 CICS TS for z/OS: Configuring CICS

 – If TRANSID is specified, the program in the remote CICS system runs under the transaction name
given. See “Transaction definitions for extra alias transactions” on page 455 for reasons why you may
want a different name.
If the remote transaction ID is specified, you must provide a matching transaction definition in the
remote CICS system. This definition must specify the appropriate mirror program for the remote
system (DFHMIRS for CICS for MVS/ESA and CICS Transaction Server for z/OS systems).
If a CICS program is running on a CICS platform other than CICS for MVS/ESA or CICS Transaction Server
for z/OS similar considerations apply, but you should refer to the DPL details for that platform.

Mapset definition
Mapset definitions are supplied in the group DFHRP for the connection manager mapsets. The definitions
cannot be changed.

Transient data definitions

CICS provides a resource definition for the CICS ONC RPC message transient data queue CRPO. The
resource definition is in group DFHDCTG, which is part of DFHLIST.
Group DFHDCTG is not protected by a lock, so the definitions it contains can be modified if required. CRPO
is defined as an extrapartition queue, but you can make the destination intrapartition or indirect if you
prefer.
If you leave CRPO defined as an extrapartition queue, you must add a suitable DD statement for the
extrapartition queue in the CICS JCL, for example:

//CRPO DD SYSOUT=A

XLT definitions
The XLT system initialization parameter and its associated transaction list should allow the connection
manager, CRPC, to be started during normal CICS shutdown. If CICS ONC RPC is delaying shutdown, the
connection manager can be used to force an immediate disable of CICS ONC RPC.

Configuring CICS ONC RPC using the connection manager

The connection manager has four main functions.
• Enabling CICS ONC RPC
• Disabling CICS ONC RPC
• Controlling the operating options and 4-tuple information stored in the CICS ONC RPC data set
• Controlling the operating options and 4-tuple information in current use when CICS ONC RPC is enabled
When CICS ONC RPC is enabled, the connection manager allows you to:
• Update the CICS ONC RPC definition record in the data set
• Add, delete, and change 4-tuple records in the data set
• Change the options being used to control the operation of CICS ONC RPC
• Register 4-tuple definitions from the data set
• Create temporary 4-tuple definitions and register them
• Unregister 4-tuple definitions
• Disable CICS ONC RPC

Chapter 14. Setting up and configuring CICS ONC RPC 457

Starting the connection manager
You can start the connection manager in various ways and the effect of starting the connection manager
depends on several factors.

Methods to start the connection manager

You can start the connection manager:
• From a terminal that supports BMS maps. You can work with the connection manager panels described
in this section.
• From a CICS console.
• Using an EXEC CICS START command.
• From a sequential terminal.

Effect of starting the connection manager

The effect of starting the connection manager depends on:
• Whether CICS ONC RPC is enabled or disabled
• Whether you start the connection manager from a terminal that permits the use of BMS
• Whether you enter additional data with the transaction name
• Whether the Automatic Enable option in the CICS ONC RPC definition record is set to YES
When CICS ONC RPC is disabled, the effect of entering the transaction name (and optional additional
data) on a terminal that supports BMS is as follows:
CRPC
• If Automatic Enable is YES, automatic enable processing occurs.
• If Automatic Enable is NO, a BMS panel (DFHRP01) is shown.
• If there is no CICS ONC RPC definition record yet, a BMS panel (DFHRP01) is shown.
CRPC E A(N)
• A BMS panel (DFHRP01) is shown.
CRPC E A(Y)
• Automatic enable processing occurs. If there is no CICS ONC RPC definition record, one is created
using default values for the options, but no 4-tuples are registered.
If you start the connection manager in a way that does not allow panels to be shown (EXEC CICS
START, or non-BMS terminal, for example) and the action is to show a panel, error message DFHRP1505
is produced.
When CICS ONC RPC is enabled, the effect of entering the transaction name (and optional additional data)
is as follows:
• CRPC displays panel DFHRP04, or produces error message DFHRP1505 if panels cannot be shown.
• CRPC D(N) causes normal disable processing.
• CRPC D(I) causes immediate disable processing.
The forms CRPC E A(N), CRPC E A(Y), CRPC D(N), and CRPC D(I) are called fast-path commands.

Before you begin

z/OS Communications Server should be started before you try to enable CICS ONC RPC with the
connection manager; otherwise ,you cannot register 4-tuples, and you have to re-enable CICS ONC RPC
after starting z/OS Communications Server.

458 CICS TS for z/OS: Configuring CICS

Starting the connection manager when CICS ONC RPC is disabled
If CICS ONC RPC is disabled, panel DFHRP01 is shown.

CRPC CICS ONC RPC for MVS/ESA DFHRP01

Select one of the following. Then press Enter.

_ 1. Enable CICS ONC RPC

2. View or modify the CICS ONC RPC data set

Current Status: Disabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF9=Messages PF12=Return

Figure 69. Panel DFHRP01

Select an option, and then press Enter.

Option
Description
1
“Enabling CICS ONC RPC” on page 462
2
“Updating the CICS ONC RPC data set” on page 472

Starting the connection manager when CICS ONC RPC is enabled

If CICS ONC RPC is enabled, panel DFHRP04 is shown.

CRPC CICS ONC RPC for MVS/ESA DFHRP04

Select one of the following. Then press Enter.

_ 1. Disable CICS ONC RPC

2. View or modify the CICS ONC RPC data set
3. View or modify CICS ONC RPC status

Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF9=Messages

Figure 70. Panel DFHRP04

Chapter 14. Setting up and configuring CICS ONC RPC 459

 Select an option, and then press Enter.
Option
Description
1
“Disabling CICS ONC RPC” on page 471
2
“Updating the CICS ONC RPC data set” on page 472
3
“Updating CICS ONC RPC status” on page 461

Using the connection manager BMS panels

All leading and trailing blanks are ignored on BMS input.

Panel format
At the top of all panels is a panel identifier in the right corner (for example, DFHRP02) and CRPC in the left
corner.
On the bottom of all panels, the fourth line from the bottom gives the status of CICS ONC RPC, the third
line from the bottom is a prompt line, while the bottom line lists the available PF keys, which can include:
PF1
Help information (all panels)
PF2
Delete definition from the CICS ONC RPC data set (only where shown)
PF3
Exit CRPC (you are prompted to confirm by using PF3 again)
PF4
Write fields to the CICS ONC RPC data set (only where shown)
PF7
Scroll up (only where shown)
PF8
Scroll down (only where shown)
PF9
Display messages relating to current input
PF12
Cancel this panel and return to the previous panel

Connection manager error message output and display

The destination of connection manager messages depends on the nature of the message.
• Severe errors requiring operator intervention are sent to the console. No other messages go to the
console.
• Messages relating to invalid input on the panel can be displayed by pressing PF9.
• Messages reporting internal errors are sent to CRPO, and in most cases they can be displayed on the
terminal by pressing PF9.
During the operation of the connection manager, error messages might be issued. These are not displayed
immediately on the screen, but a prompt appears on the prompt line to say that messages are waiting to
be viewed. To see the messages, press PF9. The number and text of the messages is displayed. When you
have read the messages, you can press Enter, PF3, or PF12 to return to the input panel.

460 CICS TS for z/OS: Configuring CICS

Updating CICS ONC RPC status
If you select option 3 on panel DFHRP04, panel DFHRP10 is shown.

CRPC CICS ONC RPC for MVS/ESA Update Status DFHRP10

Select one of the following. Then press Enter.

_ 1. Change CICS ONC RPC settings

2. Register procedure(s)
3. Unregister procedure(s)
4. View or modify alias list

Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF9=Messages PF12=Return

Figure 71. Panel DFHRP10

Select an option, then press Enter.

Option
Description
1
Use option 1 to change the CICS ONC RPC status.
If you select option 1, panel DFHRP16 is shown. You can type over any of the entries except CRPM
Userid to change the values currently used by CICS ONC RPC. CRPM Userid is displayed only for
information. CRPM Userid cannot be changed without first disabling CICS ONC RPC.

CRPC CICS ONC RPC for MVS/ESA Status DFHRP16

Trace( STARTED ) Trace Level( 1 )

Resource Checker( NO ) CRPM Userid( CICSUSER )

Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF9=Messages PF12=Return

Figure 72. Panel DFHRP16

2
“Defining, saving, modifying, and deleting 4-tuples” on page 464

Chapter 14. Setting up and configuring CICS ONC RPC 461

 3
“Unregistering 4-tuples” on page 469
4
“Processing the alias list” on page 476

Enabling CICS ONC RPC

You can enable CICS ONC RPC in two ways: operator-assisted enable, or automatic enable.
When CICS ONC RPC is disabled, the connection manager allows you to:
• Create or update the CICS ONC RPC definition record in the data set
• Add, delete, and change 4-tuple records in the data set
• Enable CICS ONC RPC
You can use the connection manager to enable CICS ONC RPC in two ways:
• Operator-assisted enable—before you enable CICS ONC RPC, you can:
– Modify any or all of the options
– Select which 4-tuples are to be registered
– Modify the attributes of 4-tuples before registration
When you enable CICS ONC RPC, options to control its operation come into play, and 4-tuples can be
registered.
The changes you make during an operator-assisted enable can be temporary, lasting only until the next
time you disable CICS ONC RPC, or you can store them into the CICS ONC RPC data set, and use them
the next time you enable CICS ONC RPC.
• Automatic enable—the contents of the CICS ONC RPC definition record determine the options to control
the operation of CICS ONC RPC until the next time you disable it. Some 4-tuples might be registered,
depending on an attribute in the 4-tuple definition.
The CICS ONC RPC data set is a store of operating environment information. It contains two kinds of
records: the CICS ONC RPC definition record contains the operating options, and 4-tuple records contain
the 4-tuple information.

Setting and modifying options

If you start the connection manager when CICS ONC RPC is disabled, and select option 1 on panel
DFHRP01, panel DFHRP02 is shown.

462 CICS TS for z/OS: Configuring CICS

CRPC CICS ONC RPC for MVS/ESA Enable DFHRP02

Overtype to Modify
Choice Possible Options

Trace ===> STARTED STArted | STOpped

Trace Level ===> 1 1 | 2

Resource Checker ===> NO Yes | No

CRPM Userid ===> CICSUSER

Automatic Enable ===> NO Yes | No

Current Status: Disabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF4=Save PF9=Messages PF12=Return

Figure 73. Panel DFHRP02

The values displayed in the Choice column are those stored in the CICS ONC RPC data set. The data set
is initialized with the values shown in Figure 73 on page 463, except that the value displayed for CRPM
Userid is the default CICS user ID for the CICS system in which CICS ONC RPC is operating.
You can make entries in the following fields. Entries may be in lowercase or uppercase. Where entries to
a field are restricted (for example, YES or NO) you can enter the whole option (YES) or the minimum (Y).
In the panels, the minimum entry is shown in uppercase in the Possible Options column. In the reference
material in this manual, the minimum entry is given in parentheses after the full entry.
Trace
Specifies whether CICS ONC RPC tracing is active. STARTED (STA) means it is active, STOPPED (STO)
means it is not. The default value is STARTED.
CICS ONC RPC exception trace entries are always written to CICS internal trace whatever the setting
of this option. To get non-exception trace entries written, CICS trace must be started, and this option
must be set to STARTED.
Trace Level
Specifies the trace level for CICS ONC RPC. The value 1 means that level 1 trace points are traced, and
2 means that both level 1 and 2 are traced. The default value is 1.
Resource Checker
YES (Y) means that CICS ONC RPC is to call the user-written resource-checking module on receipt of
every incoming RPC request. NO (N) means the resource checker is not to be called. The default is NO.
CRPM Userid
Specifies the CICS user ID under which the server controller is to run. The default is the default user
ID for the CICS system in which CICS ONC RPC is operating.
Automatic Enable
Enter YES (Y) or NO (N). If YES is stored in the CICS ONC RPC data set, you can enable CICS ONC
RPC by just typing CRPC; all values are defaulted from the CICS ONC RPC data set, CICS ONC RPC
becomes enabled without further user input, and all the 4-tuples with YES for their Register from Data
Set option are registered. The default value is NO.
Setting this field has an effect only when you enable CICS ONC RPC. If you use PF4 to save the
values to the CICS ONC RPC data set, this value will be effective the next time you enable, unless
you override it. A YES in this field in the CICS ONC RPC data set may be overridden by the fast path
command CRPC E A(N).

Chapter 14. Setting up and configuring CICS ONC RPC 463

 Validating, saving, and activating options
After you have made your changes on panel DFHRP02, press Enter to get them validated by the
connection manager.
If you want to save the new values in the CICS ONC RPC data set, press PF4.
If you press Enter a second time, CICS ONC RPC becomes enabled, and panel DFHRP03 is shown, as
described in “Defining, saving, modifying, and deleting 4-tuples” on page 464.

Defining, saving, modifying, and deleting 4-tuples

The first panel for defining, saving, modifying, and deleting 4-tuples is DFHRP03.

The first panel for defining, saving, modifying, and deleting 4-tuples is DFHRP03. (See Figure 74 on page
464.) This panel is shown as soon as you have enabled CICS ONC RPC, or if you choose option 2 on panel
DFHRP10.

CRPC CICS ONC RPC for MVS/ESA DFHRP03

Remote Procedure Registration

Select one of the following. Then press Enter.

_ 1. Register procedures from the data set

2. List procedures sequentially
3. Register a new procedure
4. Retrieve a specified procedure from the data set (Enter required data)
Program Number ===> ________ 0-FFFFFFFF
Version Number ===> ________ 0-FFFFFFFF
Procedure Number ===> ________ 1-FFFFFFFF
Protocol ===> UDP Udp | Tcp

Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF9=Messages PF12=Return

Figure 74. Panel DFHRP03

Option
For more information see:
1
See information later in this section.
2
“Defining the attributes of a 4-tuple” on page 465
3
“Unregistering 4-tuples” on page 469
4
See information later in this section.
If you select option 1, the 4-tuples in the CICS ONC RPC data set that have YES for their Register from
Data Set attribute are all registered.
If you specify a 4-tuple for which there is no definition in the CICS ONC RPC data set, a message is issued
when you press Enter, and panel DFHRP03 remains on the screen.

464 CICS TS for z/OS: Configuring CICS

Defining the attributes of a 4-tuple
When you select option 3 or option 4 on panel DFHRP03, panel DFHRP5 is shown. If you chose option 3,
some of the fields are empty, but if you chose option 4, the details of the selected 4-tuple are shown. You
have to supply more information on panel DFHRP5B.

CRPC CICS ONC RPC for MVS/ESA Remote Procedure Registration DFHRP5

Overtype to Modify. Then press Enter to Validate

ONC RPC ATTRIBUTES

ONC RPC Program Number ===> ________ 0-FFFFFFFF
ONC RPC Version Number ===> ________ 0-FFFFFFFF
ONC RPC Procedure Number ===> ________ 1-FFFFFFFF
Protocol ===> UDP Udp | Tcp
RPC Call Type ===> BLOCKING Blocking | Nonblocking
Inbound XDR Routine ===> ______________
Outbound XDR Routine ===> ______________
CICS ATTRIBUTES
ALIAS Transaction ID ===> CRPA
EDF Terminal ID ===> ____
+ Program Name ===> ________

Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF4=Save PF8=Forward PF9=Messages PF12=Return

CRPC CICS ONC RPC for MVS/ESA Remote Procedure Registration DFHRP5B

Overtype to Modify. Then press Enter to Validate

+ CICS ONC RPC ATTRIBUTES

Converter Program Name ===> ________
Encode ===> NO Yes | No
Decode ===> YES Yes | No
Getlengths ===> YES Yes | No
Server Input Length ===> _____ 0 - 32767 Bytes
Server Output Length ===> _____ 0 - 32767 Bytes
Server Data Format ===> CONTIGUOUS Contiguous | Overlaid
Register from Data set ===> YES Yes | No

Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF4=Save PF7=Back PF9=Messages PF12=Return

Figure 75. Panels DFHRP5 and DFHRP5B

After you have made your modifications to panel DFHRP5, you should press PF8 to move to panel
DFHRP5B. From panel DFHRP5B you can press PF7 if you want to go back to panel DFHRP5. After you
have made your modifications to the panels, you press Enter to get all the modifications validated.
The attributes of a 4-tuple are divided into three categories:
• ONC RPC attributes
• CICS attributes
• CICS ONC RPC attributes

Chapter 14. Setting up and configuring CICS ONC RPC 465

 ONC RPC attributes
The first four options establish the 4-tuple whose attributes are being defined.
ONC RPC Program Number
Specifies the program number of the 4-tuple as a hexadecimal string of 1 through 8 characters. You
are advised not to use numbers in the range 0 through 1FFFFFFF, as these numbers are reserved for
public network services and are allocated by Sun Microsystems.
ONC RPC Version Number
Specifies the version number of the 4-tuple as a hexadecimal string of 1 through 8 characters.
ONC RPC Procedure Number
Specifies the procedure number of the 4-tuple as a hexadecimal string of 1 through 8 characters.
Procedure 0 is reserved by z/OS Communications Server for a procedure with no parameters and no
processing that returns an empty reply.
Protocol
Specifies the protocol of the 4-tuple. UDP (U) for UDP, or TCP (T) for TCP.
The remaining options specify the attributes of the 4-tuple.
RPC Call Type
Specifies whether CICS ONC RPC is to treat calls from clients as BLOCKING (B) or NONBLOCKING (N).
If NONBLOCKING is specified, the outbound XDR routine cannot be specified, and no reply is sent to
the client. The default is BLOCKING.
Inbound XDR Routine
Specifies the name of the inbound XDR routine. If an XDR library function is used, its full name is
specified. See Step 3???????????????????Write the XDR routines to find out which library routines can
be specified here. If a user-defined routine is used, its name (maximum 8 characters) is specified.
Outbound XDR Routine
Specifies the name of the outbound XDR routine, if RPC Call Type is BLOCKING. If an XDR library
function is used, its full name is specified. See Step 3???????????????????Write the XDR routines
to find out which library routines can be specified here. If a user-defined routine is used, its name
(maximum 8 characters) is specified. A blank input is valid only if RPC Call Type is NONBLOCKING.

CICS attributes
The alias transaction ID, EDF terminal ID, and program name are the attributes you must specify for CICS.
ALIAS Transaction ID
Specifies the transaction ID to be used for the alias. If this is omitted, and not provided by the Decode
function, the alias transaction ID is CRPA. For reasons why you might want a different name from
CRPA, see “Transaction definitions for extra alias transactions” on page 455.
EDF Terminal ID
Specifies the terminal ID to be used for the alias. You need a terminal ID only if you want to use
execution diagnostic facility (EDF) to debug the resource checker, CICS program, or Encode function
of the converter. A blank means that you cannot use EDF. EDF setup is described in Using EDF.
Program Name
Specifies the name of the CICS program that is to be called to service a request for this 4-tuple.

CICS ONC RPC attributes

Converter Program Name
Specifies the name of the converter program. This name must be specified.
Encode
YES (Y) means that CICS ONC RPC must call the Encode function of the converter when servicing a
client request for this 4-tuple; NO (N) means that it must not. The default is NO.
Decode
YES (Y) means that CICS ONC RPC must call the Decode function of the converter when servicing a
client request for this 4-tuple; NO (N) means that it must not. The default is YES.

466 CICS TS for z/OS: Configuring CICS

Getlengths
YES (Y) means that the connection manager must call the Getlengths function of the converter before
registering this 4-tuple. NO (N) means that it must not. If you specify YES here, you should ignore the
next two attributes, but you can set Server Data Format. If you specify NO here, you must specify the
next three attributes. The default is YES.
Server Input Length
For the use of this option, see the description of Server Data Format.
If you specified YES for the Getlengths option, leave this field blank.
Server Output Length
For the use of this option, see the description of Server Data Format.
If you specified YES for the Getlengths option, leave this field blank.
Server Data Format
A value that controls:
• How the input data pointer for Encode will be set up
• How the communication area length to be checked by the connection manager is calculated
The values you can specify are as follows:
CONTIGUOUS
The value of the data pointer that will be passed to Encode, or to the outbound XDR routine if
Encode is not used for this 4-tuple, is the address of the CICS program communication area plus
the value of Server Input Length, though Decode can modify this offset.
The connection manager calculates a communication area length by adding the values of
Server Input Length and Server Output Length. If this length exceeds 32␠767 bytes, message
DFHRP1965 is issued. If this length is different from the actual length of the communication area
passed from Decode to the CICS program, errors might occur in the processing of client requests.
OVERLAID
The value of the data pointer that will be passed to Encode, or to the outbound XDR routine if
Encode is not used for this 4-tuple, is the address of the CICS program communication area.
The connection manager calculates a communication area length by taking the larger of the
output values of Server Input Length and Server Output Length. If this length is different from the
actual length of the communication area passed to the CICS program, errors might occur in the
processing of client requests.
If you specified YES for the Getlengths option, the value in this field is used as an input to the
Getlengths function of the converter.
Register from Data Set
YES (Y) means that the 4-tuple is to be registered:
• During automatic enable processing
• When option 1 is selected on panel DFHRP03, as described in “Registering the 4-tuples” on page
468
NO (N) means that it is not. The default is YES. Entries specified as NO can be stored in the CICS ONC
RPC data set and you can register them at any time when CICS ONC RPC is enabled.

Saving new 4-tuple definitions

There are five ways of saving new 4-tuple definitions.
• On panel DFHRP03, select option 3. Complete panels DFHRP5 and DFHRP5B, and validate your input as
described in “Defining the attributes of a 4-tuple” on page 465. Press PF4 to save the definition in the
CICS ONC RPC data set.

Chapter 14. Setting up and configuring CICS ONC RPC 467

 • On panel DFHRP03, select option 4. Modify the panels DFHRP5 and DFHRP5B, and validate your input
as described in “Defining the attributes of a 4-tuple” on page 465. Press PF4 to save the definition in the
CICS ONC RPC data set.
• On panel DFHRP20, select option 3. Complete panels DFHRP21 and DFHRP2B, and validate your input
as described in “Changing the attributes of a 4-tuple” on page 475. Press Enter to save the definition in
the CICS ONC RPC data set.
• On panel DFHRP20, select option 4. Modify the panels DFHRP21 and DFHRP2B, and validate your input
as described in “Changing the attributes of a 4-tuple” on page 475. Press Enter to save the definition in
the CICS ONC RPC data set.
• On panel DFHRP03, select option 2. Then on panel DFHRP14, enter command M against a 4-tuple.
Modify the panels DFHRP21 and DFHRP2B, and validate your input as described in “Changing the
attributes of a 4-tuple” on page 475. Press Enter to save the definition in the CICS ONC RPC data set.

Modifying existing 4-tuple definitions

To change some of the attributes of a 4-tuple that already has a definition in the CICS ONC RPC data set,
select option 4 on panel DFHRP03 or panel DFHRP20.

Deleting existing 4-tuple definitions

You can delete existing 4-tuple definitions from the CICS ONC RPC data set in two ways.
• On panel DFHRP03, select option 2. Then on panel DFHRP14 you can enter D against 4-tuples in the
list, and they are deleted from the data set when you press Enter.
• On panel DFHRP21, by using key PF2, as described in “Changing the attributes of a 4-tuple” on page
475.

Registering the 4-tuples

You can register 4-tuples in any of the following ways.
• You can register all the 4-tuples in the CICS ONC RPC data set that are defined with YES specified for
Register from Data Set. To do this, select option 1 on panel DFHRP03, and press Enter. After these
4-tuples have been registered, panel DFHRP03 is still displayed, so you can make other selections.
• You can register 4-tuple definitions one at a time. To do this, you use option 3 or option 4 on panel
DFHRP03. Make changes, if you need any, to panels DFHRP5 and DFHRP5B and get them validated as
described in “Defining the attributes of a 4-tuple” on page 465. To register the definition, press Enter.
• You can register 4-tuples from a list. See “Working with a list of 4-tuples” on page 474.
• When CICS ONC RPC is disabled, you can register all the 4-tuples in the CICS ONC RPC data set that
have YES for their Register from Data Set attribute by initiating automatic enable processing.
When a 4-tuple is registered, two things happen:
• If the program-version-protocol 3-tuple has not yet been registered with TCP/IP for MVS, it is
registered. The Portmapper assigns a port number to this combination, and that port number is the
one that clients use to request the service represented by this 4-tuple. Procedure 0 for the program,
version, and protocol becomes available to callers.
• The resources associated with the 4-tuple become available to service client requests. When a client
request arrives in CICS ONC RPC, the resources used to service it are those of the 4-tuple whose
program, version, and procedure numbers match those of the request, and whose protocol matches the
protocol used to transmit the request from the client to the server.

Limits on registration
CICS ONC RPC makes a total of 252 sockets available for use. One socket is used by each program/
version/protocol 3-tuple from the time the first 4-tuple for that program, version and protocol is

468 CICS TS for z/OS: Configuring CICS

 registered. This socket remains in use until the last 4-tuple with that program and version is unregistered.
One socket is used by each TCP call for the duration of the call.
If you register too many 4-tuples, you reduce the service that CICS ONC RPC can give to incoming
client requests. If you attempt to register more than 252 program-version-protocol 3-tuples with z/OS
Communications Server, the results are unpredictable.

Unregistering 4-tuples
You can unregister 4-tuples that have previously been registered with CICS ONC RPC only when CICS
ONC RPC is already enabled. You can unregister 4-tuples from a list or one by one.
From panel DFHRP10, if you select option 3, panel DFHRP11 is shown (see Figure 76 on page 469).
Select an option, and then press Enter.

CRPC CICS ONC RPC for MVS/ESA DFHRP11

Remote Procedure Unregister

Select one of the following. Then press Enter.

_ 1. Unregister procedures from a list

2. Unregister a specified procedure (Enter required data)
Program Number ===> ________ 0-FFFFFFFF
Version Number ===> ________ 0-FFFFFFFF
Procedure Number ===> ________ 1-FFFFFFFF
Protocol ===> UDP Udp | Tcp

Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF9=Messages PF12=Return

Figure 76. Panel DFHRP11

Unregistering 4-tuples from a list

Use option 1 to unregister 4-tuples from a list. If you select option 1 on panel DFHRP11, the panel
DFHRP12 is shown (see Figure 77 on page 470).
This panel presents a list of 4-tuples currently registered with CICS ONC RPC. If you enter U against
4-tuples in the list, they are unregistered when you press Enter. You can display the attributes of a 4-tuple
by entering ? against it, and pressing Enter. Panel DFHRP13 is shown (see Figure 78 on page 470).

Chapter 14. Setting up and configuring CICS ONC RPC 469

 CRPC CICS ONC RPC for MVS/ESA DFHRP12
Registered Procedures List

Enter 'U' to Unregister, or '?' to display details of a procedure

_ Prog( 20000002 ) Vers( 00000001 ) Proc( 00000006 ) Prot( UDP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 00000007 ) Prot( TCP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 00000007 ) Prot( UDP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 00000008 ) Prot( TCP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 00000009 ) Prot( UDP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 0000000A ) Prot( TCP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 0000000B ) Prot( TCP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 0000000B ) Prot( UDP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 0000000C ) Prot( TCP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 0000000C ) Prot( UDP )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF2=Refresh PF3=Exit PF7=Back PF8=Forward PF9=Messages PF12=Return

Figure 77. Panel DFHRP12

CRPC CICS ONC RPC for MVS/ESA DFHRP13

Display Registered Procedure

Program Number( 20000002 ) Version Number( 00000001 )

Procedure Number( 00000006 ) Protocol( UDP )
RPC Call Type( Blocking ) Inbound XDR( XDR_WRAPSTRING )
Outbound XDR( XDR_WRAPSTRING ) Alias Transid( CRPA )
Alias Termid( ) Server Program Name( STRING6 )
Converter Program Name( RINGCVNY ) Getlengths( NO )
Decode( YES ) Encode( NO )
Server Input Length( 00001 ) Server Output Length( 00001 )
Server Data Format( CONTIGUOUS )

Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF12=Return

Figure 78. Panel DFHRP13

Unregistering 4-tuples one by one

Use option 2 to unregister 4-tuples one by one. Before you select option 2 on panel DFHRP11, you must
supply the following values:
Program Number
The program number of the 4-tuple to be unregistered.
Version Number
The version number of the 4-tuple to be unregistered.
Procedure Number
The procedure number of the 4-tuple to be unregistered.
Protocol
The protocol of the 4-tuple to be unregistered.
Result

470 CICS TS for z/OS: Configuring CICS

 If you specify a 4-tuple that is registered, it is unregistered when you press Enter, and panel DFHRP11
remains on the screen.
If you specify a 4-tuple that is not registered, a message is issued when you press Enter, and panel
DFHRP11 remains on the screen.

Disabling CICS ONC RPC

There are two ways of disabling CICS ONC RPC: normal, and immediate.
From panel DFHRP04, select option 1; panel DFHRP06 is shown.

CRPC CICS ONC RPC for MVS/ESA Disable DFHRP06

Select the type of disable required. Then press Enter.

Type of Disable ===> _________ Normal | Immediate

Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF9=Messages PF12=Return

Figure 79. Panel DFHRP06

In this panel there is only one field to enter.

Type of Disable

NORMAL (N)
Normal disable processing is started.
• All program-version pairs are unregistered from z/OS Communications Server.
• All work that has already entered CICS ONC RPC is allowed to run to completion, and replies are
sent to the relevant client.
IMMEDIATE (I)
Immediate disable processing is started.
• Aliases not yet started do not start at all.
• CICS programs running under aliases are allowed to end, and then the alias abends. If the
CICS program ends normally, and was called using DPL, the changes it makes to recoverable
resources are committed. If the CICS program is a local program, the changes it makes to
recoverable resources are backed out unless the CICS program takes a sync point with EXEC
CICS SYNCPOINT.
• All the program-version pairs are unregistered from z/OS Communications Server.
• No replies are sent to clients, so they do not know whether the CICS program has run or not.
Pressing Enter causes the entry you have made to be validated. Pressing Enter a second time begins
disable processing. The Current Status is changed to Disabling or Disabled, depending on the progress of
disable processing. When disable processing is complete, pressing Enter changes the Current Status to
Disabled.

Chapter 14. Setting up and configuring CICS ONC RPC 471

 The panel is displayed until you use PF3 or PF12.

What happens on CICS normal shutdown

CICS normal shutdown starts normal disable processing for CICS ONC RPC.

What happens on CICS immediate shutdown

On CICS immediate shutdown, all transactions are terminated. Clients are not informed of the shutdown
or its effects. The program-version-protocol 3-tuples that are registered with z/OS Communications
Server might remain registered.

Updating the CICS ONC RPC data set

If you select option 2 on panel DFHRP01, or option 2 on panel DFHRP04, panel DFHRP20 is shown.

CRPC CICS ONC RPC for MVS/ESA DFHRP20

Update CICS ONC RPC Data set

Select one of the following. Then press Enter.

_ 1. View or modify the CICS ONC RPC definition record

2. Display a list of remote procedure definitions
3. Define a new procedure
4. Retrieve a specified procedure from the data set (Enter required data)
Program Number ===> ________ 0-FFFFFFFF
Version Number ===> ________ 0-FFFFFFFF
Procedure Number ===> ________ 1-FFFFFFFF
Protocol ===> UDP Udp | Tcp

Current Status:

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF9=Messages PF12=Return

Figure 80. Panel DFHRP20

The Current Status field in this panel might show Enabled or Disabled, depending on which panel you
came from.
Before selecting option 4, you must supply the following information:
Program Number
The program number of the 4-tuple whose definition is to be retrieved.
Version Number
The version number of the 4-tuple whose definition is to be retrieved.
Procedure Number
The procedure number of the 4-tuple whose definition is to be retrieved.
Protocol
The protocol of the 4-tuple whose definition is to be retrieved.
Select an option, then press Enter.
Option
Description
1
“Updating the CICS ONC RPC definition record” on page 473

472 CICS TS for z/OS: Configuring CICS

2
“Working with a list of 4-tuples” on page 474
3
“Changing the attributes of a 4-tuple” on page 475
4
“Changing the attributes of a 4-tuple” on page 475
If you specify a 4-tuple which is not defined in the CICS ONC RPC data set, a message is issued when you
press Enter, and panel DFHRP20 remains on the screen.

Updating the CICS ONC RPC definition record

If you select option 1 on panel DFHRP20, panel DFHRP22 is shown.

CRPC CICS ONC RPC for MVS/ESA DFHRP22

Update CICS ONC RPC Definition Record
Overtype to Modify
Choice Possible Options

Trace ===> STARTED STArted | STOpped

Trace Level ===> 1 1 | 2

Resource Checker ===> NO Yes | No

CRPM Userid ===> CICSUSER

Automatic Enable ===> NO Yes | No

Current Status:

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF9=Messages PF12=Return

Figure 81. Panel DFHRP22

The values displayed in the Choice column are those stored in the CICS ONC RPC data set.
After you have made your changes you should press Enter to get them validated. You can then press Enter
again to update the CICS ONC RPC data set with the values you have supplied. The next time you start the
connection manager, the saved options are used to set up panel DFHRP02
Trace
Specifies whether CICS ONC RPC tracing is active. STARTED (STA) means it is active, STOPPED (STO)
means it is not. The default value is STARTED.
CICS ONC RPC exception trace entries are always written to CICS internal trace whatever the setting
of this option. To get non-exception trace entries written, CICS trace must be started, and this option
must be set to STARTED.
Trace Level
Specifies the trace level for CICS ONC RPC. The value 1 means that level 1 trace points are traced, 2
means that both level 1 and level 2 are traced. The default value is 1.
Resource Checker
YES (Y) means that CICS ONC RPC is to call the user-written resource-checking module on receipt of
every incoming RPC request. NO (N) means the resource checker is not to be called. The default is NO.
CRPM Userid
Specifies the CICS user ID under which the server controller is to operate. The default is the default
user ID for the CICS system in which CICS ONC RPC is operating.

Chapter 14. Setting up and configuring CICS ONC RPC 473

 Automatic Enable
Enter YES (Y) or NO (N). If YES is stored in the CICS ONC RPC data set, you can enable CICS ONC
RPC by just typing CRPC; all values are defaulted from the CICS ONC RPC data set, CICS ONC RPC
becomes enabled without further user input, and all the 4-tuples with YES for their Register from Data
Set option are registered. The default value is NO.
Setting this field has an effect only when you enable CICS ONC RPC. If you save the values to the CICS
ONC RPC data set, this value will be effective the next time you enable, unless you override it. The
value of this field in the CICS ONC RPC data set may be overridden by the fast path command CRPC E
A(N).

Working with a list of 4-tuples

If you select option 2 on panel DFHRP03, or option 2 on panel DFHRP20, panel DFHRP14 is shown.

CRPC CICS ONC RPC for MVS/ESA DFHRP14

Remote Procedure Definition List

Enter a command (press PF1 to view the list of valid commands).

_ Prog( 20000002 ) Vers( 00000001 ) Proc( 00000006 ) Prot( UDP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 00000007 ) Prot( TCP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 00000007 ) Prot( UDP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 00000008 ) Prot( TCP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 00000009 ) Prot( UDP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 0000000A ) Prot( TCP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 0000000B ) Prot( TCP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 0000000B ) Prot( UDP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 0000000C ) Prot( TCP )
_ Prog( 20000002 ) Vers( 00000001 ) Proc( 0000000C ) Prot( UDP )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
Current Status:

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF2=Refresh PF3=Exit PF7=Back PF8=Forward PF9=Messages PF12=Return

Figure 82. Panel DFHRP14

This panel presents a list of 4-tuples currently defined in the CICS ONC RPC data set. If CICS ONC RPC is
enabled, the 4-tuples that are currently registered are shown highlighted. You can put a command against
a 4-tuple, and it takes effect when you press Enter. The following commands can be entered against a
4-tuple:
D
Deletes the definition from the data set.
R
If CICS ONC RPC is enabled, registers the 4-tuple with CICS ONC RPC. If CICS ONC RPC is disabled,
this command produces an error message.
M
Shows panel DFHRP21. See “Changing the attributes of a 4-tuple” on page 475 for details.
?
Shows panel DFHRP15, which displays the attributes of a 4-tuple, but does not allow changes.

474 CICS TS for z/OS: Configuring CICS

 CRPC CICS ONC RPC for MVS/ESA DFHRP15
Display Registered Procedure

Program Number( 20000002 ) Version Number( 00000001 )

Procedure Number( 00000006 ) Protocol( UDP )
RPC Call Type( Blocking ) Inbound XDR( XDR_WRAPSTRING )
Outbound XDR( XDR_WRAPSTRING ) Alias Transid( CRPA )
Alias Termid( ) Server Program Name( STRING6 )
Converter Program Name( RINGCVNY ) Getlengths( NO )
Decode( YES ) Encode( NO )
Server Input Length( 00000 ) Server Output Length( 00000 )
Server Data Format( CONTIGUOUS ) Register from Data set( Yes )

Current Status:

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF12=Return

Figure 83. Panel DFHRP15

Changing the attributes of a 4-tuple

If you select option 3 or 4 on panel DFHRP20, or if you enter the M command on panel DFHRP14, panel
DFHRP21 is shown.
The attributes of a 4-tuple are divided into three categories:
• ONC RPC attributes—see “ONC RPC attributes” on page 466.
• CICS attributes—see EDF Terminal ID.
• CICS ONC RPC attributes—see “CICS ONC RPC attributes” on page 466.

Chapter 14. Setting up and configuring CICS ONC RPC 475

 CRPC CICS ONC RPC for MVS/ESA Remote Procedure Definition DFHRP21

Overtype to Modify. Then press Enter to Validate

ONC RPC ATTRIBUTES

ONC RPC Program Number ===> ________ 0-FFFFFFFF
ONC RPC Version Number ===> ________ 0-FFFFFFFF
ONC RPC Procedure Number ===> ________ 1-FFFFFFFF
Protocol ===> UDP Udp | Tcp
RPC Call Type ===> BLOCKING Blocking | Nonblocking
Inbound XDR Routine ===> ______________
Outbound XDR Routine ===> ______________
CICS ATTRIBUTES
ALIAS Transaction ID ===> CRPA
EDF Terminal ID ===> ____
+ Program Name ===> ________

Current Status:

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF2=Delete PF3=Exit PF8=Forward PF9=Messages PF12=Return

CRPC CICS ONC RPC for MVS/ESA Remote Procedure Registration DFHRP2B

Overtype to Modify. Then press Enter to Validate

+ CICS ONC RPC ATTRIBUTES

Converter Program Name ===> ________
Encode ===> NO Yes | No
Decode ===> YES Yes | No
Getlengths ===> YES Yes | No
Server Input Length ===> _____ 0 - 32767 Bytes
Server Output Length ===> _____ 0 - 32767 Bytes
Server Data Format ===> CONTIGUOUS Contiguous | Overlaid
Register from Data set ===> YES Yes | No

Current Status:

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF2=Delete PF3=Exit PF7=Back PF9=Messages PF12=Return

Figure 84. Panels DFHRP21 and DFHRP2B

You can use these panels to delete a 4-tuple definition from the CICS ONC RPC data set by pressing PF2.
If you want to modify the 4-tuple definition, you should first make modifications to panel DFHRP21, and
then press PF8 to move to panel DFHRP2B. From panel DFHRP2B you can press PF7 if you want to go
back to panel DFHRP21. After you have made your modifications to the panels, you should press Enter to
get all the modifications validated, and then press Enter again to get the definition changed.

Processing the alias list

If you select option 4 on panel DFHRP10, panel DFHRP17 is shown.
This panel gives a list of the aliases that have been started, or scheduled, by the server controller, but
have not yet ended. Each alias has two lines on the panel.
• The first line shows the 4-tuple for the client request.
• The second line shows the CICS task number of the alias that is processing the client request.
If the alias is scheduled, but not yet started, the task number is blank. If the alias has started, a task
number is given and the line is highlighted.

476 CICS TS for z/OS: Configuring CICS

You can enter the following commands against an alias:
P
Purges the alias.
?
Shows panel DFHRP18, which displays details of the alias and the associated client request. (See
Figure 86 on page 477.)
If the alias is scheduled, but not yet started, the task number and start time are blank. If the alias has
started, a task number and start time are given.

CRPC CICS ONC RPC for MVS/ESA DFHRP17

Alias List

Enter 'P' to Purge, or '?' to display details of an alias task

_ Prog( 00000103 ) Vers( 00000114 ) Proc( 00000001 ) Prot( UDP )
Task Number( 00000033 )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
Task Number( ________ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
Task Number( ________ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
Task Number( ________ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
Task Number( ________ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
Task Number( ________ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
Task Number( ________ )
_ Prog( ________ ) Vers( ________ ) Proc( ________ ) Prot( ___ )
Task Number( ________ )
Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF2=Refresh PF3=Exit PF7=Back PF8=Forward PF9=Messages PF12=Return

Figure 85. Panel DFHRP17

CRPC CICS ONC RPC for MVS/ESA DFHRP18

Display Alias Task Details

Program Number( 00000103 ) Version Number( 00000114 )

Procedure Number( 00000001 ) Protocol( UDP )
Task Number( 00000033 ) Client IP Addr( 9.20.2.19 )
CICS Program Name( RPROC103 ) Transid( CRPA )
Port Number( 000007BC ) Socket Descriptor( 00000003 )
Task Start Time( 14:38:19 ) Termid( )

Current Status: Enabled

SYSID= CI41 APPLID= IYK1ZFL1

PF1=Help PF3=Exit PF12=Return

Figure 86. Panel DFHRP18

Chapter 14. Setting up and configuring CICS ONC RPC 477

478 CICS TS for z/OS: Configuring CICS
Chapter 15. Configuring for recovery and restart

Logging and journaling

All CICS system logging and journaling is controlled by the CICS log manager, which uses MVS system
logger log streams to store its output.

About this task

CICS logging and journaling can be divided into four broad types of activity:
System logging
CICS maintains a system log to support transaction backout for recoverable resources. CICS
implements system logging automatically, but you can define the log stream as DUMMY to inhibit
this function. However, if you specify TYPE(DUMMY) for the system log, you are running without
any transaction backout facilities and without any restart capability, and you can start CICS with
START=INITIAL only.
CICS also supports programming interfaces that enable you to write your own data to the system log,
but user-written records should be for recovery purposes only.
See “Defining system log streams” on page 480.
Forward recovery logging
CICS supports forward recovery logs for VSAM data sets.
Forward recovery logging is not automatic—you must specify that you want this facility for your files,
and also define the forward recovery log streams.
See “Defining forward recovery log streams” on page 487.
Autojournaling
CICS supports autojournaling of file control data and terminal control messages. Autojournaling is
generally used for audit trails.
Autojournaling is not automatic—you must specify that you want this facility for your files and terminal
messages, and also define the general log streams to be used.
See the JOURNAL attribute described in FILE attributes and PROFILE attributes for information about
specifying automatic journaling on FILE and PROFILE resource definitions.
User journaling
CICS supports programming interfaces to enable CICS applications to write user-defined records to
user journals, which are held on general log streams.
See “Defining CICS general logs” on page 100 for information about defining general log streams for
user journals.
Autojournaling and user journals play no part in CICS recovery and therefore are not discussed here.
The CICS log manager writes the data associated with these logging and journaling activities to two types
of MVS log stream:
System log streams
These are used by the CICS log manager and the CICS recovery manager exclusively for unit of work
recovery purposes. Each system log is unique to a CICS region, and must not be merged with any
other system log.
General log streams
These are used by the CICS log manager for all other types of logging and journaling. You can merge
forward recovery records, autojournal records, and user journal records onto the same general log
stream, from the same, or from different, CICS regions.

© Copyright IBM Corp. 1974, 2022 479

 For information on how CICS handles the different error conditions detected by the CICS log manager, see
Log manager waits.

Defining log streams to MVS

Log streams are MVS resources that reside in the coupling facility (if one is used), and in data sets.

About this task

All log streams required by CICS must be defined to the MVS system logger before CICS can use them.
You can either define log streams explicitly, or you can let CICS create them dynamically when they are
first used. To enable CICS to create log streams dynamically, you first define model log streams to the
MVS system logger. To define explicit log streams and model log streams, use the MVS IXCMIAPU utility.
For information about defining coupling facility log streams and DASD-only log streams, see Coupling
facility log streams. For more information about the coupling facility and defining log structures generally,
see z/OS MVS Setting Up a Sysplex.

Defining replication log streams

You must define replication logs for VSAM data sets that are defined as LOGREPLICATE.

Procedure
1. Define recovery attributes for data sets, including replication, in the integrated catalog facility (ICF).
2. If a replication logstream is not defined, you need to define a general log stream for replication data. If
you do not define a general log stream, CICS attempts to create a log stream dynamically.

Defining system log streams

You must define a system log if you want to preserve data integrity in the event of unit of work failures and
CICS failures .

About this task

A system log is mandatory for the following processes:
• The backout of recoverable resources changed by failed units of work
• Cold starts, to enable CICS to restore units of work that were shunted at the time of the shutdown
• Warm restarts, to enable CICS to restore the region to its state at the previous shutdown, including units
of work that were shunted at the time of the shutdown
• Emergency restarts, to enable CICS to:
– Restore the region to its state at the previous shutdown, including units of work that were shunted at
the time of the shutdown
– Recover units of work that were in-flight at the time of the CICS failure, and perform backout of
recoverable resources that were updated before the failure
CICS log manager connects to its log stream automatically during system initialization, unless it is defined
as TYPE(DUMMY) in a CICS JOURNALMODEL resource definition.
Although the CICS system log is logically a single logical log stream, it is written to two physical log
streams—a primary and a secondary. In general, it is not necessary to distinguish between these, and
most references are to the system log stream. Using a primary and a secondary log stream for its
single system log enables CICS to optimize its use of log stream storage through its process of moving
long-running UOWs from the primary to secondary logstreams.

480 CICS TS for z/OS: Configuring CICS

Specifying a JOURNALMODEL resource definition
During a cold start, and a warm and emergency restart, CICS retrieves the names of its system log
streams from the global catalog, ensuring that it reconnects to the same log streams that were used on
the previous run.
During an initial start, CICS uses default log stream names, unless you specify otherwise on a
JOURNALMODEL resource definition. The process of selecting and connecting to a system log stream
is as follows:
Without a JOURNALMODEL definition
If CICS can't find a JOURNALMODEL resource definition for DFHLOG and DFHSHUNT, it issues calls to
the MVS system logger to connect to its system log streams using default names. These are:

region_userid.applid.DFHLOG
region_userid.applid.DFHSHUNT

where region_userid is the RACF user ID under which the CICS address space is running, and applid
is the region's z/OS Communications Server APPL name (taken from the APPLID system initialization
parameter). The CICS-supplied JOURNALMODEL definitions for default DFHLOG and DFHSHUNT log
streams are in the CSD group DFHLGMOD, which is included in DFHLIST.
If you use these default log stream names, ensure that
• The default log streams are defined explicitly to the MVS system logger, or
• Suitable model log streams are defined for dynamic creation.
With a JOURNALMODEL definition
If CICS finds a JOURNALMODEL definition with JOURNALNAME(DFHLOG) and
JOURNALNAME(DFHSHUNT), it issues calls to the MVS system logger to connect to the system log
streams named in the definitions. Ensure that the system log stream names are unique to the CICS
region.
If you define JOURNALMODEL resource definitions for your system logs, ensure that:
• The log streams named in the JOURNALMODEL are defined to the MVS system logger, or
• Suitable model log streams are defined that enable them to be created dynamically.
If you don't want to use a system log (for example, in a CICS test region), specify JOURNALMODEL
resource definitions for DFHLOG and DFHSHUNT with TYPE(DUMMY). Note that running CICS with the
system log defined as TYPE(DUMMY) forces you to perform an initial start, and CICS does not support
dynamic transaction backout.

Model log streams for CICS system logs

If CICS fails to connect to its system log streams because they have not been defined, CICS attempts to
have them created dynamically using model log streams.
To create a log stream dynamically, CICS must specify to the MVS system logger all the log stream
attributes needed for a new log stream. To determine these otherwise unknown attributes, CICS requests
the MVS system logger to create the log stream using attributes of an existing model log stream definition.
If you decide to allow CICS to create log streams dynamically, you are responsible for creating the
required model log stream definitions to ensure that dynamic creation succeeds.
It is generally worthwhile setting up model log streams only if:
• Each model log stream will be used to create several log streams
• Each log stream created using a model log stream has similar characteristics consistent with the use of
the same coupling facility structure
• You don't know in advance how many CICS regions are going to run in a given MVS image (for example,
in a development and test environment).

Chapter 15. Configuring for recovery and restart 481

 Otherwise, it is probably less work to define the log streams explicitly using IXCMIAPU. Generally,
dynamic creation using model log streams is best suited for test and development purposes, and explicit
definition for production regions.
The model log stream names that CICS uses for dynamic creation of its system log streams are of the
form &sysname.LSN_last_qualifier.MODEL, where:
• &sysname is the MVS symbol that resolves to the system name of the MVS image
• LSN_last_qualifier is the last qualifier of the log stream name as specified on the JOURNALMODEL
resource definition.
If you do not provide a JOURNALMODEL resource definition for DFHLOG and DFHSHUNT, or if you use the
CICS-supplied definitions in group DFHLGMOD, the model names default to &sysname.DFHLOG.MODEL
and &sysname.DFHSHUNT.MODEL.
Example: If a CICS region issues a request to create a log stream for its primary system log, and CICS
is running in an MVS image with a sysid of MV10 and using the default JOURNALMODEL definition, the
system logger expects to find a model log stream named MV10.DFHLOG.MODEL.
CICS invokes the XLGSTRM global user exit immediately before calling the MVS system logger to create a
log stream. If you don't want to use CICS default values for the creation of a log stream, you can write an
XLGSTRM global user exit program to modify the request details, including the model log stream name (in
parameter UEPMLSN).

Recovery considerations
If you are using coupling facility log streams, sharing structures between MVS images provides some
recovery advantages. If an MVS image or logger address space fails, another surviving MVS image using
the same log stream structures (not necessarily the same log streams) is notified of the failure and can
start immediate log stream recovery for the log streams used by the failing MVS. Otherwise, recovery is
delayed until the next time a system connects to a log stream in the affected structures, or until the failed
system logger address space restarts.
However, model log streams defined with the CICS default name are always assigned to the same
structure within an MVS image. Using model log streams defined with the CICS default name may not give
you the best allocation in terms of recovery considerations if you are using structures defined across two
or more coupling facilities.
For example, consider a two-way sysplex that uses two coupling facilities, each with one log structure
defined for use by CICS system logs, structures LOG_DFHLOG_001 and LOG_DFHLOG_002. In this
situation, it is better from a recovery point of view for the CICS regions in each MVS to balance log
stream allocations across both log structures. This scenario is illustrated in Figure 87 on page 483, which
shows a 2-way sysplex comprising MVSA and MVSB, with four CICS regions in each MVS. CICSA1 through
CICSA4 reside in MVSA, and CICSB1 through CICSB4 reside in MVSB. Each MVS is using two coupling
facilities, CF1 and CF2, each of which has one log structure referenced by model log streams. The first
and second CICS regions in each MVS use log streams defined in the first log structure, and the third and
fourth CICS regions in each MVS use log streams defined in the second log structure. In this scenario,
each MVS image has a partner to recover its log streams in the event of an MVS failure.

482 CICS TS for z/OS: Configuring CICS

 2-Way Sysplex

MVSA CF1 MVSB

CICSA1 CICSB1
LOG_DFHLOG_001

CICSA2 CICSB2

CF2

CICSA3 CICSB3
LOG_DFHLOG_002

CICSA4 CICSB4

Figure 87. Sharing system logger structures between 2 MVS images

Another example, shown in Figure 88 on page 483, is based on a 4-way sysplex comprising MVSA,
MVSB, MVSC, and MVSD. In this case, ensure that the CICS regions that normally run on MVSA and
MVSB use structure LOG_DFHLOG_001, and that the regions that run on MVSC and MVSD use structure
LOG_DFHLOG_002. Thus each MVS image has a partner to recover its log streams in the event of an MVS
failure. If a structure fails, the two MVS images using the other structure can take over the workload.

4-Way Sysplex

LOG_DFHLOG_001
MVSA MVSB
(on CF1)

LOG_DFHLOG_002
MVSC MVSD
(on CF2)

Figure 88. Sharing system logger structures between 4 MVS images

Varying the model log stream name

To balance log streams across log structures, using model log streams means customizing the model log
stream names. You cannot achieve the distribution of log streams shown in this scenario using the CICS
default model name.

About this task

You can use an XLGSTRM global user exit program to vary, in a number of ways, the model log stream
name to be passed to the system logger. One such way is to store appropriate values in the exit's global
work area. For example, you can use the INITPARM system initialization parameter to specify a parameter
string for use by the exit. This can be retrieved, using the EXEC CICS ASSIGN INITPARM command,
in the first-phase PLT program that you use to enable the XLGSTRM global user exit program. Having
obtained the relevant model log stream information from the INITPARM command, you can store this in
the global work area for later use by your XLGSTRM global exit program. Varying the model log stream
details in this way enables you to balance log streams across different log structures in a coupling facility.

Chapter 15. Configuring for recovery and restart 483

 See Log manager domain exit XLGSTRM for information about writing an XLGSTRM global user exit
program, and for information about PLT initialization programs.

Activity keypointing
During a restart, the CICS log manager scans the log backwards to recover unit of work information.
The log is scanned backwards as follows:
1. To begin with, CICS reads all records sequentially as far back as the last complete activity keypoint
written before termination. To minimize the time taken for this scan, it is important that you do not
specify an activity keypoint frequency zero. For information about setting a suitable activity keypoint
frequency for your CICS region, see The activity keypoint frequency (AKPFREQ).
2. When CICS reaches the last-written complete activity keypoint, it extracts all the information relating
to in-flight units of work, including indoubt units of work. With this information, CICS continues reading
backwards, but this time reading only the records for units of work that are identified in the activity
keypoint. Reading continues until CICS has read all the records for the units of work identified by the
activity keypoint.
This process means that completed units of work, including shunted backout-failed and commit-failed
units of work, are ignored in this part of the log scan. This is significant for the retrieval of user-written
log records. User-written records cannot be presented at the XRCINPT global user exit program (see
“Writing user-recovery data” on page 486) if they are part of units of work that CICS skips in this part
of the log scan process.
Figure 89 on page 484 illustrates the way CICS performs log processing during a CICS restart.
CICS SYSTEM LOG STREAM

CICS uses AKP data CICS reads back

to skip-read in-flight sequentially to
UOW records only last complete AKP
AKP AKP

n-1 n

Abnormal
termination
of CICS

Figure 89. System log scan during restart

Here are some steps you can take to ensure that system log stream sizes, and thus restart times, are kept
to a minimum:
• Keep to a minimum the amount of data that has to be read. This means specifying an activity keypoint
frequency that is non-zero, and which is:
– Long enough to avoid excessive keypointing
– Short enough to avoid large volumes of data between keypoints.
For information about calculating system log stream structure sizes, see Structure size for system log
usage.
• Except for your own recovery records that you need during emergency restart, do not write your own
data to the system log (for example, audit trail data).
• In particular, do not write information to the system log that needs to be kept. (See “Avoiding retention
periods on the system log” on page 486).

484 CICS TS for z/OS: Configuring CICS

• If you write a long-running transaction that updates recoverable resources, ensure that it takes a
syncpoint at regular intervals.

Keeping system log data to a minimum

CICS log manager controls the size of the system log stream by regularly deleting the oldest completed
unit of work records (log-tail deletion).

About this task

This operation is associated with activity keypoints. It is important, therefore, that you choose the correct
activity keypoint frequency (AKPFREQ) - that is, one that allows CICS to keep the system log down to a
reasonable size and to keep it within the coupling facility (if one is used):
• If a system log stream exceeds the primary storage space allocated, it spills onto auxiliary storage. (For
a definition of primary and auxiliary storage, see Setting up the environment for CICS log manager.) The
resulting I/O can adversely affect system performance.
• If the interval between activity keypoints is long, the volume of data could affect restart times. In
general, an activity keypoint interval should be longer than the elapsed time of most transactions
(excluding those that are in the category of long-running transactions).
Note: Do not specify AKPFREQ=0, because without activity keypoints CICS cannot perform log tail
deletion until shutdown, by which time the system log will have spilled onto auxiliary storage.

Log tail deletion

The log tail is the oldest end of the log and is deleted by the log manager at each activity keypoint.
At each activity keypoint, the CICS recovery manager requests that the log manager deletes the tail of the
system log by establishing a point on the system log before which all older data blocks can be deleted.
Thus, if the oldest "live" unit of work is in data block x, the CICS log manager requests the system logger
to delete all data blocks older than x (x-1 and older).
Long-running units of work that regularly initiate writes to the system log can prevent CICS from deleting
completed units of work stretching back over many activity keypoints. See “Long-running transactions” on
page 487.

Moving units of work to the secondary log

In a system with an activity keypoint frequency configured for optimum effect, all units of work execute
in a short enough time to enable the log-tail deletion process to keep the primary log stream within its
primary storage space allocation.

About this task

However, in most systems, some units of work will last longer. This could be due to application design,
or the unit of work suffering an indoubt failure, a commit-failure or backout-failure. To prevent these few
units of work affecting the whole region, CICS detects that a unit of work has become long-running and
makes copies of its log records on the secondary log stream. This allows more of the primary log stream
to be trimmed and hence increases the probability of keeping the system log within its primary space
allocation. CICS decides that a unit of work is long-running if the UOW does not write to the system log for
two complete activity keypoint intervals.
All log records for units of work are initially written on the primary log stream. From this, they are either
deleted by the log-tail deletion mechanism, or copied to the secondary log stream. The copy is made
during activity keypointing.
After they have been moved to the secondary logstream, the log records for a unit of work remain there
until the unit of work is completed. Note that subsequent writes to the system log by the unit of work are
directed to the primary log.

Chapter 15. Configuring for recovery and restart 485

 Writing user-recovery data
You should write only recovery-related records to the system log stream. You can do this using the
commands provided by the application programming interface (API) or the exit programming interfaces
(XPI). This is important because user recovery records are presented to a global user exit program
enabled at the XRCINPT exit point.

About this task

User-written recovery records are managed in the same way as recovery manager records, and do not
prevent CICS from performing log-tail deletion:
• User-written recovery records written by user transactions are treated as part of the unit of work in
which they are written—that is, they form part of the UOW chain. CICS shunts user-written recovery
records as part of the unit of work, if the unit of work fails for any reason. These are:
– Recovered by in-flight unit of work recovery during an emergency restart
– Recovered by shunted unit of work recovery during both warm and emergency restarts.
• User recovery records written by an XAKUSER global user exit program are written as part of an activity
keypoint.

Retrieving user records from the system log

During warm and emergency restarts, CICS scans the system log backwards. If, during this backwards
scan, CICS finds active user records, they are presented to a global user exit program enabled at the
XRCINPT exit point.

About this task

Active user log records are those that are:
• Written by an XAKUSER global user exit program during the last completed activity keypoint.
• Written by a user transaction through an API command.
These user records, which form part of a unit of work chain, are deemed to be active only if:
– The high-order bit of the JTYPEID field is set to 1.
These records are presented to your XRCINPT global user exit program, regardless of the state of
the unit of work, provided the unit of work lies within the scope of the backward scan of the system
during restart. This category includes units of work that are in a backout-failed or commit-failed state.
– The unit of work in which the command was issued was in-flight or failed indoubt when the previous
run of CICS terminated.
These user records are always presented to your XRCINPT global user exit program, regardless of the
state of the high-order bit in the JTYPEID field.
If CICS completes its scan of the system log and finds there are no active user records, it issues message
DFHER5731.

Avoiding retention periods on the system log

CICS log tail deletion, which ensures that completed log records are retained for two complete activity
key points only, is inhibited if you specify a retention period (RETPD=dddd) when you define the system
log to MVS.

About this task

The dddd value specifies the minimum number of days for which data is to be retained on the log.
You are strongly recommended not to use the system log for records that need to be kept. Any log and
journal data that needs to be preserved should be written to a general log stream. See Setting up CICS log
streams for advice on how to create general log stream data sets.

486 CICS TS for z/OS: Configuring CICS

 Long-running transactions
Do not design long-running transactions in such a way that they write frequently to the system log stream,
in a single unit of work, across multiple activity keypoints.
If a long-running transaction does not take regular syncpoints while regularly initiating writes to the
system log, CICS is prevented from purging units of work that completed after the long-running task
started.
In Figure 90 on page 487, the long-running transaction is updating recoverable resources, causing writes
to the system log. All the updates are in the same unit of work because it does not take explicit
syncpoints. The oldest deletion point is earlier than activity keypoint number 5, preventing CICS from
deleting any completed units of work that lie between activity keypoints 5 and 8. In this example, the
long-running transaction will eventually cause the system log stream to spill onto secondary storage.
System-log-stream
AKP AKP AKP AKP AKP
x x x x x x x x x x
5 6 7 8 9

x x x x x x x x x x

Long running transaction:

Each x represents an update to a recoverable
resource, causing a write to the system log

Figure 90. The effect of a ‘bad’ long-running transaction

Defining forward recovery log streams

You must define forward recovery logs for VSAM data sets that are defined as recoverable files. Neither
CICS nor VSAM provides any support for forward recovery logging for a unrecoverable data set.

Procedure
1. Define recovery attributes for data sets, including forward recovery, in either the integrated catalog
facility (ICF) catalog (if you are using DFSMS 1.3 or later), or in the CICS file resource definition.
See “Defining files as recoverable resources” on page 495 for details.
2. Define a general log stream for forward recovery data.
If you do not define a general log stream, CICS attempts to create a log stream dynamically. See
“Model log streams for CICS general logs” on page 488 for details.
3. Decide how you want to merge forward recovery data from different CICS regions into one or more log
streams.
See “Merging data on shared general log streams” on page 488 for details.

What to do next
In the event of physical failure or corruption, restore the most recent backup, and use a forward recovery
utility such as CICS VSAM Recovery to reapply updates.
To recover from a storage failure, first restore the most recent backup to a new data set. Then use a
forward recovery utility, such as CICS VSAM Recovery (CICS VR), to apply all the updates that were
written to a forward recovery log stream after the backup date.

Chapter 15. Configuring for recovery and restart 487

 Model log streams for CICS general logs
If CICS fails to connect to a general log stream because it has not been defined, CICS attempts to have it
created dynamically.
To create a log stream dynamically, CICS must specify to the MVS system logger all the log stream
attributes needed for the new log stream. To determine these otherwise unknown attributes, CICS
requests the MVS system logger to create the log stream using attributes of an existing model log stream
definition. If you decide to allow CICS to create log streams dynamically, you are responsible for creating
the required model log stream definitions to ensure that dynamic creation succeeds.
It is generally worthwhile setting up model log streams only if:
• Each model log stream will be used to create several log streams
• Each log stream created using a model log stream has similar characteristics consistent with the use of
the same coupling facility structure
• You don't know in advance the journal names that will be used by CICS applications.
Otherwise, it is probably less work to define the log streams explicitly using IXCMIAPU.
The default model log stream names that CICS uses for dynamic creation of a general log stream are of
the form LSN_qualifier1.LSN_qualifier2.MODEL where the first and second qualifiers are the CICS region
userid and the CICS APPLID, respectively.
Example: If a CICS region, running under userid CICSHA## with APPLID=CICSHAA1, issues a request to
create a general log stream that is not defined by a JOURNALMODEL resource definition, CICS specifies
CICSHA##.CICSHAA1.MODEL as the model log stream name.
See “Model log streams for CICS system logs” on page 481 for information about using an XLGSTRM
global user exit program to modify requests to create a log stream.

Merging data on shared general log streams

Unlike system log streams, which are unique to one CICS region, general log streams can be shared
between many CICS regions. This means that you can merge forward recovery data from a number of
CICS regions onto the same forward recovery log stream.

About this task

• You can use the same forward recovery log stream for more than one data set. You do not have to define
a log stream for each forward-recoverable data set.
• You can share a forward recovery log stream between multiple CICS regions. If the regions are
accessing a data set in RLS mode, the use of the same forward recovery log stream is forced.
Your decision on how to define and allocate forward recovery log streams is a trade-off between
transaction performance, fast recovery, and having a large number of log streams to manage.
Some things to consider are:
• You can share a coupling facility log stream across multiple CICS regions that run in the same or in
different MVS images. You can share a DASD-only log stream only across CICS regions that run in the
same MVS image.
• All data sets used by one transaction should use the same log stream (to reduce the number of log
streams written to at syncpoint).
• Share a forward recovery log stream between data sets that:
– Have similar security requirements
– Have similar backup frequency
– Are likely to need restoring in their entirety at the same time.

488 CICS TS for z/OS: Configuring CICS

 • The last qualifier of the stream name is used as the CICS resource name for dispatcher waits. Therefore,
a self-explanatory qualifier can be helpful when you are interpreting monitoring information and CICS
trace entries.
• Don't mix frequently updated data sets with infrequently updated data sets on the same forward
recovery log, because this causes a disproportionate amount of unwanted log data to be read during
recovery of infrequently updated data sets.
• Don't put all frequently updated data sets on a single log stream because you could exceed the
throughput capacity of the log stream.
• If you define too many data sets to a single log stream, you could experience frequent structure-full
events when the log stream can't keep up with data flow.
• Delete redundant data from log streams periodically, to preserve auxiliary storage and so that the
system logger does not exceed its limit of data sets per log stream. (The limit is several million and in
normal circumstances it is not likely to be exceeded.) See Managing auxiliary storage for information
about managing log stream data sets.
• Relate log stream names to the data sets. For example, PAYROLL.data_sets could be mapped to a
forward recovery log named PAYROLL.FWDRECOV.PAYLOG.
• Avoid having too many forward recovery log streams, because of coupling facility log structure limits.

Defining the log of logs

Define a log of logs log stream, and define a JOURNALMODEL resource definition that references that log
stream.

About this task

The CICS-supplied group, DFHLGMOD, includes a JOURNALMODEL for the log of logs, called DFHLGLOG,
which has a log stream name of &USERID..CICSVR.DFHLGLOG. Note that &USERID resolves to the CICS
region userid, and if your CICS regions run under different RACF user IDs, the DFHLGLOG definition
resolves to a unique log of logs log stream name for each region. However, a separate log of logs is
not recommended for recovery products such as CICS VSAM recovery, and you should consider defining
a log stream that is shared between CICS regions within the same CICSplex. For example, you might
define one log stream for all the CICS regions that are members of the same production CICSplex, and
another for test regions, choosing a high-level qualifier that reflects the scope of the log of logs. Using
a CICSplex-wide log stream for the log of logs is particularly important if you are using VSAM RLS and
multiple CICS application-owning regions have direct access to the same data sets.
The log of logs contains records that are written each time a file is opened or closed. At file-open time, a
tie-up record is written that identifies:
• The name of the file
• The name of the underlying VSAM data set
• The name of the forward recovery log stream
• The name of the CICS region that performed the file open.
At file-close time, a tie-up record is written that identifies:
• The name of the file
• The name of the CICS region that performed the file close.
The log of logs assists forward recovery utilities to maintain an index of log data sets.
In addition to forward recovery, the log of logs is also used for recording log stream errors. When a log
stream failure occurs, CICS tries to update the log of logs with the error and diagnostic information,
unless DFHLGLOG is defined as TYPE(DUMMY).

Chapter 15. Configuring for recovery and restart 489

 Log of logs failure
If a log of logs fails, CICS issues a message, but ignores the error.
Further attempts to write to the log of logs are ignored. Forward recovery programs that use the log of
logs for performance optimization must not use the log of logs following a failure. The most likely cause of
a log of logs failure is a definition error, in which case the failure is unlikely to affect production data sets.

Reading log streams offline

Access to MVS system logger log stream data is provided though the subsystem interface (SSI) with the
LOGR subsystem.

About this task

To use the SSI to gain access to the log stream data, specify LOGR on the SUBSYS parameter on the log
stream DD statement. Specifying the LOGR subsystem name on the SUBSYS parameter enables LOGR to
intercept data set open and read requests at the SSI, and convert them into log stream accesses.
Depending on the options specified on the SUBSYS parameter, general log stream records are presented
either:
• In a record format compatible with utility programs written for releases of CICS that use the journal
control program, DFHJUP, for logging and journaling
• In a format compatible with utility programs written for versions of CICS that use the log manager for
logging and journaling.
See Reading log streams using batch jobs (DFHJUP) for more information about using the LOGR SSI to
access log stream data, and for sample JCL.

Effect of daylight saving time changes

Many countries operate a policy of adjusting clocks by one hour at the beginning and end of summer to
effect what is commonly referred to as daylight saving.
These time changes are also applied to the local time held in computers. Generally, most hardware (TOD)
clocks are set to Greenwich Mean Time (GMT), with an offset value to indicate local time. It is this offset
value that is adjusted when making daylight saving time changes, while the hardware clock remains
unaltered.

Adjusting local time automatically

Specify the system initialization parameter AUTORESETTIME=IMMEDIATE to synchronize the CICS time
with the z/OS time immediately whenever you alter the system date or time-of-day in the MVS TOD
clock while a CICS region is running. AUTORESETTIME=IMMEDIATE makes CICS issue a PERFORM RESET
command to synchronize the CICS time-of-day with the system time-of-day if, at the next task attach,
the CICS time-of-day differs from the system time-of-day. The default setting for AUTORESETTIME is
IMMEDIATE. If you specify an alternative setting, ensure that you have a process in place to guarantee
that a manual CEMT PERFORM RESET or EXEC CICS PERFORM RESETTIME command is issued
immediately after altering the MVS TOD clock.

Adjusting local time manually

When setting clocks forward or back an hour to adjust for Summer and Winter time while a CICS region is
running, use the CEMT PERFORM RESET or EXEC CICS PERFORM RESETTIME command to ensure that
CICS immediately resynchronizes its local time with that of the MVS TOD clock.
CICS obtains and stores the local time offset at start up, and when the CEMT PERFORM RESET command
executes. Use the CEMT PERFORM RESET command immediately whenever you change the system date
or time-of-day while CICS is running, to ensure that the correct local time is used by all CICS functions,
including the API. Whenever an application program issues an EXEC CICS ASKTIME command, CICS

490 CICS TS for z/OS: Configuring CICS

 obtains the current time from the MVS TOD clock, and modifies this by the stored local time difference.
CICS then updates the EIBTIME field in the exec interface block with the local time.

Time stamping log and journal records

A local time change, forwards or backwards, has no effect on CICS logging or journaling, or on CICS
restarts, but could affect the operation of utility programs such as DFHJUP.

CICS time-stamps the data it writes to the system log as follows:

• System log block headers are time-stamped with both the machine clock (STCK) value and local time
• System log records are time-stamped with the machine clock (STCK) value only.
For general logs, in addition to time-stamping as in system logs, CICS also includes local time in the
journal records.
During a restart, for system recovery purposes, CICS reads the youngest—most recently written—record
from the primary log stream. Thereafter, CICS uses only direct reads using block ids and does not rely
upon time stamps. CICS also uses direct read with block ids to retrieve the logged data for transaction
backout purposes, again without any dependence on time stamps.
Operating a recovery process that is independent of time-stamps in the system log data ensures that
CICS can restart successfully after an abnormal termination, even if the failure occurs shortly after local
time has been put back.

Offline utility program, DFHJUP

Changing the local time forward has no effect on the processing of system log streams or general log
streams by the CICS utility program, DFHJUP.
Changing local time backwards will not affect the operation of DFHJUP provided you specify the GMT
option on the SUBSYS parameter of the log stream DD statement in the DFHJUP JCL.
However, if you use local time on the SUBSYS parameter to specify the partitioning of a log stream for
processing by DFHJUP, you must take steps to ensure the chronological sequence of timestamps when
adjusting clocks backwards. You can do this by stopping CICS regions until the new local time passes the
old time at which the change was made.
User- or vendor-written journal utilities and DFHJUP exit programs may also be sensitive to local time
changes. These should be checked to ensure that there are no problems posed by backwards time
changes.
Forward recovery utilities (but not CICS VSAM Recovery for z/OS 2.3) might also be sensitive to the time
sequence of forward recovery log data. If you are not using CICS VSAM Recovery, check that your forward
recovery utility can handle discontinuities in logged records.
The only circumstances in which forward recovery is jeopardized, while using CICS VSAM Recovery, are
when you:
• Take a backup during the hour following the (local) time change (for example, at 01.30 after setting the
time back from 02.00 to 01.00)
• Perform forward recovery using that backup with log records that span the time change
• Specify local time instead of GMT.
If you use a backup taken earlier than the new local time, or if you specify GMT, CICS VSAM Recovery
handles forward recovery successfully.

Configuring for recovery of CICS-managed resources

This section describes what to do to ensure that you can recover the resources controlled by CICS on
behalf of your application programs.

Chapter 15. Configuring for recovery and restart 491

Recovering resources in the Liberty JVM server
You can use the Java Transaction API (JTA) to coordinate transactional updates. CICS recoverability
options are limited for local and remote transactions.
JTA can be used in a Java Web application to coordinate transactional updates to CICS resources and
other third party XA resource managers. See Java Transaction API (JTA).
In this scenario, the Liberty transaction manager is the transaction coordinator and stores its recovery
information in the JTA transaction log on the zFS filing system. When an emergency restart occurs, the
JVM server is automatically reinstalled, and the Liberty transaction manager will initiate XA transaction
recovery as soon as the JVM server initialization is complete. This process ensures that any indoubt
units-of-work in CICS, and transactions in third party resource managers, are recovered.
The integrity of both the CICS system log and the Liberty transaction log is critical in enabling CICS to
perform successful recovery if the Liberty JVM server fails while recoverable updates are still in-flight. For
details about how to configure a Liberty JVM server, and how to control the location of the zFS directory
used to store the Liberty transactional log, see Manually tailoring server.xml. For information about setting
up the CICS system log, see CICS system log.

Recovery for transactions

CICS recoverability options are limited for local and remote transactions.
The following options apply for local transactions:
• Automatic restart when a transaction abends
• Timeout when a transaction has been waiting for resources for longer than a specified time interval,
usually because the transaction is deadlocked with another transaction for the same resources
• Allowing you to purge transactions that "hang" for reasons that cannot otherwise be resolved
For remote transactions, in addition to the options for local transactions, CICS provides indoubt options to
specify the recovery action in the event of indoubt failures.

Transaction recovery options

When defining user transactions that update local resources, you can specify the following options on the
TRANSACTION resource definition for recovery purposes:
RESTART({NO|YES})
This option defines whether, in some circumstances, the transaction is eligible to be restarted
automatically by CICS under the control of the DFHREST user replaceable module.
The default is RESTART(NO).
DTIMOUT({NO|1–6800})
If the task remains suspended for the specified interval, the request is timed out. If a CICS WEB
API command is used, a TIMEDOUT response is returned to the application. In other situations, CICS
initiates an abnormal termination of the task if SPURGE(YES) is specified.
The value is specified in the form mmss where mm represents the number of minutes and ss
represents the number of seconds. For example, a value of 3420 means 34 minutes and 20 seconds.
The maximum is 6800, that is 68 minutes.
The default is DTIMOUT(NO).
SPURGE({YES|NO})
This option indicates whether the transaction is initially system-purgeable; that is, whether CICS can
purge the transaction as a result of the following:
• Expiry of a deadlock timeout (DTIMOUT) delay interval
• A CEMT, or EXEC CICS, SET TASK(id) PURGE command
The default is SPURGE(YES).

492 CICS TS for z/OS: Configuring CICS

 TPURGE({YES|NO})
This option indicates whether the transaction is system-purgeable in the event of a (non- z/OS
Communications Server) terminal error.
The default is TPURGE(YES).

Indoubt options for distributed transactions

When you define user transactions that update remote resources, you can specify the following options
for remote recovery purposes:
ACTION({BACKOUT|COMMIT})
Specifies the action to be taken when a failure occurs during two-phase commit processing, after the
unit of work has entered the indoubt period.
If you specified WAIT(YES), the action is not taken unless the interval specified on WAITTIME expires
before recovery occurs.
Whether you specify BACKOUT or COMMIT is likely to depend on the kinds of changes made to
resources in the remote system.
WAIT({YES|NO})
Specifies whether a failed indoubt unit of work is to wait, pending recovery from the failure, to resolve
its indoubt state, or whether CICS is to take immediately the action specified by the ACTION option.
Note: A WAIT(YES) option can be overridden by WAIT(NO) defined on an intrapartition transient data
queue. If a TD queue that is access by a transaction specifies WAIT(NO), and the transaction specifies
WAIT(YES), the TD queue definition forces the transaction to either backout or commit, as specified
by the ACTION attribute on the transaction resource definition.
WAITTIME({00,00,00|dd,hh,mm})
Specifies, if WAIT(YES), how long the transaction is to wait before taking the action specified by
ACTION.
You can use WAIT and WAITTIME to allow an opportunity for normal recovery and resynchronization
to take place, while ensuring that a transaction commits or backs out within a reasonable time. For
information about defining wait times for distributed transactions, see The indoubt attributes of the
transaction definition in Troubleshooting.

Learn more
For more information about recovery of distributed units of work, see Troubleshooting intersystem
problems.
For more information about options on the TRANSACTION definition, see TRANSACTION attributes.

Recovery for files

A CICS file is a logical view of a physical data set, defined to CICS in a file resource definition with an
8-character file name.
A CICS file is associated with a VSAM or BDAM data set by one of the following:
• By dynamic allocation, where the data set name is predefined on the DSNAME parameter in the file
definition (or set by a CEMT, or EXEC CICS, SET FILE DSNAME(name) command)
• By allocation by JES at job step initiation, where the data set name is defined on a DD statement
More than one file can refer to the same data set.
A data set is defined to be the physical object residing on DASD. It has a 44-character DSNAME. A VSAM
data set, for example, is defined using VSAM access method services (AMS).
When designing your applications, ensure that application data is protected from transaction failures that
could lead to data corruption, and that you can recover from accidental damage to storage devices.

Chapter 15. Configuring for recovery and restart 493

 When deciding on the access method, consider the recovery and restart facilities provided by each. These
considerations are discussed in the following topics.

Recovery for VSAM files

CICS file control supports three VSAM access modes: local shared resources (LSR), non-shared resources
(NSR), and record-level sharing (RLS).

Sharing data sets with batch jobs

Sharing data sets directly between online CICS update transactions and batch update programs using
VSAM share options (where available) or job control sharing is not recommended for non-RLS access
modes. Sharing risks the integrity of the data with the result that application programs may appear to
function correctly, but with incorrect data. Such loss of data integrity can occur, for example, if a CICS
unit of work updates a record that is later updated by a non-CICS job while the CICS unit of work is still
running. If the CICS unit of work abends, CICS backs out the record to the value it had at the start of the
CICS unit of work, thus destroying the update from the non-CICS job.

File-owning regions and RLS access

To share data sets between more than one CICS region, use the RLS access mode or use a file-owning
region (FOR) with function shipping from the application-owning regions (AORs). From a recovery point of
view, RLS does not create distributed units of work, as happens between the AOR and FOR, because files
accessed in RLS mode are all regarded as local to each CICS region. The SMSVSAM server takes the place
of the FOR. However, there are special recovery considerations for data sets accessed in RLS mode, with
the role of SMSVSAM and its lock management.

Forward recovery
For VSAM files, you can use a forward recovery utility, such as CICS VSAM Recovery for z/OS, when online
backout processing fails as a result of some physical damage to the data set. For forward recovery:
• Create backup copies of data sets.
• Record after-images of file changes in a forward recovery stream. CICS does this for you automatically if
you specify that you want forward recovery support for the file.
• Write a job to run a forward recovery utility, and keep control of backup data sets and log streams that
might be needed as input. CICS VSAM Recovery for z/OS automatically constructs the forward recovery
job for you, using an ISPF dialog interface.

Backward recovery
To ensure that VSAM files can be backward recoverable, you must consider the following points:
• Key-sequenced data sets (KSDS) and both fixed- and variable-length relative record data sets (RRDS):
– If the files referring to KSDS or RRDS data sets are designated as recoverable with LOG(ALL)
specified, CICS can back out any updates, additions, and deletions made by an interrupted unit
of work.
– For information about backout failures, see Backout-failed recovery.
• Entry-sequenced data sets (VSAM-ESDS):
– New records are added to the end of a VSAM-ESDS. After they are added, records cannot be
physically deleted. A logical deletion can be made only by modifying data in the record; for example,
by flagging the record with a "logically deleted" flag, using an XFCLDEL global user exit program.
See Transaction backout for more information.

494 CICS TS for z/OS: Configuring CICS

Replication logging
VSAM files can take part in replication if the data set is defined with LOGREPLICATE. Defining
LOGREPLICATE allows a replication facility to reproduce file updates on a second site.
When you implement replication logging with VSAM files, you can use system transaction CFCT and its
associated program DFHFCLJ1 to provide tie-up records for VSAM files to a replication log at specified
intervals.
To enable CFCT, specify the INITPARM system initialization parameter in the format
INITPARM=(DFHFCLJ1='nn') where nn is a two-digit number in the range 01 - 60 defining an interval
in minutes. If you specify an interval value outside the range, message DFHFC6045 is issued and the
default value of 30 minutes is used instead.
After the system is started with INITPARM=(DFHFCLJ1='nn'), when CICS detects that a VSAM file
that is defined with the LOGREPLICATE attribute has been opened, DFHFCLJ1 invokes DFHFCLJ, the file
control logging and journaling program, at specified intervals. For more information, see DFHFCLJ1 (file
control tie-up record replicator).

Basic direct access method (BDAM)

CICS does not support forward recovery for BDAM files. You can implement your own forward recovery
support using automatic journaling options.
Backout for BDAM data sets is the same as for ESDS data sets in that you cannot delete records from the
data set.

Defining files as recoverable resources

This section describes how to define the recovery attributes for files managed by CICS file control.

About this task

You specify recovery options, including forward recovery, either in the integrated catalog facility (ICF)
catalog (if you are using DFSMS 1.3 or later), or in the CICS file resource definition, as follows:
• If your VSAM data sets are accessed by CICS in RLS mode, the recovery attributes must be defined in
the ICF catalog.
• If your VSAM data sets are accessed by CICS in non-RLS mode, you can define recovery attributes in
either the FILE resource or the ICF catalog. If you use the ICF catalog to define attributes for data sets
accessed in non-RLS mode, CICS uses the ICF catalog entry recovery attributes instead of the FILE
resource. To force CICS to use the FILE resource attributes instead of the catalog, set the NONRLSRECOV
system initialization parameter to FILEDEF.
• You define the recovery attributes for BDAM files in file entries in the file control table (FCT).

VSAM files accessed in non-RLS mode

You can specify support for both forward and backward recovery for VSAM files using the RECOVERY
and FWDRECOVLOG options. You define the type of data set backup you want using the BACKUPTYPE
parameter.
RECOVERY(ALL)
If you specify RECOVERY(ALL), CICS provides both forward and backout recovery for the file. Using the
services of the CICS recovery manager and log manager, CICS file control writes:
• Before-images of updated records to the system log stream. These are used to back out file changes
following a transaction abend or during an emergency restart after a CICS abnormal termination.
• After-images to the general log stream referenced by the FWDRECOVLOG option. The after-images
comprise the following:
– A write_add_complete record when a new record is added

Chapter 15. Configuring for recovery and restart 495

 – A write_delete record when a record is deleted
– A write_update record when a record is updated
File control also writes the following to the forward recovery log:
– FILE_OPEN tie-up records
– FILE_CLOSE tie-up records
– TAKE_KEYPOINT tie-up records
– Data set BACKUP tie-up records
CICS forward recovery support is totally independent of automatic journaling. However, autojournal
records, which are controlled by the JOURNAL and associated JNLxxx options on the file resource
definition, can be written to the same general log stream as forward recovery data. To do this, specify
on the JOURNAL option a journal identifier that maps to the same forward recovery log stream. See
“Setting up CICS log streams” on page 98 for information about mapping CICS journal identifiers to
log streams through journal model resource definitions.
Note: The use of autojournal records for forward recovery purposes is not recommended for VSAM
files.
RECOVERY(BACKOUTONLY)
If you specify RECOVERY(BACKOUTONLY), CICS provides backout recovery only, writing only before-
images to the system log.
BACKUPTYPE(DYNAMIC)
If you specify BACKUPTYPE(DYNAMIC), CICS supports the DFSMS backup-while-open (BWO) facility,
enabling the data set to be backed up while open. If you specify STATIC, all CICS files open against
a data set must be closed before it can be backed up. For information about the backup-while-open
(BWO) facility, see Back-up-while-open (BWO).

VSAM files accessed in RLS mode

If you specify file definitions that open a data set in RLS mode, specify the recovery options in the ICF
catalog.
The recovery options on the CICS file resource definitions (RECOVERY, FWDRECOVLOG, and
BACKUPTYPE) are ignored if the file definition specifies RLS access.
The VSAM parameters LOG and LOGSTREAMID, on the access methods services DEFINE CLUSTER and
ALTER commands, determine recoverability for the entire sphere. Locating these recovery parameters in
the ICF catalog enforces the same options, for all CICS regions in the sysplex, for all the files opened
against a given sphere.
LOG({NONE|UNDO|ALL})
Specifies the type of recovery required for the VSAM sphere. Specify the LOG parameter for data sets
that are to be used by CICS in RLS mode.
NONE
The sphere is not recoverable.
UNDO
The sphere is recoverable. CICS must maintain system log records for backout purposes.
ALL
The sphere is recoverable for both backout and forward recovery. CICS must maintain system log
records (as for UNDO) and forward recovery log records. If you specify LOG(ALL), also specify
LOGSTREAMID to indicate the name of the forward recovery log.
Note: Forward recovery support is available for recoverable files only—you cannot have forward
recovery without backout recovery.
LOGSTREAMID(log_stream_name)
Specifies the name of the log stream to be used for forward recovery log records when LOG(ALL) is
defined. Note that IDCAMS does not check for the presence of the LOGSTREAMID during DEFINE

496 CICS TS for z/OS: Configuring CICS

 processing. CICS checks for a log stream name when attempting to open a data set defined with
LOG(ALL), and the open fails if the log stream is not defined and cannot be created dynamically.
If you omit the LOG parameter when defining your VSAM data sets, recovery is assumed to be
UNDEFINED, and the data set cannot be opened in RLS mode. You can also set the UNDEFINED status
explicitly by specifying NULLIFY(LOG).
For information about the access methods services DEFINE and ALTER commands, see z/OS DFSMS
Access Method Services Commands and z/OS DFSMS Using Data Sets.

Inquiring on recovery attributes

You can use CEMT, or EXEC CICS, INQUIRE FILE and INQUIRE DSNAME commands to determine the
recovery options that are specified for files and data sets.
The INQUIRE FILE command shows the options from the CICS file definition until the first file for the
data set is opened. If the options are obtained from the ICF catalog when the first file is opened, the ICF
catalog values are returned. The INQUIRE DSNAME command returns values from the VSAM base cluster
block (BCB). However, because base cluster block (BCB) recovery values are not set until the first open,
if you issue an INQUIRE DSNAME command before the first file is opened, CICS returns NOTAPPLIC for
RECOVSTATUS.

BDAM files
You can specify CICS support for backward recovery for BDAM files using the LOG parameter on the
DFHFCT TYPE=FILE macro. You can also specify that you want automatic journaling of the various types
of file access, using the JREQ and JID parameters of the FCT macro.
LOG=YES
If you specify LOG=YES, CICS provides backout recovery for the file. Using the services of the CICS
recovery manager and log manager, CICS file control writes before-images of updated records to the
system log stream.
JREQ=request-type(s) and JID=nn
Specify the file requests that you want CICS to journal automatically to the log stream mapped by the
journal identifier specified on the JID parameter.
Although CICS does not provide forward recovery support for BDAM files, you can use the autojournal
records to provide your own facility. JREQ=(WU,WN) is the equivalent of the CSD file definition
parameters JNLUPDATE(YES) combined with JNLADD(BEFORE), providing the necessary images for
forward recovery to a journal specified by JID=nn.
For information about defining BDAM file resource definitions, see FILE resources.

The CICS system definition data set (CSD)

The CICS system definition data set (CSD) is unique in that it is a CICS system VSAM data set that is
managed by CICS file control. For this reason, the CSD can't be defined in the CSD, and is defined instead
by system initialization parameters.
The recovery options equivalent to RECOVERY, FWDRECOVLOG, and BACKUPTYPE are CSDRECOV,
CSDFRLOG, and CSDBKUP respectively. See Chapter 4, “Setting up shared data sets, CSD and SYSIN,”
on page 65 for information about defining the CSD.

File recovery attribute consistency checking (non-RLS)

For data sets accessed in non-RLS mode, ensure you have consistent recovery attributes between files
that refer to the same base data set cluster or its paths.

The first file open for the base data set determines the base data set recovery attributes, and these
are stored in the base cluster block (BCB). If, on a subsequent file open request, CICS detects an
inconsistency between the file definition recovery attributes and those stored in the BCB, the open
request fails.
See “Inquiring on recovery attributes” on page 497 for information about finding the recovery attributes
for files and data sets.

Chapter 15. Configuring for recovery and restart 497

 Overriding open failures at the XFCNREC global user exit
CICS provides a global user exit point, XFCNREC, to enable you to continue processing regardless of any
inconsistencies in the backout setting for files associated with the same data set.

About this task

If you use XFCNREC to suppress open failures that are a result of inconsistencies in the backout settings,
CICS issues a message to warn you that the integrity of the data set can no longer be guaranteed.
Any INQUIRE DSNAME RECOVSTATUS command that is issued from this point onward will return
NOTRECOVABLE, regardless of the recovery attribute that CICS has previously enforced on the base
cluster. This condition remains until you remove the data set base control block (with a SET DSNAME
REMOVE command), or perform a cold start.
The order in which files are opened for the same base data set determines the content of the
message received on suppression of an open failure using XFCNREC. If the base cluster block is set
as unrecoverable and a mismatch has been allowed, access to the data set could be allowed through an
unrecoverable file before the data set is fully recovered.
See The sample NEP for programming information about XFCNREC.

CICS responses to file open requests

CICS file control uses the backout setting from the file definition to decide whether to log before-images
for a file request.

CICS takes the actions shown in the following list when opening a file for update processing in non-
RLS mode—that is, the file definition specifies RLSACCESS(NO), and the operations parameters specify
ADD(YES), DELETE(YES) or UPDATE(YES). If you set only READ(YES), BROWSE(YES) or both CICS does
not make these consistency checks. These checks are not made at resource definition or install time.
• If a file definition refers to an alternate index path and RECOVERY is ALL or BACKOUTONLY, the
alternate index must be in the upgrade set for the base. This means that any changes made to the base
data set are also reflected in the alternate index. If the alternate index is not in the upgrade set, the
attempt to open the ACB for this alternate index path fails.
• If a file is the first to be opened against a base cluster after the last cold start, the recovery options of
the file definition are copied into the base cluster block.
• If a file is not the first to be opened for update against a base cluster after the last cold start, the
recovery options in the file definition are checked against those copied into the base cluster block by the
first open. There are the following possibilities:
– Base cluster has RECOVERY(NONE):
- File is defined with RECOVERY(NONE): the open proceeds.
- File is defined with RECOVERY(BACKOUTONLY): the attempt to open the file fails, unless overridden
by an XFCNREC global user exit program, which can allow inconsistencies in backout settings for
files that are associated with the same base data set.
- File is defined with RECOVERY(ALL): the open fails.
– Base cluster has RECOVERY(BACKOUTONLY):
- File is defined with RECOVERY(NONE): the attempt to open the file fails unless overridden by an
XFCNREC global user exit program to allow inconsistencies in backout settings for files associated
with the same base data set.
- File is defined with RECOVERY(BACKOUTONLY): the open proceeds.
- File is defined with RECOVERY(ALL): the open fails.
– Base cluster has RECOVERY(ALL):
- File is defined with RECOVERY(NONE): the open fails.
- File is defined with RECOVERY(BACKOUTONLY): the open fails.

498 CICS TS for z/OS: Configuring CICS

 - File is defined with RECOVERY(ALL): the open proceeds unless FWDRECOVLOG specifies a different
journal id from the base cluster, in which case the open fails.
Any failure to open a file against a data set results in a message to the console. If necessary, the recovery
options must be changed. To change the recovery attributes (held in the base cluster block) of a VSAM
data set, you can use the CEMT, or EXEC CICS, SET DSNAME REMOVE command. This deletes the base
cluster block, so CICS has no record of prior recovery settings for the VSAM data set. The next file to open
against this data set causes a new base cluster block to be built and, if the file is opened for update, the
data set takes on the recovery attributes of this file.
The base cluster block, together with its recovery attributes, and the inconsistency condition that may be
set if you are using XFCNREC, are preserved even when all the files relating to the block are closed, and
across warm and emergency restarts.

Implementing forward recovery with user-written utilities

If you use your own forward recovery programs, you must ensure they use the after images from the
forward recovery log streams. The use of autojournal records written to a general log stream is not
recommended for VSAM forward recovery.
For details of procedures for performing forward recovery, see Forward recovery procedures.

Implementing forward recovery with CICS VSAM Recovery

You can use CICS VSAM Recovery for z/OS to recover lost or damaged VSAM data sets.
For details, see CICS VSAM Recovery for z/OS.

Recovery for intrapartition transient data

This section deals with both backward and forward recovery of intrapartition transient data.

Backward recovery
CICS can recover only intrapartition transient data. The intrapartition data set is a VSAM ESDS data set,
with a file name of DFHINTRA.
For more information about allocation and space requirements, see “Defining the intrapartition data set”
on page 95.) For extrapartition transient data considerations, see “Recovery for extrapartition transient
data” on page 501.
You must specify the name of every intrapartition transient data queue that you want to be recoverable
in the queue definition. The recovery attributes you can specify for an intrapartition transient data queue
are:
• Logical
• Physical
• None

Logical recovery
If you request logical recovery on an intrapartition queue definition, changes to a transient data queue by
an interrupted unit of work are backed out. Backout occurs dynamically in the case of a task abend, or at a
CICS emergency restart in the case of a CICS failure.

As a general rule, you should request logical recoverability. For example, if you make related changes to
a set of resources that includes intrapartition transient data, and you want to commit (or back out) all the
changes, you require logical recovery.

Chapter 15. Configuring for recovery and restart 499

 Physical recovery
Physical recoverability is unique to transient data and is effective on both warm and emergency restarts.
By requesting physical recovery on an intrapartition queue definition, you ensure that changes to the
queue are committed immediately and, with one exception, are not backed out.
The exception is in the case of the last read from a physically recoverable queue before a unit of work
fails. CICS always backs out the last read from a physically recoverable transient data queue. In terms of
the read and write pointers that CICS maintains for TD queues, this means that the read pointer is reset,
but the write pointer never changes. This is illustrated by the diagram in Figure 91 on page 500. The
sequence of TD actions in this example, and the subsequent recovery, is as follows:
• The unit of work has read items 1 and 2, leaving the read pointer at item 3.
• The unit of work has written item 4, leaving the write pointer ready for the next item to be written.
• CICS abends and is restarted with an emergency restart.
• As a result of the transient data recovery, the read pointer is reset to item 2, queue items 2, 3, and 4 are
still available, and the write pointer is restored.

Physically recoverable TD queue (before failure)

CICS abends, causing
Item 1 Item 2 Item 3 Item 4
UOW to fail in-flight

Next READ Next WRITE

pointer pointer

State of physically recoverable TD queue (after emergency restart)

CICS abends, causing
Item 1 Item 2 Item 3 Item 4
UOW to fail in-flight

Next READ Next WRITE

pointer pointer

Figure 91. Illustration of recovery of a physically recoverable TD queue

Making intrapartition TD physically recoverable can be useful in the case of some CICS queues. For
example, after a CICS failure, you might choose to restart CICS as quickly as possible, and then look for
the cause of the failure. By specifying queues such as CSMT as intrapartition and physically recoverable,
the messages produced just before the failure can be recovered and are therefore available to help you
diagnose the problem.

No recovery
Recovery is not performed if you specify NO on the recovery attribute of an intrapartition transient data
definition.

Forward recovery
CICS does not provide forward recovery support for transient data.
If you want forward recovery of intrapartition transient data, provide application programs to record the
changes made to the contents of your intrapartition transient data queues while CICS is running. Changes
are recorded in a user journal. The information journaled must include:
• Each WRITEQ, including the data that is written
• Each READQ
• Each DELETEQ of a queue
• For logically recoverable queues, each backout, syncpoint, or syncpoint rollback

500 CICS TS for z/OS: Configuring CICS

 You must provide the application program to rebuild the data by reading the journaled information and
applying that information to the transient data queue. Your application program could run in the program
list table (PLT) phase or after emergency restart. Until the data set is fully recovered, do not write to the
queue, because that would probably result in wrongly-ordered data, and a read might not provide valid
data (or any data at all). For these reasons, running the recovery program in the PLT phase is probably
preferable to running it after the restart.
If you do not have such a recovery strategy and you perform a cold start with a corrupted intrapartition
data set, you will lose the contents of the intrapartition data set. You also lose the contents of the
intrapartition data set if you specify TDINTRA=EMPTY as a system initialization parameter.

Recovery for extrapartition transient data

CICS does not recover extrapartition data sets. If you depend on extrapartition data, you will need to
develop procedures to recover data for continued execution on restart following either a controlled or an
uncontrolled shutdown of CICS.
Using post-initialization (PLTPI) programs for recovery:
You can use initialization (PLTPI) programs as part of the processing required to recover extrapartition
transient data or to enable exits required during recovery.
There are two PLT phases. The first phase occurs before the system initialization task is attached,
and must not use CICS resources, because initialization is incomplete. The first phase is intended
solely to enable exits that are needed during recovery processing. The second phase occurs after CICS
initialization is complete and, at this point, you may use PLT programs to customize the environment.
For information on how to code the PLT, see Program list table (PLT). For programming information about
the special conditions that apply to PLT programs, see Writing initialization and shutdown programs .
There are two areas to consider in recovering extrapartition data sets:
• Input extrapartition data sets
• Output extrapartition data sets

Recovery for input extrapartition data sets

The main information required on restart is the number of records processed up to the time the system
ended. This can be recorded during processing, using CICS journaling, as described in the following
paragraphs.
Each application program that reads records from extrapartition input queues should first enqueue
exclusive access to those queues. This prevents interleaved access to the same queues by other
concurrently executing tasks.
The application programs then issue READQ TD commands to read and process extrapartition input
records. In this way, they accumulate the total of input records read and processed during execution
for each queue. The total number of READQ operations is written to a journal data set, together with
the relevant destination identifications. This journaling should be done immediately before RETURN or
SYNCPOINT commands.
Following output of the journal record, each application program dequeues itself from the extrapartition
input queues to permit other application programs to access those queues.
If uncontrolled shutdown occurs before this journaling, no records will appear on the journal data set for
that unit of work. The effect of that in-flight task is, therefore, automatically backed out on emergency
restart. However, if the journal record is written before uncontrolled shutdown, this completed input data
set processing will be recognized on emergency restart.
On emergency restart following uncontrolled shutdown or on a warm start following a controlled
shutdown, use the following procedure, which will reposition the extrapartition input data sets to reflect
the input and processing of their records during previous CICS operation.

Chapter 15. Configuring for recovery and restart 501

 You can identify an extrapartition input recovery program in the PLT for execution during the initialization
phase. This program reads the journal data set forward. Each journaled record indicates the number
of READQ operations performed on the relevant extrapartition input data set during previous execution
of application programs. The same number of READQ TD commands is issued again by the recovery
program, to the same input queue that was referenced previously.
On reaching the end of the journal data set, the extrapartition input data sets are positioned at the same
point they had reached before the initiation of tasks that were in-flight at uncontrolled shutdown. The
result is the logical recovery of these input data sets with in-flight task activity backed out.

Recovery for output extrapartition data sets

The recovery of output extrapartition data sets is somewhat different from the recovery of input data sets.
For a tape output data set, use a new output tape on restart. You can then use the previous output tape if
you need to recover information recorded before termination.
To avoid losing data in tape output buffers on termination, you can write unblocked records. Alternatively,
write the data to an intrapartition disk destination (recovered by CICS on a warm start or emergency
restart) and periodically copy it to the extrapartition tape destination through an automatically initiated
task. On termination, the data is still available to be recopied on restart.
If a controlled shutdown of CICS occurs, the previous output tape closes correctly and writes a tape mark.
However, on an uncontrolled shutdown such as a power failure or machine check, a tape mark is not
written to indicate the end of the tape.
For a line printer output data set, you could just choose to carry on from where printing stopped when the
system stopped. However, if you want to continue output from a defined point such as at the beginning of
a page, you may need to use a journal data set. As each page is completed during normal CICS operation,
write a record to a journal data set.
On restart, the page that was being processed at the time of failure can be identified from the journal data
set, and that page can be reprocessed to reproduce the same output. Alternatively, use an intermediate
intrapartition destination (as previously described) for tape output buffers.

Recovery for temporary storage

This section deals with both backward and forward recovery of temporary storage.

Backward recovery
Temporary storage queues that are to be recoverable by CICS must be on auxiliary temporary storage.
Define temporary storage queues as recoverable using temporary storage model resource definitions as
shown in the following example define statements:

CEDA DEFINE DESCRIPTION(Recoverable TS queues for START requests) TSMODEL(RECOV1)

GROUP(TSRECOV) PREFIX(DF) LOCATION(AUXILIARY) RECOVERY(YES)

CEDA DEFINE DESCRIPTION(Recoverable TS queues for BMS) TSMODEL(RECOV2)

GROUP(TSRECOV) PREFIX(**) LOCATION(AUXILIARY) RECOVERY(YES)

CEDA DEFINE DESCRIPTION(Recoverable TS queues for BMS) TSMODEL(RECOV3)

GROUP(TSRECOV) PREFIX($$) LOCATION(AUXILIARY) RECOVERY(YES)

For BMS, the example shows the required resource definitions for the default temporary storage queue
prefixes. Application programmers can override the default temporary storage queue prefixes for BMS by
specifying the following operands:
• REQID operand in the SEND MAP command
• REQID operand in the SEND TEXT command
• REQID operand in the ROUTE command
• PROTECT operand in the CMSG transaction

502 CICS TS for z/OS: Configuring CICS

 You must define any alternative temporary storage queue prefixes used by application programmers as
recoverable.
For more information on allocation and space requirements, see Setting up temporary storage data sets.

Forward recovery
If you want forward recovery of temporary storage you must provide application programs to record the
changes made to temporary storage during the current CICS run.
1. At emergency restart time, your application program can then delay the emergency restart (by using
PLTPI, for example) and, again using application programs, rebuild as much as possible of the
temporary storage data using the records previously read.
2. Repeat the emergency restart but with the system initialization parameters amended to perform a
cold start for temporary storage (TS=(COLD)). Note, however, that this loses the contents of the entire
temporary storage data set.

Recovery for web services

If your web services use the WebSphere MQ transport and persistent messages, you can use BTS to
ensure that messages are recovered in the event of a CICS system failure.

Configuring CICS to support persistent messages

CICS provides support for sending persistent messages using the IBM MQ transport protocol to a web
service provider application that is deployed in a CICS region.

About this task

CICS uses Business Transaction Services (BTS) to ensure that persistent messages are recovered in the
event of a CICS system failure. For this to work correctly, follow these steps.

Procedure
1. Use IDCAMS to define the local request queue and repository file to MVS.
You must specify a suitable value for STRINGS for the file definition. The default value of 1 is unlikely
to be sufficient, and you are recommended to use 10 instead.
2. Define the local request queue and repository file to CICS.
Details of how to define the local request queue to CICS are described in “Defining local queues in a
service provider” on page 504. You must specify a suitable value for STRINGS in the file definition.
The default value of 1 is unlikely to be sufficient, and it is recommended that you use 10 instead.
3. Define a PROCESSTYPE resource with the name DFHMQSOA, using the repository file name as the
value for the FILE option.
4. Ensure that during the processing of a persistent message, a program issues an EXEC CICS
SYNCPOINT command before the first implicit syncpoint is requested; for example, using an SPI
command such as EXEC CICS CREATE TDQUEUE implicitly takes a syncpoint.
Issuing an EXEC CICS SYNCPOINT command confirms that the persistent message has been
processed successfully. If a program does not explicitly request a syncpoint before trying to implicitly
take a syncpoint, an ASP7 abend is issued.

What to do next
For one way request messages, if the web service abends or backs out, sufficient information is retained
to allow a transaction or program to retry the failing request, or to report the failure appropriately. You
need to provide this recovery transaction or program. See “Persistent message processing” on page 505
for details.

Chapter 15. Configuring for recovery and restart 503

 Defining local queues in a service provider
To use the IBM MQ transport in a service provider, you must define one or more local queues that store
request messages until they are processed, and one trigger process that specifies the CICS transaction
that will process the request messages.

Procedure
1. Define an initiation queue.
Use the following command:

DEFINE
QLOCAL('initiation_queue')
DESCR('description')

where initiation_queue is the same as the value specified for the QNAME attribute of the installed
MQMONITOR resource definition for the CICS region, or the value specified for the INITQNAME
attribute of the installed MQCONN resource definition.
2. For each local request queue, define a QLOCAL object.
Use the following command:

DEFINE
QLOCAL('queuename')
DESCR('description')
PROCESS(processname)
INITQ('initiation_queue')
TRIGGER
TRIGTYPE(FIRST)
TRIGDATA('default_target_service')
BOTHRESH(nnn)
BOQNAME('requeuename')

where:
• queuename is the local queue name.
• processname is the name of the process instance that identifies the application started by the
queue manager when a trigger event occurs. Specify the same name on each QLOCAL object.
• initiation_queue is the name of the initiation queue to be used; for example, the initiation queue
specified in the QNAME attribute of the installed MQMONITOR resource definition for the CICS
region.
• default_target_service is the default target service to be used if a service is not specified on
the request. The target service is of the form '/string' and is used to match the path of a URIMAP
definition; for example, '/SOAP/test/test1'. The first character must be '/' .
• nnn is the number of retries that are attempted.
• requeuename is the name of the queue to which failed messages are sent.
3. Define a PROCESS object that specifies the trigger process.
Use the following command:

DEFINE
PROCESS(processname)
APPLTYPE(CICS)
APPLICID(CPIL)

where:
processname is the name of the process, and must be the same as the name that is used when
defining the request queues.

504 CICS TS for z/OS: Configuring CICS

 Persistent message processing
When a web service request is received in an IBM MQ persistent message, CICS creates a unique BTS
process with the process type DFHMQSOA. Data relating to the inbound request is captured in BTS
data-containers that are associated with the process.
The process is then scheduled to run asynchronously. If the web service completes successfully and
commits, CICS deletes the BTS process. This includes the case when a SOAP fault is generated and
returned to the web service requester.

Error processing
If an error occurs when creating the required BTS process, the web service transaction abends, and the
inbound web service request is not processed. If BTS is not usable, message DFHPI0117 is issued, and
CICS continues without BTS, using the existing channel-based container mechanism.
If a CICS failure occurs before the web service starts or completes processing, BTS recovery ensures that
the process is rescheduled when CICS is restarted.
If the web service ends abnormally and backs out, the BTS process is marked complete with an ABENDED
status. For request messages that require a response, a SOAP fault is returned to the web service
requester. The BTS process is canceled, and CICS retains no information about the failed request. CICS
issues message DFHBA0104 on transient data queue CSBA, and message DFHPI0117 on transient data
queue CPIO.
For one way messages, there is no way to return information about the failure to the requester so the BTS
process is retained in a COMPLETE ABENDED state. CICS issues message DFHBA0104 on transient data
queue CSBA, and DFHPI0116 on transient data queue CPIO.
You can use the CBAM transaction to display any COMPLETE ABENDED processes, or you can supply
a recovery transaction to check for COMPLETE ABENDED processes of the DFHMQSOA and take
appropriate action.
For example, your recovery transaction could:
1. Reset the BTS process using the RESET ACQPROCESS command.
2. Issue the RUN ASYNC command to retry the failing web service. It could keep a retry count in another
data-container on the process, to avoid repeated failure.
3. Use information in the associated data-containers to report on the problem:
The DFHMQORIGINALMSG data-container contains the message received from IBM MQ, which
might contain RFH2 headers.
The DFHMQMSG data-container contains the IBM MQ message with any RFH2 headers removed.
The DFHMQDLQ data-container contains the name of the dead letter queue associated with the
original message.
The DFHMQCONT data-container contains the IBM MQ MQMD control block relating to the MQ GET
for the original message.

Using a program error program (PEP)

The program error program (PEP) gains control after all program-level ABEND exit code has executed and
after dynamic transaction backout has been performed.

About this task

There is only one program error program for the whole region.

Procedure
1. Decide whether you want to use the CICS-supplied program error program, DFHPEP or create your
own.

Chapter 15. Configuring for recovery and restart 505

 The CICS-provided DFHPEP program executes no functions, but you can include in it your own code to
carry out an installation-level action following a transaction abend (see “The CICS-supplied PEP” on
page 506).
2. If you decide to create your own PEP, modify the CICS-supplied version.
The default DFHPEP is in CICSTS61.CICS.SDFHLOAD, and is defined in the CICS DFHMISC group in the
CSD.
Read the guidance provided in Writing a program error program for details on writing a PEP.
3. Update the GRPLIST system initialization parameter to include the DFHLIST group list.
This includes a definition for the DFHMISC group.

The CICS-supplied PEP

The CICS-supplied PEP performs no processing. Its only effect, when CICS links to it, is to avoid the
DFHAC2259 message that would otherwise be issued.
All CICS facilities are available to the DFHPEP program. You can, for example:
• Send messages to the terminal
• Send messages to the main terminal
• Record information or statistics about the abend
• Request the disabling of the transaction entry associated with this task
However, the following processing applies to the DFHPEP program:
1. DFHPEP is not given control when the task abend is part of the processing done by CICS to avoid a
system stall.
2. DFHPEP is not given control if transaction manager detects that the abended transaction is to be
restarted by DFHREST.
3. DFHPEP processing takes place after a transaction dump has been taken. DFHPEP cannot prevent a
dump being taken.
4. DFHPEP is not given control if the transaction failure occurs during syncpoint processing.
5. DFHPEP is not given control when the conditions causing the task to be terminated are handled by
the CICS abnormal condition program (ACP). The conditions handled by ACP are some kind of attach
failure; for instance, when the transaction does not exist, or when a security violation is detected.
6. DFHPEP is not given control when a task has abended and CICS is short on storage.
7. The CICS transaction failure program, DFHTFP, links to DFHPEP before transaction backout is
performed. This means resources used by the abending transaction may not have been released.
DFHPEP needs to be aware of this, and might need logic to handle resources that are still locked.
8. Do not use the restart function for distributed transactions whose principal facilities are APPC links.
In some error situations, CICS cannot resolve the APPC conversation states, and your transaction will
abend with code AZCP.

Your own PEP

During the early phases of operation with CICS, you can put abending transactions into a disabled status
while the cause of the abend is being investigated and corrected.
Where a program has to handle this process, or where associated programs or transactions must also be
disabled, you might decide to incorporate these actions in your own PEP.
The program error program is a command-level program that can be written in any of the languages that
CICS supports. The CICS abnormal condition program passes a communications area (COMMAREA) to the
program error program that contains information about the abend.
Functions you might consider including in a program error program include:

506 CICS TS for z/OS: Configuring CICS

• Disabling a particular transaction identifier (to prevent other users using it) pending diagnostic and
corrective actions. You can avoid manual intervention and the risk of several more abends in quick
succession.
• Disabling other transactions or programs that depend on the satisfactory operation of a particular
program.
• Keeping a count of errors by facility type (transaction or file).
• Abending CICS after a transaction abend. Conditions for this might be:
– If the abended transaction was working with a critical file
– If the abended transaction was critical to system operation
– If the abend was such that continued use of the application would be pointless, or could endanger
data integrity
– If the error count for a particular facility type (transaction or file) reached a predetermined level.
• Disabling the facility, which keeps the system running longer than if you cause CICS to abend.
If a task terminates abnormally, code in a program-level exit or the PEP can flag the appropriate
transaction code entry in the installed transaction definition as disabled. CICS rejects any further attempt
by terminals or programs to use that transaction code until it is enabled again. Consequently, the effect
of program checks can be minimized, so that every use of the offending transaction code does not result
in a program check. Only the first program check is processed. If the PEP indicates that the installed
transaction definition is to be disabled, CICS does not accept subsequent uses of that transaction code.
When you have corrected the error, you can re-enable the relevant installed transaction definition to allow
terminals to use it. You can also disable transaction identifiers when transactions are not to be accepted
for application-dependent reasons, and can enable them again later.
If logic within DFHPEP determines that it is unsafe to continue CICS execution, you can force a CICS
abend by issuing an operating system ABEND macro. If DFHPEP abends (transaction abend), CICS
produces message DFHAC2263.

Omitting the PEP

The CICS-supplied PEP is provided in the CICSTS61.CICS.SDFHLOAD library. The CICS abnormal
condition program, however, will link to it only if a program resource definition for DFHPEP is installed. If
CICS cannot link to DFHPEP (for this or any other reason), it sends a DFHAC2259 message to CSMT.

Chapter 15. Configuring for recovery and restart 507

508 CICS TS for z/OS: Configuring CICS
Chapter 16. Checking CICS configuration with IBM
Health Checker for z/OS
IBM Health Checker for z/OS is a z/OS component that helps simplify and automate the identification
of potential configuration problems before they impact availability or cause outages. CICS TS supports
health checker checks that define best practices for CICS system configuration.
For more information about IBM Health Checker for z/OS, see IBM Health Checker for z/OS User's Guide.
For more information about the checks that are supported by the IBM Health Checker for z/OS, see IBM
Health Checker for z/OS for CICS security.

© Copyright IBM Corp. 1974, 2022 509

510 CICS TS for z/OS: Configuring CICS
Chapter 17. Migrating CICS to a Parallel Sysplex
Migrating CICS systems and applications from a non-sysplex z/OS environment to a sysplex that uses the
coupling facility (a Parallel Sysplex)

Sysplex and Parallel Sysplex

A sysplex is a set of z/OS systems that communicate with each other through certain multisystem
hardware components and software services. A sysplex allows resource sharing between communicating
systems (tape, consoles, catalogs, and other resources). The sysplex increases the number of processing
units and z/OS operating systems that can cooperate, which increases the amount of work that can be
processed.
A Parallel Sysplex is a sysplex that uses one or more coupling facilities (CFs). A coupling facility is a
special logical partition that provides high-speed caching, list processing, and locking functions in a
sysplex. A Parallel Sysplex allows data sharing such that any system in the sysplex can be capable of
running the workload.
Note: From here on, this documentation does not differentiate between a sysplex without a coupling
facility and a sysplex with a coupling facility. It assumes that you have a coupling facility and are migrating
to a Parallel Sysplex. When you see the term sysplex, understand it to mean a Parallel Sysplex.

Benefits of implementing CICS in a Parallel Sysplex

Information about the benefits to be gained from implementing CICS in a Parallel Sysplex.
Enterprises have traditionally run multiple CICS regions, with separate regions dedicated to specific
responsibilities (terminal owning region, application owning region, queue owning region, and so on).
Extending CICS to maximize availability in a Parallel Sysplex is the next logical step.
Among the benefits a Parallel Sysplex can potentially deliver in a CICS environment:
• High availability and continuous operation.
If there are multiple regions to deliver a CICS function, it should be possible to stop any of those regions
and still deliver the service to the user, provided at least one of those regions is still available. If a
CICS region experiences a planned or unplanned outage, all the work that the region would otherwise
process should automatically get routed to one of the other regions. This would provide the following
benefits:
– Minimize the number and impact of unplanned outages.
– Minimize the number and impact of planned outages.
– Maximize the availability of CICS applications.
– Ensure that CICS application meets or exceeds the business SLA requirements.
• Scalability.
The concept of Parallel Sysplex is that any work should be able to run on any member of the sysplex. For
CICS, this means that if you require extra CICS capacity, it should be possible to quickly and easily clone
another CICS region, add it to any system in the sysplex, and work should automatically start flowing to
that region.
• Flexibility.
If you want to reduce the number of CICS regions, it should be possible to stop a region, and all the
work that was running in that region is now routed to one of the other remaining regions.
You can also move CICS regions from one system in the sysplex to another (for example, if one central
processing complex (CPC) is upgraded to add more capacity). By easily being able to move regions, you

© Copyright IBM Corp. 1974, 2022 511

 can exploit the additional capacity on the upgraded CPC and free up capacity on the CPCs from which
the regions are moved.
• Performance.
Whether the CICSplex spans multiple systems in the sysplex or not, it should be possible to optimize
performance by routing CICS transactions to the CICS region that can deliver the best response time to
the user.
• Simplified systems management and single system view.
CICSPlex SM can manage multiple CICS regions, not just in a single z/OS image, but across a Parallel
Sysplex.
To fully achieve these benefits, changes to the applications might be required. For more information about
making your applications Parallel Sysplex ready, see “Planning for migrating CICS to a Parallel Sysplex”
on page 528.

CICSplex, CICSPlex SM, and Parallel Sysplex

There is considerable synergy between CICSplex, CICSPlex SM, and Parallel Sysplex, and used in
combination, they can provide the highest possible availability and continuous operations for CICS
applications.

CICSplex
Multiple CICS regions can communicate with each other and cooperate to handle inbound work requests.
This specialized type of cluster is referred to as a CICSplex. In the CICS environment, CICSplex provides
many benefits, including superior scalability, single system image, and so on. A CICSplex is managed
as a single entity. It is a significant technology for high availability and continuous operation for CICS
workloads. However on its own, it can do nothing about the availability of other subsystems or data, which
might be required to fulfill the CICS application business needs (for example, access to Db2 data).

CICSPlex SM
The CICSPlex SM element of CICS TS is the system management infrastructure that has the capability
to manage multiple CICS systems (a CICSplex) across multiple images from a single control point.
Enterprises in which CICSPlex SM might be needed range from those running only a few CICS systems
to those running hundreds of CICS regions or more. In the many large z/OS sysplex environments,
a large number of CICS systems can be needed to support the transaction processing workload.
Workload management, real-time analysis, and monitoring services are used to manage the CICSPlex
SM configuration and CICSplex environment, and to gather statistical information.
CICSPlex SM provides a real-time, single-system image of all CICS regions and resources that make up
each CICSplex in the transaction processing environment. It provides a single point of control for the
definition and deployment of resources in a CICSplex.
The CICSPlex SM workload manager dynamically routes transactions and provides workload management
for all dynamic transactions and program links across CICS systems in the target scope, taking into
account region availability, and honoring any workload affinity and workload separation requirements.

Parallel Sysplex
When you have a single copy of any system component, hardware, software, or data, you are inevitably
exposed to system outages because of either failure of the component or because of planned changes to
the component that require it to be taken offline.
One of the goals of Parallel Sysplex is to eliminate the impact that scheduled outages have on application
availability, and minimize the effects of an unscheduled outage by allowing work to continue executing on
the remaining systems in the sysplex. This requires, among other things, that the system is designed for
redundancy within the Parallel Sysplex. Applications must be able to run across multiple systems, with

512 CICS TS for z/OS: Configuring CICS

 access to the data possible from at least two systems. If at least two instances of a resource exist, your
applications can continue to run even if one of the resources fails.
Note: Parallel Sysplex provides only the facilities for continuous availability. Parallel Sysplex on its own
does not eliminate scheduled or unscheduled application outages; the application itself must also be
designed for continuous availability. Sharing data is only one part of this design.
Parallel Sysplex provides the facilities that can be exploited by subsystems and applications that are
running in the sysplex to provide higher availability, simplified systems management, and improved
scalability. For example:
• XCF services allow authorized programs on one system to communicate with programs on the same
system or on other systems. If a system fails, XCF services also provide the capability for batch jobs and
started tasks to be restarted on another eligible system in the sysplex.
• The coupling facility enables parallel processing and improved data sharing for authorized programs
that are running in the sysplex.
In the CICS environment, for example:
• CICS can directly exploit Parallel Sysplex by sharing nonrecoverable temporary storage queues via a
coupling facility.
• CICS can indirectly exploit Parallel Sysplex by utilizing VSAM RLS sysplex-wide record-level locking (in
this example, DFSMS VSAM could be considered the direct exploiter).
• CICSPlex SM sysplex optimized workload management can directly exploit Parallel Sysplex by obtaining
region status information from a coupling facility.

CICSplex, CICSPlex SM, and Parallel Sysplex in combination

In the CICS environment, CICSplex and CICSPlex SM provide a single-system image, workload
management, and to some extent a data sharing capability, but just for CICS. A Parallel Sysplex provides
a single-system image and a data sharing capability for all appropriately configured workloads, not just
CICS. With the proper Parallel Sysplex design and configuration, this can prevent an outage against a
CICS application, just because, for example, a subsystem, or even an entire z/OS system, has become
unavailable.

Parallel Sysplex principles

A Parallel Sysplex is a collection of z/OS systems that cooperatively use certain hardware and software
components, to achieve a high-availability workload processing environment.
A Parallel Sysplex is a set of up to 32 z/OS systems that are connected to behave as a single, logical
computing platform.
The base sysplex was introduced in 1990.
The Parallel Sysplex was introduced in 1994 with the addition of the Coupling Facility.
The underlying structure remains virtually transparent to users, networks, applications, and operations.
The main principle behind a Parallel Sysplex is to provide data sharing capabilities, which then provide the
following benefits:
• Reduction/removal of Single points of failure within the server, LPARs, and subsystems
• Improved application availability
• A single systems image
• Dynamic session balancing
• Dynamic transaction routing
• Scalable capacity

Chapter 17. Migrating CICS to a Parallel Sysplex 513

 Parallel Sysplex components
A Parallel Sysplex is a set of systems that all have access to the same one or more Coupling Facilities.
While a basic sysplex is an actual entity, with a defined name (the sysplex name), a Parallel Sysplex is
more conceptual. There is no single place that maintains the name of the Parallel Sysplex and a list of the
systems it contains. There are a number of constituents to a Parallel Sysplex:
Coupling Facility
A key component in any Parallel Sysplex is the Coupling Facility (CF) infrastructure. In a Parallel
Sysplex, Central processor Complexes (CPCs) are connected via the CF. The CF consists of hardware
and specialized microcode (control code) that provides services for the systems in a sysplex. A CF runs
in its own LPAR. Areas of CF storage are allocated for the specific use of CF exploiters. These areas are
called structures. There are three types of structure:
• Lock:
For serialization of data with high granularity. Locks are, for example, used by IRLM for IMS DB and IBM
MQ databases, and by CICS when using DFSMS VSAM RLS.
• Cache:
For storing data and maintaining local buffer pool coherency information. Caches are, for example, used
by DFSMS for catalog sharing, RACF databases, IBM MQ databases, VSAM and OSAM databases for
IMS, and by CICS when using DFSMS VSAM RLS. Caches contain both directory entries and optional
data entries
• List
For shared queues and shared status information. List structures used by CICS include coupling facility
data tables (CFDTs), named counters, CICS shared temporary storage, and CICSPlex SM region status.
There is also an area in the storage of the CF called dump space. This is used by an SVC dump routine to
quickly capture serialized structure control information. After a dump, the dump space is copied into z/OS
CPC storage and then to the SVC dump dataset. The dump space can contain data for several structures.
The definitions of CF structures are maintained in coupling facility resource management (CFRM) policies.
The cross-system extended services (XES) component of z/OS enables applications and subsystems to
take advantage of the coupling facility.
The high-availability characteristics of Parallel Sysplex rely on the ability to non-disruptively move the
structures from one CF to another, allowing a CF to be taken offline for service without impacting the
systems that use that CF. All Parallel Sysplexes should have at least two CFs and those CFs should be
accessible to every member of the sysplex.
Couple datasets
z/OS requires a dataset (and an alternate dataset is recommended for availability) to be shared by all
systems in the Parallel Sysplex. z/OS stores information that is related to the Parallel Sysplex, systems,
XCF groups, and their members, in the sysplex couple dataset.
XCF
Cross system coupling facility (XCF) services allow authorized programs on one system to communicate
with programs on the same system or on other systems. If a system fails, XCF services also provide the
capability for batch jobs and started tasks to be restarted on another eligible system in the sysplex.
Application components are defined to XCF and are aware of the existence of other components that
support the application. If one component fails, XCF automatically informs the other components. For
more information about XCF, see XCF Concepts in z/OS MVS Programming: Sysplex Services Guide.
Nodes in a sysplex use XCF Communication Services (XCF) to perform coordination among sysplex TCP/IP
stacks, to discover when new TCP/IP stacks are started, and to learn when a TCP/IP stack is stopped
or leaves the XCF group (following a failure). This information is essential for automating the movement
of applications and for enabling sysplex Distributor to make intelligent workload management decisions.
XCF communication messages can be transported either through a coupling facility or directly through an
IBM Enterprise Systems Connection (ESCON) or IBM Fibre Channel connection (FICON®).

514 CICS TS for z/OS: Configuring CICS

System Logger
z/OS System Logger provides a generalized logging capability for saving and recalling log records. It
provides a single syslog that combines all of the information from all the systems within the sysplex.
Exploiters of System Logger include OPERLOG, for sysplex-wide syslog, LOGREC, for sysplex-wide error
information, and CICS, which writes its DFHLOG and DFHSHUNT log records to Logger.
The z/OS workload manager
A component of z/OS that provides the ability to run multiple workloads at the same time within one z/OS
image or across multiple images.

Parallel Sysplex networking

The overall objective of designing a Parallel Sysplex environment for high availability is to create an
environment where the loss of any single component does not affect the availability of the application.
In order to achieve high availability and automatically overcome system or subsystem failure within a
Parallel Sysplex, you must avoid tying an application to a single, fixed network address. There are a
number of ways of doing this:
VIPA (Virtual IP Addressing)
Traditionally, an IP address is associated with a physical link, and while failures in intermediate links in
network can be rerouted, the endpoints are points of failure. VIPA was introduced to provide fault-tolerant
network connections to a TCP/IP for z/OS system stack. This enables the definition of a virtual interface
that is not associated with hardware components, and is always available. To the routing network the
VIPA appears to be a host address that is indirectly attached to z/OS. Name servers are configured to
return the VIPA of the TCP/IP stack, not of the physical interface. If the physical interface fails, dynamic
route updates are sent out to update IP routing tables to use an alternate path; IP connections are not
broken but non-disruptively recovered through remaining physical interfaces.
There are two versions of VIPA:
• Static VIPA
• Dynamic VIPA (DVIPA)
A static VIPA is an IP address that is associated with a particular TCP/IP stack. Using either ARP
takeover or a dynamic routing protocol, for example, OSPF, static VIPAs can enable mainframe application
communications to continue unaffected by network interface failures. While a single network interface is
operational on a host, communication with applications on the host persist. Static VIPA does not require
sysplex (XCF communications) because it does not require coordination between TCP/IP stacks.
Dynamic VIPAs (DVIPAs) can be defined on multiple stacks and moved from one TCP/IP stack in the
sysplex to another automatically. One stack is defined as the primary or owning stack, and the others are
defined as backup stacks. Only the primary stack is made known to the IP network.
TCP/IP stacks in a sysplex exchange information about DVIPAs and their existence and current location,
and the stacks are continuously aware of whether the partner stacks are still functioning. If the owning
stack leaves the XCF group, for example, as the result of some sort of failure, then one of the backup
stacks automatically takes its place and assumes ownership of the DVIPA. The network just sees a
change in the routing tables or in the adapter that responds to ARP requests. Applications that are
associated with these DVIPAs are active on the backup systems, providing a hot standby and high
availability for the services. DVIPA addresses identify applications independently of which images in the
sysplex the server applications execute on and allow an application to retain its identity when moved
between images in a sysplex.
Sysplex Distributor
A Sysplex Distributor provides connection workload management within a sysplex. It balances workloads
and logons among systems that implement multiple concurrent application instances, each sharing
access to data. The Sysplex Distributor enables an IP workload to be distributed to multiple server
instances within the sysplex without requiring changes to clients or networking hardware, and without
delays in connection setup. With Sysplex Distributor, you can implement a dynamic VIPA as a single

Chapter 17. Migrating CICS to a Parallel Sysplex 515

 network-visible IP address that is used for a set of hosts that belong to the same sysplex cluster. A client
on the IP network sees the sysplex cluster as one IP address, regardless of the number of hosts in the
cluster.
Using internal workload management in a z/OS environment, when a TCP connection request is received
for a given distributed DVIPA address, the decision as to which instance of the application serves that
particular request is made by the Sysplex Distributor running in the TCP/IP stack that is configured
to be the routing stack. The Sysplex Distributor has real-time capacity information available (from the
sysplex workload manager) and can use QoS information from the Service Policy Agent. Consequently,
internal workload management requires no special external hardware. However, all inbound messages to
the distributed DVIPA must first transit the routing stack before they are forwarded to the appropriate
application instance.
Port sharing
Port sharing is a method to distribute workload for IP applications within a z/OS LPAR. TCP/IP allows
multiple listeners to listen on the same combination of port and interface. Workload that is destined for
this application can be distributed among the group of servers that listen on the same port. Port sharing
does not rely on an active Sysplex Distributor implementation; it works without Sysplex Distributor.
However, you can use port sharing in addition to Sysplex Distributor operation.
z/OS supports two modes of port sharing:
• SHAREPORT
• SHAREPORTWLM
SHAREDPORT, when specified on the PORT statement, incoming client connections for this port and
interface are distributed by the TCP/IP stack across the listeners, by using a weighted round-robin
distribution method based on the Server accept Efficiency Fractions (SEFs) of the listeners that share the
port. The SEF is a measure of the efficiency of the server application, which is calculated at intervals of
approximately one minute, in accepting new connection requests and managing its backlog queue.
SHAREPORTWLM can be used instead of SHAREPORT. Similar to SHAREPORT, SHAREPORTWLM causes
incoming connections to be distributed among a set of TCP listeners. However, unlike SHAREPORT, the
listener selection is based on WLM server-specific recommendations, which are modified by the SEF
values for each listener. These recommendations are acquired at intervals of approximately one minute
from WLM, and they reflect the listener’s capacity to handle additional work.
z/OS Communications Server generic resources
z/OS Communications Server generic resources provide a single system image of an application no matter
where it runs in the sysplex. A User accesses the application by using the generic resource name of
the application, and z/OS Communications Server determines the actual application instance based on
performance and workload criteria. This allows application instances to be added, removed, and moved
without impacting the user.
For more information about using z/OS Communications Server generic resources in CICS, see
Configuring z/OS Communications Server generic resources in Configuring.

CICS functions and components that directly exploit Parallel

Sysplex technology
There are a number of CICS functions and components that directly exploit Parallel Sysplex technology.
These elements of CICS directly exploit Parallel Sysplex by, for example, implementing their own z/OS
coupling facility structures.

516 CICS TS for z/OS: Configuring CICS

CICS log streams
The CICS log manager uses services that are provided by the z/OS system logger, and in a Parallel Sysplex
can write log data to the z/OS coupling facility.
DFHLOG and DFHSHUNT are the CICS system logs. CICS regions might also use extra log streams,
depending on the applications, product mix, and the functions and tools that are being used.
The CICS system log, forward recovery logs, autojournals, and user journals map into specific log streams.
Log streams are defined in structures within the coupling facility or as DASD-only log streams.
DASD-only logging can be used for single-image and non-Parallel Sysplex environments. DASD-only log
streams do not use coupling facility storage. A DASD-only log stream has a single system scope. Only one
system at a time can connect to DASD-only log stream. The z/OS system logger programming interface
can be used to merge data from multiple instances of an application, including from different systems
across a Parallel Sysplex (however, the CICS system log data will not be merged). DASD-only logging can
be used in a Parallel Sysplex, but merging is supported within one z/OS image only.
A coupling facility log stream spans two levels of storage: the coupling facility for interim storage and
DASD log datasets for more permanent storage. When the coupling facility space for the log stream fills,
the data is offloaded to DASD log datasets. A coupling facility log stream can contain data from multiple
systems, allowing a system logger application to merge data from systems across the Parallel Sysplex
(however, the CICS system log data will not be merged). The main difference between coupling facility log
streams and DASD-only log streams is the storage medium that the system logger uses to hold interim log
data: In a coupling facility log stream, interim storage for log data is in the coupling facility list structures.
In a DASD-only log stream, interim storage for log data is in the local storage buffers on the system. Local
storage buffers are data space areas that are associated with the system logger address space. You can
use coupling facility log streams, DASD-only log streams, or a combination of both types of log streams.
For a general understanding of z/OS System Logger and how it works, see the IBM Redbooks® publication
Systems Programmer's Guide to: z/OS System Logger SG24-6898. For information about the interactions
between CICS and z/OS System Logger, see the IBM Redbooks publication Performance Considerations
and Measurements for CICS and System Logger REDP-3768. For more information about CICS log
streams, see Logging and journaling.
The following guidelines are specifically for the DFHLOG and DFHSHUNT log streams, which tend to be
the busiest and most important of the CICS related log streams:
• Because the CICS DFHLOG and DFHSHUNT log streams are only accessed by a single CICS region, you
have the choice of defining the log streams as CF log streams or DASDONLY log streams.
• For CF log streams:
– You must carefully plan the number of log streams per CF structure for use in your environment, as
each log stream uses a proportion of the resources of a single coupling facility structure. For further
information about defining your logger environment for CICS, see Defining coupling facility structures.
– Try to ensure that each structure contains log streams that are connected to by CICS regions on more
than one CPC to enable recovery if one of the CICS regions abends.
– Do not mix DFHLOG and DFHSHUNT log streams in the same structure.
– Try to place log streams with a similar level of activity in the same structure. For example, place busy
log streams in one structure, and less busy ones in a different structure.
• For all log streams:
– Size your staging datasets or z/OS System Logger structures (or both) so that no log records are
moved from primary storage to the offload datasets.
– Specify a reasonable LS_SIZE value. The default value of just two tracks is far too small.
– Use a data class for the offload datasets that result in a CI size of 24 KB. However, the staging
datasets must have a CI size of 4 KB.
– Specify OFFLOADRECALL(NO) for the DFHLOG and DFHSHUNT log streams.

Chapter 17. Migrating CICS to a Parallel Sysplex 517

 – Use model log stream definitions so that you do not have to explicitly specify new log stream
definitions every time that you start a new CICS region.
– If you use DASD mirroring for disaster recovery purposes, and you do not want to do an INITIAL start
of your CICS regions in a disaster, define all your CICS log streams to use staging datasets.
– A good empirical range for CICS system logstreams DFHLOG and DFHSHUNT, HIGHOFFLOAD should
be set to 80 - 85%. The LOWOFFLOAD parameter value is most suitable between 40 - 60%. Too
low a value might result in physical offloading of log data from primary to auxiliary storage after the
z/OS System Logger offload process has completed physical deletion of any unwanted log data during
offload processing. Conversely, too high a value might mean that subsequent offload processing
occurs more frequently, as less space is freed up from primary storage during an offload operation.
– The guidelines for general log streams like forward recovery logs and user journals are different from
those for the system log. There is no requirement here to retain logged data in the coupling facility
structure. Rather, due to the typical use of such data, you might need only a small structure to offload
the data rapidly to DASD. If so, set HIGHOFFLOAD to 80 - 85% and LOWOFFLOAD to 0.
– It is preferable to have smaller structures, and to do frequent, small offloads, rather than large
structures and the resulting infrequent, but long-running, offloads.
– Do not enable auto alter for z/OS System Logger structures.
– Keep the log streams for test CICS systems (and other systems not in regular use) in structures
separate from the structures that hold the log streams of production CICS systems.
– Keep the log streams for terminal-owning regions (TORs) in structures separate from those
accommodating log streams for application-owning regions (AORs). In addition, keep log streams
for file-owning regions (FORs) in structures separate from those accommodating log streams for
TORs and AORs.
– Set MAXBUFSIZE to slightly less than 64 K (for example, 64000).

Log defer interval (LGDFINT) value

The LGDFINT CICS SIT parameter defines the log defer interval. The interval is the length of time, which
is specified in milliseconds, that the CICS log manager is to wait before it invokes the z/OS System Logger
for a forced write request. The value that is chosen can have an impact on transaction response time.
Specifying a large LGDFINT value might increase the number of log records that CICS is able to place in
a log block, and also decreases the cost of using z/OS System Logger (because z/OS System Logger is
called less frequently). However, given the speed of more recent processors, it is better to send the log
blocks to z/OS System Logger more frequently. For this reason, the default LGDFINT value is decreased
to 5 milliseconds. While some benefit might be achieved from using an even smaller value, using a value
larger than 5 is inadvisable.

Activity keypoint frequency (AKPFREQ) value

The AKPFREQ keyword specifies the number of write requests to the CICS system log stream output
buffer required before CICS writes an activity keypoint. One of the consequences of taking an activity
checkpoint is that log records that are no longer required for backout and recovery are deleted from the
log stream, thus freeing up space in interim storage. A larger AKPFREQ value means that log records are
retained in interim storage for longer.
The result of this is that either log blocks must be moved to the offload datasets (which is not desirable)
or the size of interim storage needs to be increased, resulting in extra storage requirements in the CF and
in the z/OS System Logger data space. Another effect is that higher AKPFREQ can increase restart times.
Reducing the AKPFREQ value caused CICS to trim the tail of the log more frequently. Trimming the
tail more often makes it possible for the offload process to reach the LOWOFFLOAD point without the
overhead of issuing I/O to move data to the offload datasets.

518 CICS TS for z/OS: Configuring CICS

CICS coupling facility data tables
A CICS file is a representation of a dataset on DASD. If you specify that the file is to use data table
services, CICS copies the contents of the dataset into in-memory shared storage when the file is opened
and uses that copy whenever possible. For a Shared Data Table (CICS-maintained data table or user-
maintained data table), the contents are copied into a z/OS data space which is shared across a z/OS
image. For a coupling facility data table, the contents are copied into a coupling facility structure, which
is shared across a sysplex. For coupling facility data tables, it is also possible to populate the table at run
time without previously loading it from a data set.
Coupling facility data tables (CFDTs) provide some of the performance benefits of shared data tables
(SDTs) while also providing the flexibility to access the data table from anywhere in the sysplex. CFDTs are
similar in many ways to a shared user-maintained data table (UMT). CFDTs and the CF structures they use
are managed by a CFDT server.
The typical uses of CFDTs do not require the data to be long-lasting or permanent, although it is possible
to define a CF data table to be recoverable from transaction and system failures. Updates to the data are
not automatically hardened to the source data set, and the contents of the CFDT do not survive a failure of
the CF or of the CF structure. It is the user's responsibility to copy updates to the data table back to the
source data set on DASD if that is required. To protect the CFDT structure from a CF failure, you can use
System-Managed Duplexing.
The performance of a CFDT (with its data in a CF structure), is not as good as with a shared data table
(with its data in a a data space), but it is better than accessing the data from the data set, or by function
shipping requests between CICS regions.
Note: No application changes are required if you want to change a user-maintained data table to make it
a Coupling Facility Data Table. The mapping of the location of the data table (in an z/OS data space or in
a CF structure) is controlled by CICS, and application programs do not need to be aware of the location
of the data table. For application considerations specifically relating to CFDTs, see Coupling facility data
tables.
For information about setting up and running a coupling facility data table server, see Setting up and
running a coupling facility data table server. For information about FILE resources and CFDTs, see
Coupling facility data tables.

CICSPlex SM sysplex optimized workload management

CICSPlex SM sysplex optimized workload management maximizes CICS workload throughput in a Parallel
Sysplex environment. It is most effective for distributed workloads, for which the routing and target
regions are managed by different CMASs.
Sysplex optimized workload routing is enabled at the z/OS coupling facility level by a region status (RS)
server. CICS posts the status of each target region to the RS server, where it is placed in a coupling
facility data table. Each routing region has access to near real-time transaction load and region health
information for all target regions in the sysplex, enabling more efficient WLM routing decisions to be
made. Extra CICSPlex SM WUI views are provided so that you can monitor the distribution of dynamic
workloads through your sysplex. Sysplex optimized workload management is best suited to workloads
that are contained in a single sysplex.
For more information about CICSPlex SM sysplex optimized workload management, see Optimized
dynamic workload routing implementation and Sysplex optimized workload management learning path .

XCF for MRO

XCF is required for MRO links between CICS regions in different z/OS images of a sysplex.
CICS Inter Region Communication (IRC) for multiregion operation (MRO) supports the use of XCF for inter
region communication between regions in the same sysplex, making it unnecessary to use VTAM for this
communication. Each CICS region is assigned to an XCF group when it logs on to IRC, even if it is not
currently connected to any regions in other z/OS images. When members of a CICS XCF group that are in

Chapter 17. Migrating CICS to a Parallel Sysplex 519

 separate z/OS images communicate, CICS selects XCF dynamically, overriding the access method that is
specified on the connection resource definition.
You can specify the name of the XCF group on the XCFGROUP system initialization parameter. If you
do not specify XCFGROUP, the region becomes a member of the default CICS XCF group, DFHIR000. If
you run different types of CICS regions in the same sysplex (test and production or development and
production, for example), you might want to use separate XCF groups for the separate collections of
regions. You might also want to use multiple groups if you are approaching the limit of 2047 members
in an XCF group and if you can break your CICS regions into groups of regions that do not need to
communicate with each other.
If you do need to have multiple CICS XCF groups, follow these guidelines:
• Put your production regions in a separate XCF group from your development and test regions.
• Do not create more XCF groups than you need.
• Try not to move regions between XCF groups.
CICS regions can use XCF to communicate only with other CICS regions in the same XCF group. Members
of different XCF groups cannot communicate using MRO even if they are in the same z/OS image.
The Benefits of XCF/MRO are:
• A low communication overhead between z/OS images, providing much better performance than using
ISC links to communicate between z/OS systems.
• Easier connection resource definition than for ISC links, with no VTAM tables to update.
• High availability, by having alternative processors, and systems ready to continue the workload of a
failed z/OS system or a failed CICS region.
• Easier transfer of CICS regions between z/OS systems. The simpler connection resource definition of
MRO, and having no VTAM tables to update, makes it much easier to move CICS regions from one z/OS
system to another. You no longer need to change the connection definitions from CICS MRO to CICS ISC
(which can be done only if CICS startup on the new z/OS is a warm or cold start).
For more information about XCF/MRO, see Cross-system multiregion operation (XCF/MRO) and MVS
cross-system MRO definitions.

Use of temporary storage pools

Temporary storage is the primary CICS facility for storing data that must be available to multiple
transactions.
Data items in temporary storage are kept in queues whose names are assigned by the program that is
storing the data. A temporary storage queue that contains multiple items can be thought of as a small
dataset whose records can be addressed either sequentially or directly by item number. If a queue
contains only a single item, it can be thought of as a named scratch-pad area.
Temporary storage can be main storage in the CICS region, auxiliary storage in a VSAM data set, or shared
temporary storage pools in a z/OS coupling facility. In a non-parallel sysplex environment, temporary
storage queues are defined as nonrecoverable or recoverable. Nonrecoverable queues typically exist
within the virtual storage of a CICS region, which provides better performance than having to do an
I/O to DASD. However, if the CICS region becomes inactive, the data on the queue is lost. Recoverable
temporary storage queues must be located in a VSAM dataset, so access to them is slower. Additionally,
because all updates to the queue must be logged, the overhead of using recoverable queues is higher.
If the temporary storage data must be passed from a task in one region to a task in another region in an
MRO scenario, a dedicated CICS region (a queue owning region, or QOR) can be defined and specified to
each CICS application owning region (AOR) that wants to use the queues that are located in that region.
While a QOR removes the affinity between the two transactions that are sharing data in the temporary
storage queue, performance is not as good as a queue held within the same AOR as the transactions. The
function shipping that is associated with communicating between the AOR and the QOR generates extra
overhead, and the QOR constitutes a single point of failure. If the QOR fails, all data in the queues that it
contains are lost.

520 CICS TS for z/OS: Configuring CICS

 A better alternative for sharing nonrecoverable temporary storage queues is to place them in a Coupling
Facility (CF) structure. The location of the queue is defined on the DFHTST macro or via the RDO TSModel
definition by the system programmer. The application continues to access the queue by the same name,
but CICS dynamically determines where the queue is located and how to access it.
Note: Although the DFHTST macro is still supported by CICS Transaction Server for z/OS, use resource
definition online (RDO) to define the equivalent TSMODEL definitions.
Because the queues are held in a CF structure, the data on the queues is protected from CICS region
outages. Even if all CICS regions are stopped, the data they had written to the queues in the temporary
storage structure is accessible when they are restarted. Additionally, because CF access times are
typically measured in microseconds, access to the data in the structure is far faster than would be the
case with a QOR.
Note: Because the only queues that can be located in the temporary storage structure are
nonrecoverable, CICS does not, on its own, provide any mechanism to restore the structure contents to
the point of failure if the structure, or the CF in which it is located, fails. If the availability of the data in the
structure is critical to your applications, you can use System-Managed Duplexing to duplex the structure.
Remember the only queues that can be located in the temporary storage structure are nonrecoverable
ones, so by definition, applications that use these types of queues must be able to handle the loss of that
data.
CICS transactions that are running in an AOR access data in the temporary storage structure through a
temporary storage server address space that supports a named pool of temporary storage queues. You
must set up one temporary storage server address space in each z/OS image in the sysplex for each pool
that is defined in the CF. All temporary storage pool access is performed by cross-memory calls to the
temporary storage server for the named pool. The name of the temporary storage pool that the server
is going to support is specified on the POOLNAME parameter in the temporary storage server address
space JCL. You must also specify the numbers of buffers to allocate for the server address space. To
avoid the risk of buffer waits and to reduce the number of CF accesses, you can increase the minimum
number of buffers from the default of 10 buffers per CICS region that can connect to the server. Providing
a reasonable number of buffers keeps the most recently used queue index entries in storage. When a
READ or WRITE request is completed, the queue index information is retained in the buffer. If the current
version of a queue index entry is in storage at the time a queue item is read, the request requires only one
CF access instead of two.
For more information about temporary storage, see Temporary Storage. For information about the use of
temporary storage and the considerations for avoiding transaction affinities, see Programming techniques
and affinity/xref>. For more information about defining the shared temporary storage structure, see
Defining temporary storage pools for temporary storage data sharing.

Named counters
The named counter facility is used for generating unique sequence numbers for use by application
programs in a Parallel Sysplex environment.
The named counter is controlled by a named counter server, which maintains each sequence of numbers
as a named counter. Each time a sequence number is assigned, the corresponding named counter is
incremented automatically. There are various uses for this facility, such as obtaining a unique number
for documents (for example, customer orders, invoices, and despatch notes), or for obtaining a block of
numbers for allocating customer record numbers in a customer file.
In a single CICS region, you can use various methods to control the allocation of a unique number. For
example, you might use the CICS common work area (CWA) to store a number that is updated by each
application program that uses the number. However, the CWA is unique to the CICS address space, and
cannot be shared by other regions that are running the same application. A CICS shared data table might
be used to provide such a service, but the CICS regions must all run in the same z/OS image. The named
counter facility overcomes all the sharing difficulties that are presented by other methods by maintaining
its named counters in the coupling facility, and providing access through a named counter server that
is running in each z/OS image in the sysplex. This ensures that all CICS regions throughout the Parallel
Sysplex have access to the same named counters.

Chapter 17. Migrating CICS to a Parallel Sysplex 521

 When you use a named counter server, each normal request (to assign the next counter value) requires
only a single coupling facility access. This provides a significant improvement in performance compared to
the use of files for this purpose. The named counter server also performs better than coupling facility data
tables in this respect because at least two coupling facility accesses are required to update a coupling
facility data table.
Note: The named counter facility extends beyond CICS programs. The program that provides the interface
to the named counter facility has a callable interface that can also be used by batch programs. This
means that you can run batch jobs anywhere in the sysplex and have a high-performance mechanism for
generating unique values, without having to create a mechanism of your own to provide this functionality.
For information about setting up and managing the named counter facility, see Setting up and running a
named counter server.

Named counter recovery

Named counters are only stored in a structure in the CF, and updates to the counters are not logged.
Applications that use named counters might therefore need to implement recovery logic to handle the
loss of the named counter structure.
The simplest way to protect yourself from the loss of a named counter structure is to use System-
Managed Duplexing for those structures. Typically, the access rate to the structure is not high, so the cost
of duplexing the requests is usually acceptable, particularly considering the impact if the structure were
to be lost. Also, if the named counter structure is lost and it is not duplexed, all the named counter server
address spaces that use that structure abend.
A number of scenarios might lead to the loss of a named counter server address space:
• Loss of the named counter CF structure
If the named counter structure is lost, all the connected named counter server address spaces abend.
Consider using the Automatic Restart Manager (ARM) to automatically restart the server address spaces
on the same system on which they were running before the failure. The first server address space to
start detects that its structure is not allocated and allocates a new, empty instance in an alternate CF.
You must have a process that restores the structure contents before any applications use the service
again.
• Abend of a named counter server address space
The failure of a named counter server address space impacts any applications on that system that try to
use the service. However, it does not have any impact on the contents of the named counter structure.
In this case, consider using ARM to automatically restart the failed server address space on the same
system on which it was running before the failure. No additional recovery is required.
• Failure of a system where a named counter server address space is running
If the system where a named counter server address space is running fails, let your normal system start
process start the address space as it would after any IPL. There is no benefit from starting the address
space on any other system.
It is sensible to have a tested mechanism to recreate the contents of the counters. For example, if you
do not duplex the structure and the CF containing the structure fails, the contents are lost. Even if you
do duplex the structure, an event such as a power failure can still result in the loss of all the counters
contents. If a named counter is being used only for temporary information that does not need to be
preserved across a structure failure (for example, unique identifiers for active processes that are not
expected to survive such a failure), then recovery techniques can be minimal. For example, you can
recreate the counter with a standard initial value. However, if a named counter is being used for persistent
information, such as an order number, re-creating it might require specific application logic to reconstruct
the counter value.
For information about techniques that you can use to recover the counter values following a loss of the
named counter structure, see Named counter recovery.

522 CICS TS for z/OS: Configuring CICS

CICS functions and components that indirectly exploit Parallel
Sysplex technology
There are a number of CICS functions and components that indirectly exploit Parallel Sysplex technology.
These elements of CICS exploit Parallel Sysplex technology that is implemented by other software.

Db2 data sharing

Db2 data sharing enables CICS transactions that are running in any CICS application-owning region to
access the same shared Db2 data.
The DB2CONN definition contains the name of the Db2 subsystem or the group name of the Db2 data
sharing group to which CICS connects. Using the group name, rather than a specific subsystem name,
enables a CICS region on any system in the sysplex to connect to any Db2 running in the same LPAR in
the data sharing group. This exploits Db2 structures that are defined in the z/OS coupling facility. A Db2
data sharing group consists of several Db2 data managers that can all access the same tables. The data
managers can run in the same or in separate z/OS logical partitions. This way of running allows the various
regions of a CICSPlex to share data in the same Db2 tables.
A data sharing group offers an availability advantage as other data managers in the group can provide
continued access to data should a data manager in the group fail.
A facility referred to as Db2 group attach can provide additional availability benefits:
• Without Db2 group attach, each CICS region is configured to use a specified Db2 data manager.
• With Db2 group attach, each CICS region is configured to use any data manager in the data sharing
group - although you need to consider Db2 INDOUBT resolution.
Db2 data sharing group support enables you to configure a CICSPlex in various ways:
• One data manager in each logical partition, without CICS Db2 group attach.
All CICS regions in a partition connect to their specified Db2 data manager. That Db2 manager must be
running in the same logical partition.
• One data manager in each logical partition, with CICS Db2 group attach.
All CICS regions in a partition connect to whatever Db2 data manager is running in the same logical
partition. This configuration is similar to the previous configuration except that a CICS region in one
partition can fail and then restart in any partition where there is a data manager in the same data
sharing group. It can use any data manager in the data sharing group to access the Db2 data.
• More than one data manager in each logical partition, with CICS Db2 group attach.
Each CICS region in a partition connects any one of the Db2 data managers that are running in the
same logical partition. This configuration is similar to the previous configuration except in the following
situations:
– When a CICS region in one partition fails and then restarts in the same region, it might connect to a
different Db2 data manager. This step can delay resolution of in-doubt units of recovery.
– When a Db2 data manager in one partition fails, CICS regions in that partition can connect to another
data manager in the same partition and continue to access the Db2 data.
If CICS loses its connection to the Db2 that it is connected to, and it has INDOUBT units of work in
progress with that Db2, it attempts to reconnect to that Db2. However, even if it is not successful in its
initial reconnection attempt, it remembers that it has an outstanding unit of work with that Db2. If the
CICS region is later restarted (or if the Db2 connection is stopped and restarted) and that Db2 is available,
CICS automatically reconnects to it (provided CICS is on the same z/OS system as the Db2 subsystem),
even if there are multiple Db2 subsystems from the same data sharing group on that system.
How CICS reacts to the initial loss of connection to Db2 is controlled by the RESYNCMEMBER and
STANDBYMODE keywords on the DB2CONN definition. CICS always makes one attempt to reconnect.

Chapter 17. Migrating CICS to a Parallel Sysplex 523

 However, if that fails, CICS either waits for that Db2 to become active again, or it attempts to connect to
another member of the data sharing group, if one exists on the same z/OS system as CICS.
If you have multiple Db2 subsystems in the same data sharing group on the same z/OS system, consider
setting the RESYNCMEMBER keyword to NO. This means that the CICS region connects to another Db2
and is able to continue processing Db2 transactions. The INDOUBT units of work remain outstanding and
are not resolved until CICS reconnects to the original Db2. However, you can drain the CICS region at a
convenient time, then stop and restart the Db2 connection, and the INDOUBT units of work are resolved
at that point.
To stop the flow of Db2 transactions to this region during the time after it initially loses its connection
to Db2, use the CICSPlex SM ABENDTHRESH and ABENDCRIT function as described in “CICSPlex SM
transaction abend thresholds” on page 532.
For more information about how CICS connects to Db2, see Overview: How CICS connects to Db2. For
more information, see Using the Db2 group attach facility.

IBM MQ shared queues

In a Parallel Sysplex, you can configure multiple IBM MQ queue managers as a queue sharing group
(QSG). Queue managers in a QSG support two types of local queue: a shared queue and a private queue.
The queue managers in a QSG cooperate to maintain and access shared queues in one or more z/OS
coupling facilities. In this way, all the queue managers own a shared queue.
Different queue managers in a QSG can run in the same LPAR or in separate LPARs. An application that
is running in any CICS region that connects to any queue manager in the QSG can put to and get from a
shared queue that the QSG owns.
You specify a IBM MQ queue-sharing group name for the CICS-MQ connection, so that CICS uses any
eligible queue manager in the group when it reconnects to IBM MQ, rather than waiting for a specific
queue manager. Queue-sharing groups increase reliability when you reconnect to IBM MQ, and help you
standardize this aspect of CICS setup across CICS regions and z/OS images.
Instead of defining default settings for the CICS-MQ connection in the DFHMQPRM operand of an
INITPARM system initialization parameter, you use the MQCONN resource definition. You can use the
MQCONN resource definition to specify a queue-sharing group name or the name of a specific queue
manager.
If you specify a queue-sharing group name for the connection, you can select appropriate
resynchronization actions for CICS by using the RESYNCMEMBER attribute of the MQCONN resource
definition. Resynchronization works in the same way as it does for the group-attach function for Db2.
Resynchronization takes place when the connection to IBM MQ is lost and CICS is holding outstanding
units of work for the last queue manager. You can choose whether CICS waits to reconnect to the same
queue manager, or whether CICS makes one attempt to reconnect to the same queue manager, but if that
attempt fails, connects to a different eligible queue manager in the group. A queue manager is eligible for
connection to a CICS region if it is active on the same LPAR as the CICS region.
You can use EXEC CICS and CEMT commands or CICSPlex SM to start and stop the CICS-MQ connection
and change all the attributes of the connection. Alternatively, you can continue to use previous methods
of operating the CICS-MQ adapter to initiate and manage connections between CICS and IBM MQ.
You can use the CKQC transaction from the CICS-MQ adapter control panels, or call it from the CICS
command line or from a CICS application.
For more information about the CICS-MQ adapter, see How it works: the CICS-MQ adapter. For more
information about setting up an MQCONN resource, see Defining and installing an MQCONN resource.

524 CICS TS for z/OS: Configuring CICS

VSAM RLS
Record-level sharing (RLS) is a VSAM function, that enables VSAM data to be shared, with full update
capability, between many applications that are running in many CICS regions.
Accessing VSAM files concurrently from separate CICS regions with full data integrity was possible by
implementing a file owning region (FOR). All access to the VSAM dataset was through the FOR. The CICS
transactions run in application owning regions (AORs) and the VSAM file requests are function shipped to
the FOR. This implementation has several problems, such as:
• The FOR is a single point of failure.
• The FOR can be a bottleneck for CPU and throughput.
• Function shipping between AOR and FOR is additional overhead.
VSAM RLS is designed to allow VSAM data to be shared, with full update integrity, among many
applications that running in one, or more z/OS images in a Parallel Sysplex, without the need for an
FOR in CICS. VSAM RLS provides a transactional interface to multiple CICS regions, including regions that
are running on different LPARs. This is important for availability because a multiple LPAR sysplex provides
better resilience than a single LPAR. VSAM RLS uses an SMSVSAM address space in each LPAR. AORs in
the region connect to the SMSVSAM address space instead of to an FOR.

VSAM RLS components

DFSMS VSAM provides:
• N-way data sharing
• Sysplex-wide record-level locking
• An SMSVSAM address space in each z/OS system, with a shared buffer pool
• Recovery attributes in the catalog entry - LOG(NONE | UNDO | ALL) and LOGSTREAMID for
LOG(ALL). Recovery becomes a dataset property rather than a file property
• Read integrity options
• Merging of log records onto forward recover log streams
CICS provides:
• Logging of VSAM dataset changes for backout and recovery.
• Backout of uncommitted changes at transaction abort, AOR restart etc.
• Forward recovery logging and file auto-journalling.
CICS VSAM Recovery for z/OS (CICS VR) (or an equivalent forward recovery product) provides:
• Inventory of image copies and CICS logs.
• Automated dataset restore and forward recovery.
• Uses required RLS commands to unbind and rebind any unresolved locks etc.

Considerations for migrating from non-RLS to RLS access mode

When you are migrating from non-RLS to RLS access mode, potential AFCG abends might occur if a
transaction issues a sequence of file control requests that would cause the file to deadlock itself. To help
with your migration, enable the following feature toggle to avoid AFCG abends:

com.ibm.cics.rls.delete.ridfld=true

Why AFCG abends might occur following RLS migration?

If a file is being accessed in non-RLS mode, an AFCG abend is caused by a transaction making
conflicting requests against the same control interval (CI). For example, if a file is being accessed in
LSR mode, a self deadlock might arise when a transaction issues a DELETE request on a record in the
CI that is also the subject of a READ UPDATE request issued by the same transaction. However, if the
system initialization parameter CILOCK=NO is in effect to prevent non-RLS VSAM from retaining the

Chapter 17. Migrating CICS to a Parallel Sysplex 525

 CI lock after a READ UPDATE command, the AFCG abend would not be returned as no self-deadlock
condition occurs on the DELETE request. However, CILOCK is not relevant for RLS, so after the files
are migrated to RLS access mode, AFCG abends can occur for the reasons given above.
What's the solution?
To help with your migration, you can enable the feature toggle
com.ibm.cics.rls.delete.ridfld=true to achieve the local VSAM's CILOCK=NO behavior for
RLS files. This allows the DELETE requests to be successful in such circumstances.
See Specifying feature toggles for instructions on how to specify feature toggles.

Learn more
For information about setting up VSAM RLS support in CICS, see Definitions required for VSAM RLS
support.
For more information about CICS VR, see CICS VSAM Recovery for z/OS.

Networking
CICS indirectly exploits a number of Parallel Sysplex networking techniques and facilities.

z/OS Communications Server generic resources

A CICS system can register as a Communications Server generic resource. It can then be known either by
its unique APPLID or by the generic resource name, which is shared by a number of CICS regions, all of
which are registered to the same generic resource.

TCP/IP Port sharing

TCP/IP port sharing enables multiple CICS regions to listen to the same port from the same IP stack.
Requests addressing this IP stack's port are distributed equally between the active regions, based on the
number and health of sockets in each CICS region.

DVIPA and Sysplex Distributor

DVIPA can be used if the CICS region runs in a separate LPAR or connects to separate IP stacks in the
same LPAR.
Sysplex distributor enables an IP workload to be distributed to multiple server instances within
the sysplex but without requiring changes to clients or networking hardware, and without delays in
connection setup.
Sysplex distributor can be used with port sharing to provide a combined high availability approach across
CICS regions in the same LPAR and across a sysplex in different LPARs.

Other CICS functions and components that facilitate a Parallel

Sysplex
There are a number of other CICS functions and components that facilitate the implementation of CICS
within a Parallel Sysplex.

CICSPlex SM
CICSPlex SM enables you to manage multiple CICS systems across multiple images from a single control
point, as a single-system image (SSI). Just as CICSPlex SM can manage multiple CICS regions in a
single z/OS image, it can manage CICS regions across one or more Parallel Sysplexes. The provision of a
single-system image enables you to operate at the logical rather than the physical level, without regard to
either the scale or location of CICS resources.

526 CICS TS for z/OS: Configuring CICS

CICSPlex SM workload management can dynamically route transactions and programs to the CICS region
that is the most appropriate at the time, taking into account any transaction affinities and workload
separation definitions that exist.
For more information about CICSPlex SM workload management, see Managing workloads through
CICSPlex SM.

CICS Intercommunication
CICS intercommunication is communication between a local CICS system and a remote system, which
might or might not be another CICS system. There are two types of intercommunication; multiregion
operation and intersystem communication:
Multiregion operations
By using CICS multiregion operation (MRO), CICS systems that are running in the same z/OS image, or
in the same z/OS sysplex, can communicate with each other. MRO does not support communication
between a CICS system and a non-CICS system, such as IMS. MRO does not need networking
facilities.
Intersystem communication
CICS provides intercommunications facilities for intersystem communication over SNA (ISC over SNA)
and IP interconnectivity (IPIC), so that you can communicate with external systems.
• CICS provides intersystem communication over a TCP/IP network. This form of communication is
called IP interconnectivity or IPIC. IPIC provides similar capabilities and qualities of service to those
provided by ISC over SNA.
• Intersystem communication over SNA (ISC over SNA) allows communication between CICS and
non-CICS systems or CICS systems that are not in the same z/OS image or sysplex. These
intercommunication facilities can also be used between CICS regions in the same z/OS image or
sysplex.
The CICS-supplied mirror program DFHMIRS is defined as a threadsafe program. For supported CICS
facilities, over IPIC connections only, the remote CICS region uses a threadsafe mirror transaction
and runs the request on an L8 open TCB whenever possible. For threadsafe applications that issue
commands for functions on remote CICS systems using IPIC connections, the reduction in TCB
switching improves application performance compared to other intercommunication methods. The
use of open TCBs also provides significant potential throughput improvements between CICS regions.
For more information about CICS intercommunication, see Getting started with intercommunication and
Introduction to CICS intercommunication.

IPIC high availability feature

The IPIC high availability feature provides a single point of access to a cluster of CICS TS regions via
a TCP/IP network. This ensures resilience of access to the cluster as a whole, for both planned and
unplanned outages of individual regions within the cluster. For more information, see IPIC high availability
feature.

Dynamic transaction routing

When you define transactions to CICS, you can describe them as remote or local. Local transactions
are always executed in the terminal-owning region; remote transactions can be routed to other regions
connected to the terminal-owning region by IPIC, MRO, or APPC (LUTYPE6.2) ISC links. Using dynamic
transaction routing across a CICSplex, compared with static routing, can improve performance and
availability.
For more information about dynamic transaction routing, see Dynamic transaction routing. For more
information about writing a dynamic routing program, see Writing a dynamic routing program.
CICSPlex SM provides a dynamic routing program that supports both workload routing and workload
separation.

Chapter 17. Migrating CICS to a Parallel Sysplex 527

 Distributed program link
CICS distributed program link enables CICS application programs to run programs that are in other
CICS regions by shipping program-control LINK requests. This allows you to write an application without
knowledge of the location of the requested programs. For more information, see Distributed Program Link
(DPL).

CICS Interdependency Analyzer for z/OS (CICS IA)

CICS Interdependency Analyzer (CICS IA®) is a productivity tool that is used to discover and analyze CICS
resources and identify relationships between them.
CICS IA dynamically discovers runtime relationships among key resources within your CICS system. It
does this by monitoring applications for API and SPI commands along with optional Db2, IMS, IBM MQ,
and COBOL calls to give you a complete picture of your application and the interactions and resources
that are referenced along with their inter-relationship. CICS IA can help you analyze applications for
Threadsafe considerations to improve the overall execution efficiency. CICS IA can help you analyze
applications for affinities, which might impact the roll-out of CICS applications into a Parallel Sysplex.
For more information about CICS IA, see CICS Interdependency Analyzer for z/OS.
For more information about threadsafe programs, see Threadsafe programs.
For more information about affinities, see Affinity and “Application affinities” on page 528.

CICS Deployment Assistant for z/OS (CICS DA)

CICS Deployment Assistant (CICS DA) can be used to discover running CICS regions and their connectivity
to other subsystems such as Db2 and IBM MQ. It also can assist in building the CICSplex infrastructure
and setting up the workload management infrastructure.
For more information about CICS DA, see CICS Deployment Assistant for z/OS

Planning for migrating CICS to a Parallel Sysplex

You might need to change the way you run your CICS applications to fully achieve the benefits from a
Parallel Sysplex environment.
There are two major areas to focus on if you want to achieve the maximum benefit from a Parallel Sysplex:
• Affinities
CICS transactions use many techniques to pass data from one to another. Certain techniques require
that the transactions that are exchanging data execute in the same CICS region and therefore impose
restrictions on the dynamic routing of transactions. If transactions exchange data in ways that impose
such restrictions, there is said to be an affinity between them. Any affinity imposes restrictions on
the dynamic routing of transactions and on workload balancing, and can have a negative impact on
application availability. Where possible affinities should be avoided.
• Workload routing and management
The aims of workload routing and management in a Parallel Sysplex are to optimize processor capacity,
while meeting application response time and availability goals. To achieve this, the workload must be
dynamically routed to where it is most appropriate, based on the most up-to-date information about
system and subsystem availability and load.

Application affinities
To fully realize the benefits of Parallel Sysplex for CICS, you must remove as many affinities as possible,
because you do not want any transaction to be tied to the availability of any single CICS region.
To achieve your availability goals, you need to be able to maintain application availability across both
planned and unplanned CICS region outages. By removing all affinities, and providing multiple regions

528 CICS TS for z/OS: Configuring CICS

with the same capabilities, you can deliver service to all CICS transactions regardless of which CICS
regions are active or inactive.
There are three categories of affinity:
• Inter-transaction affinity
An inter-transaction affinity is an affinity between two or more CICS transactions. It is caused by the
transactions that use techniques to pass information between one another or to synchronize activity
between one another in a way that requires the transactions to execute in the same CICS region.
Inter-transaction affinities, which impose restrictions on the dynamic routing of transactions, can occur
under the following circumstances:
– One transaction terminates and leaves state data in a place that a second transaction can access only
by running in the same CICS region as the first transaction.
– One transaction creates data that a second transaction accesses while the first transaction is still
running. For this to work safely, the first transaction usually waits on an event, which the second
transaction posts when it has read the data that the first transaction created. This synchronization
technique requires that both transactions are running in the same CICS region.
• Transaction-system affinity
A transaction-system affinity is an affinity between a transaction and a particular CICS region. It is
caused by the transaction interrogating or changing the properties of the CICS region. Transactions with
an affinity to a particular CICS region, rather than to another transaction, are not eligible for dynamic
transaction routing. Typically, they are transactions that use CICS SPI commands, such as EXEC CICS
INQUIRE or SET, or that depend on global user exit programs.
• Unit of Work
A Unit of Work affinity is where there are multiple requests in the same transaction (UOW) that update a
shared resource. For example, a Db2 row or a VSAM record.
The restrictions on dynamic routing that is caused by transaction affinities depend on the duration and
scope of the affinities. The ideal situation is for there to be no transaction affinity at all, which means that
there is no restriction in the choice of available target regions. However, even when transaction affinities
do exist, there are limits to the scope of these affinities that are determined by:
• Affinity relations: The most important are global, LU-name, and user ID, because these determine how
the dynamic routing program can select a target region for an instance of the transaction.
• Affinity lifetime: determines when the affinity is ended.
As far as possible, remove affinities from your systems. Affinities can stop you from being able to
run instances of an application on multiple systems due to several of the required resources being
unavailable. In a CICSplex environment, if all affinities are removed, it is possible to keep the application
running on the other regions in the CICSplex, thus masking any outage from the users. When you examine
the affinities that exist, it is important to not look at a single application in isolation, but to consider all
applications, as one might place a restriction on others.
CICS provides a number of alternatives to help you address existing affinities, many of which can be used
without changes to your applications.
For more information about the impact of affinities in a CICSplex, see the IBM Redbooks publication
Parallel Sysplex Application Considerations SG24-6523. For more information about how to identify
affinities by using CICS Interdependency Analyzer, see the IBM Redbooks publication IBM CICS
Interdependency Analyzer SG24-6458. For more information about CICS Interdependency Analyzer, see
CICS Interdependency Analyzer for z/OS. For more information about affinities, see Affinity.
Use of the CICS ENQ capability can also introduce affinities.

Chapter 17. Migrating CICS to a Parallel Sysplex 529

 CICS ENQs
The CICS ENQ/DEQ capability can be used by CICS applications to serialize access to named resources.
Originally, the scope of the serialization was within a single CICS region. If a transaction wanted exclusive
access to a resource, it might issue the ENQ command, make whatever changes it wanted (with the
knowledge that no-one else could be doing anything with that resource), and then issue the DEQ to
release serialization. While all transactions that have an interest in that resource run in the same CICS
region, then this is fine. However, it creates an affinity between all those transactions and that single
CICS region. If a transaction in another CICS region tries to change that resource, it is not aware of the
serialization that is held by the transaction in the original region.
To address this affinity, CICS provides the ability for the system programmer to specify that serialization
requests for selected resources be externalized to GRS and therefore treated as sysplex-wide resources.
These resources are defined by using ENQMODEL definitions. If a resource is defined by using ENQMODEL
to be a sysplex-wide resource, you can now run the transactions that have an interest in that resource in
many CICS regions, and all are aware of any serialization that results from a program that issues an ENQ
request. The important point is that no application changes are required, as the control of whether the
resource is to be treated as a local resource or a sysplex resource is at the CICS level.
For more information about the use of global ENQs and DEQs, see Using ENQ and DEQ commands
with ENQMODEL resource definitions. For information about setting up the ENQMODEL definitions, see
ENQMODEL resources.

CICS workload routing and management

CICS provides a number of capabilities for automatically and efficiently distributing transactions within a
Parallel Sysplex.
When work arrives in CICS a number of things can happen:
• The request can run entirely within a single CICS region.
• But, typically, in a high-availability Parallel Sysplex, some or all of the request is routed.
If you remove all affinities from your CICS applications, any transaction is eligible to run in any available
CICS region. However, to maintain availability, transactions must be automatically routed as quickly as
possible to the most appropriate CICS region.
There are three main components that are involved in managing a CICS workload in a Parallel Sysplex:
• CICSPlex SM
You provide CICSPlex SM with the CICS-specific workload specifications and definitions that it needs
to support both workload management and workload separation in the CICSplex. These workload
specifications and definitions ensure that CICSPlex SM has all the necessary information about the
transactions that comprise the CICSplex workload, and about the application-owning regions that are
available to process the work.
• A CICS dynamic routing program
You need a dynamic transaction routing program that can use the services of CICSPlex SM and route
transactions to the appropriate application-owning regions. If you implement CICSPlex SM, you can use
the dynamic transaction routing program that it provides.
• The z/OS workload manager
You provide the workload manager with a service definition, which z/OS needs to ensure that it makes
the necessary resources available to the CICS regions and associated subsystems that ultimately
process the user transactions. The z/OS service definition must cover the workload for the entire
sysplex, so that z/OS can allocate resources for all types of work; online, batch, and system-related.
The service definition is primarily needed for goal-oriented workload management.

530 CICS TS for z/OS: Configuring CICS

CICS topology and session balancing
To maximize availability in a Parallel Sysplex, you need multiple CICS regions capable of accepting an
initial session connection request.
Provide multiple terminal owning regions (TORs) so that users can still log on if one TOR needs to be
stopped. If possible, have TORs on every CPC (central processing complex) in the CICSplex, so that if
one CPC is down, users can still access CICS via the TORs on the other CPC. Ideally, have more than one
TOR in each system, so that if one TOR is down, you do not end up with all the CICS sessions on other
members of the sysplex, and none on the system where the TOR is down.
Having multiple session-owning regions is not enough. You also need a mechanism where new logon
requests are automatically balanced across the available regions. For TCP/IP connections, use Sysplex
Distributor. For information about TCP/IP networking in a sysplex, see TCP/IP in a sysplex in z/OS
Communications Server: IP Configuration Guide. For SNA, use VTAM Generic Resources.

Dynamic transaction routing

To fully exploit Parallel Sysplex, transactions must be dynamically routed to the most appropriate region.
The traditional CICS MRO model is that one set of CICS regions own the session with the user, and
transactions started by the user are then sent to another region for execution. The decision about which
target region to select is controlled by the dynamic transaction routing exit. You can write your own
program to fulfil this role, or you can use the exit that is provided byCICSPlex SM.
For more information about dynamic transaction routing, see Dynamic transaction routing, and for more
information about writing your own dynamic routing program, see Writing a dynamic routing program.
CICSPlex SM dynamic routing is discussed under CICSPlex SM workload management.

CICSPlex SM workload management

CICSPlex SM workload management can dynamically route transactions and programs to the CICS region
that is the most appropriate at the time, taking into account any transaction affinities and workload
separation definitions that exist.
CICSPlex SM workload management takes account of three main criteria when it selects a target for the
workload:
• Routing
The process by which it decides the most appropriate target region to distribute the work to, assuming:
– The work could be sent to any of the target regions.
– The work does not impose any constraints on the distribution.
– In cooperation with z/OS Workload Manager, the region that is most likely to fulfill the response time
goals.
• Workload separation
The process of distributing specified work to a specific set of target regions.
– For example, separation of work by application type.
• Affinity management
Routing workloads that have existing dependencies declared for them.
– For example, state data that is maintained in a single region.
Eliminate all affinities if at all possible.
Workload management makes the best use of the available CICS systems, and provides opportunities for
increased throughput, performance, and region health by routing transactions or programs among a group
of target regions according to the availability, performance, and load of those target regions.
The CICSPlex SM workload management function uses a user-replaceable dynamic routing program,
EYU9XLOP, to identify which target region runs a work request that originates in a requesting region. The

Chapter 17. Migrating CICS to a Parallel Sysplex 531

 region where the decision is made is called a routing region. The same region can be both the requesting
and the routing region. For more information about dynamic routing with CICSPlex SM, and dynamic
routing program EYU9XLOP, see Dynamic routing with CICSPlex SM.
The target region can be selected by using one of four algorithms:
• The queue algorithm routes work requests to the target region that has the shortest queue of work, is
least affected by conditions such as short-on-storage, and is the least likely to cause the transaction to
abend.
• The goal algorithm routes work requests to the target region that is best able to meet the transaction's
response time goal, as predefined in z/OS Workload Manager.
• The link neutral queue (LNQUEUE) algorithm corresponds to the queue algorithm, except that the type
of connection between the routing and target region is not considered.
• The link neutral goal (LNGOAL) algorithm corresponds to the goal algorithm, except that the type of
connection between the routing and target region is not considered.
For more information about CICSPlex SM workload management, see Managing workloads through
CICSPlex SM. For more information about configuring CICSPlex SM workload management, see
Configuring workload management.

Optimizing CICS workload routing

In a Parallel Sysplex, the coupling facility can be used to store region status information, and this enables
routing decisions to be taken on more up to date information.
CICS dynamic workload management takes advantage of the Coupling Facility to store current region
status information posted directly from CICS. This allows routing decisions to be made based on more
up-to-date information, regardless of whether the routing and target regions are in the same z/OS system.
To enable this capability, every region in the CICSplex must have a region server address space, and
the regions must be defined as running in optimized mode by using the CICSPlex SM CSYSDEF view,
specifying WLM optimization enablement as ENABLED. For information about the attributes in this view,
and all attributes and actions for this resource, see .
For more information about CICSPlex SM sysplex optimized workload management, see Optimized
dynamic workload routing implementation and Sysplex optimized workload management learning path .

CICSPlex SM transaction abend thresholds

You can use CICSPlex SM to automatically route work away from regions that are experiencing high
transaction abend rates.
In a CICSplex where multiple regions can run each transaction, you can use CICSPlex SM to automatically
route work away from regions that are experiencing high transaction abend rates. For example, an AOR
whose Db2 subsystem is abended. Any Db2 transactions that are routed to that AOR abend until DB2® is
available again.
In situations like this, the CICSPlex SM ABENDTHRESH and ABENDCRIT parameters can be used to
route transactions away from a region where they are likely to fail. For more information about these
parameters, see Administering CICSPlex SM.

z/OS Workload Manager: region and transaction goals

z/OS Workload Manager can manage CICS work toward a region goal or a transaction response time goal.
You can choose which goal is used.
When you choose to manage toward a region goal, z/OS Workload Manager uses the goal for the
service class that is assigned to the CICS address space under the JES or STC classification rules.
When you choose to manage towards a transaction goal, z/OS Workload Manager uses the goals for the
service classes that are assigned to transactions or groups of transactions under the CICS subsystem
classification rules. You can select which mode to use when you are working with the JES or STC
classification rules.

532 CICS TS for z/OS: Configuring CICS

When you manage towards a transaction goal, z/OS Workload Manager does not directly manage resource
allocations for the transactions. Instead, it makes calculations to assign appropriate resources to the
CICS regions that can run the transactions. This can work less well if regions have a diverse mix of
transactions and response time goals. In this situation, managing toward a region goal might work better.
Sometimes, the processing for a single work request requires more than one transaction in the CICS
region. For example, up to four transactions, with different transaction identifiers, might be needed to
process an inbound SOAP request in a CICS provider region. Take this into account when you decide
whether to use a transaction goal or a region goal.
You can optionally use RMF to report on transaction response times, but still manage the CICS work at
the region level. This is documented in the IBM Redbooks publication System Programmer's Guide to:
Workload Manager SG24-6472 in the section titled 11.5 Reporting.

CICS and Automatic Restart Manager

The z/OS Automatic Restart Manager (ARM) provides the ability to automatically restart address spaces,
either after an address space failure or a system failure. You can use ARM to restart a CICS region,
following a region failure.
Whether you use ARM to restart CICS on an alternative system following a system failure depends
on whether you use ARM to restart any connected subsystems, for example, Db2, on another system.
Assuming that you have a number of instances of each CICS region type on every member of the sysplex,
it should not be necessary to start CICS regions on another image from the perspective of providing a
transaction processing capability. However, if you restart a connected subsystem on another system, it
might be necessary to also restart any CICS regions that were connected to that subsystem to resolve
INDOUBT units of work. If you do not do this, locks associated with these units of work are not released,
potentially impacting other transactions that try to use those resources.
In ARM, you can specify a group of address spaces that must all be restarted on the same system if there
is a system failure. If you use ARM to restart Db2 elsewhere, include the CICS regions that are associated
with that Db2 in the same group.

Chapter 17. Migrating CICS to a Parallel Sysplex 533

534 CICS TS for z/OS: Configuring CICS
Chapter 18. Feature toggles
Feature toggles make it easier for you to make the configuration changes that are necessary to enable
new capabilities, particularly for capabilities that are delivered between releases of CICS TS. This page
lists the feature toggles available in CICS TS 6.1.
• For an introduction to feature toggles, see CICS continually enhanced capabilities and feature toggles.
• For a summary of changes to feature toggles by release, see Changes to feature toggles.
• For configuration information, see Specifying feature toggles and the information that is linked for each
feature toggle below.

Feature toggles for CICS Transaction Server for z/OS

Feature toggle
Capability
com.ibm.cics.bms.ids={true|false}
Allows CICS to detect if a 3270 emulator has invalidly modified a protected field generated by a BMS
map.
Find out more: Configuring the BMS 3270 Intrusion Detection Service
com.ibm.cics.cmci.jvmserver={true|false}
Allows you to set up the CMCI without the CMCI JVM server.
Find out more: Setting up CMCI with CICSPlex SM
com.ibm.cics.cpsm.bas.largecicsplex={true|false}
Allows you to constrain large resource deployments lists for BAS to a single data space instead of
spreading across multiple data spaces.
com.ibm.cics.cpsm.wlm.botrsupd.enabled={true|false}
Allows you to disable updates to the Coupling Facility when the task load falls below the lower tier
threshold of the CICSPlex SM tuning parameter, BOTRSUPD.
Find out more: Region status server, bottom-tier parameter (BOTRSUPD)
com.ibm.cics.cpsm.wlm.surgeresist={true|false}
When applied to CICSPlex SM WLM routing regions, this feature toggle takes effect for the QUEUE and
GOAL WLM algorithms when using CICSPlex SM sysplex optimized workload routing. It has no effect
when applied to target regions.
When the feature toggle is set to true, surges of extremely high frequency, short duration transactions
can be mitigated by reducing the likelihood that recently selected target regions are reselected.
Enabling this feature toggle increases the average routing cost per transaction, but restores the
routing behavior of CICSPlex SM at CICS TS 5.6 before APAR PH30768 is applied.
Find out more: Learn more about the changes to CICSPlex SM sysplex optimized workload routing
behavior in What's New.
com.ibm.cics.mvssm.mon.interval={0|60,1-60}
Allows you to set the MVS monitor sampling interval.
Find out more: Setting up for CICS MVS storage monitoring
com.ibm.cics.mvssm.sos24.minavailable.contiguous={32,1-1024}
Allows you to set the minimum contiguous storage available in unallocated 24-bit MVS storage.
Find out more: Setting up for CICS MVS storage monitoring
com.ibm.cics.mvssm.sos24.minavailable.total={64,1-1024}
Allows you to set the minimum total amount of unallocated 24-bit MVS storage.
Find out more: Setting up for CICS MVS storage monitoring

© Copyright IBM Corp. 1974, 2022 535

 com.ibm.cics.mvssm.sos31.minavailable.contiguous={64,1-16384}
Allows you to set the minimum contiguous storage available in unallocated 31-bit MVS storage.
Find out more: Setting up for CICS MVS storage monitoring
com.ibm.cics.mvssm.sos31.minavailable.total={128,1-16384}
Allows you to set the minimum total amount of unallocated 31-bit MVS storage.
Find out more: Setting up for CICS MVS storage monitoring
com.ibm.cics.mvssm.sos.wait={true|false}
Allows you to stop CICS suspending tasks during an short-on-storage (SOS) event, if a task wait for
you is worse than the CICS address space going SOS.
Find out more: Setting up the CICS SOS wait feature
com.ibm.cics.rls.delete.ridfld={true|false}
To support migration from non-RLS to RLS access mode, allows you to achieve the local VSAM
CILOCK=NO behavior for RLS files. This avoids the potential of AFCG abends when you use DELETE
RIDFLD on RLS files.
Find out more: VSAM RLS
com.ibm.cics.sm.iep={true|false}
Enables Instruction Execution Protection for eligible DSAs. IEP is supported on z/OS 2.4 and above.
z/OS 2.4 and z/OS 2.5 requires APAR PH39134.
Find out more: Instruction execution protection
com.ibm.cics.spool.defaultjobuser={region|task}
Allows you to change the default job user ID of a JOB card that is written using a SPOOLWRITE
command without a USER parameter (the default is the CICS region ID) to be the signed-on user ID.
Find out more: User ID used for JCL job submission when no job user ID is specified on the job card
com.ibm.cics.spool.surrogate.check={true|false}
Enables surrogate user checking for spool commands.
Find out more: Surrogate user checking for spool commands in job submissions to the JES internal
reader
com.ibm.cics.web.defaultcipherfile={true|false}
Allows CICS to use a default cipher file for outbound web requests.
Find out more: Default cipher file for outbound web requests

536 CICS TS for z/OS: Configuring CICS

Notices
This information was developed for products and services offered in the United States of America. This
material might be available from IBM in other languages. However, you may be required to own a copy of
the product or product version in that language in order to access it.
IBM may not offer the products, services, or features discussed in this document in other countries.
Consult your local IBM representative for information on the products and services currently available in
your area. Any reference to an IBM product, program, or service is not intended to state or imply that
only that IBM product, program, or service may be used. Any functionally equivalent product, program, or
service that does not infringe any IBM intellectual property rights may be used instead. However, it is the
user's responsibility to evaluate and verify the operation of any non-IBM product, program, or service.
IBM may have patents or pending patent applications covering subject matter described in this
document. The furnishing of this document does not grant you any license to these patents. You can
send license inquiries, in writing, to:

IBM Director of Licensing

IBM Corporation
North Castle Drive, MD-NC119
Armonk, NY 10504-1785
United States of America

For license inquiries regarding double-byte character set (DBCS) information, contact the IBM Intellectual
Property Department in your country or send inquiries, in writing, to:

Intellectual Property Licensing

Legal and Intellectual Property Law
IBM Japan Ltd.
19-21, Nihonbashi-Hakozakicho, Chuo-ku
Tokyo 103-8510, Japan

INTERNATIONAL BUSINESS MACHINES CORPORATION PROVIDES THIS PUBLICATION “AS IS”

WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED
TO, THE IMPLIED WARRANTIES OF NON-INFRINGEMENT, MERCHANTABILITY, OR FITNESS FOR A
PARTICULAR PURPOSE. Some jurisdictions do not allow disclaimer of express or implied warranties in
certain transactions, therefore this statement may not apply to you.
This information could include technical inaccuracies or typographical errors. Changes are periodically
made to the information herein; these changes will be incorporated in new editions of the publication.
IBM may make improvements and/or changes in the product(s) and/or the program(s) described in this
publication at any time without notice.
Any references in this information to non-IBM websites are provided for convenience only and do not in
any manner serve as an endorsement of those websites. The materials at those websites are not part of
the materials for this IBM product and use of those websites is at your own risk.
IBM may use or distribute any of the information you supply in any way it believes appropriate without
incurring any obligation to you.
Licensees of this program who want to have information about it for the purpose of enabling: (i) the
exchange of information between independently created programs and other programs (including this
one) and (ii) the mutual use of the information which has been exchanged, should contact

IBM Director of Licensing

IBM Corporation
North Castle Drive, MD-NC119 Armonk,
NY 10504-1785
United States of America

© Copyright IBM Corp. 1974, 2022 537

 Such information may be available, subject to appropriate terms and conditions, including in some cases,
payment of a fee.
The licensed program described in this document and all licensed material available for it are provided
by IBM under terms of the IBM Client Relationship Agreement, IBM International Programming License
Agreement, or any equivalent agreement between us.
The performance data discussed herein is presented as derived under specific operating conditions.
Actual results may vary.
Information concerning non-IBM products was obtained from the suppliers of those products, their
published announcements or other publicly available sources. IBM has not tested those products and
cannot confirm the accuracy of performance, compatibility or any other claims related to non-IBM
products. Questions on the capabilities of non-IBM products should be addressed to the suppliers of
those products.
This information contains examples of data and reports used in daily business operations. To illustrate
them as completely as possible, the examples include the names of individuals, companies, brands, and
products. All of these names are fictitious and any similarity to actual people or business enterprises is
entirely coincidental.
COPYRIGHT LICENSE:
This information contains sample application programs in source language, which illustrate programming
techniques on various operating platforms. You may copy, modify, and distribute these sample programs
in any form without payment to IBM, for the purposes of developing, using, marketing or distributing
application programs conforming to the application programming interface for the operating platform
for which the sample programs are written. These examples have not been thoroughly tested under
all conditions. IBM, therefore, cannot guarantee or imply reliability, serviceability, or function of these
programs. The sample programs are provided "AS IS", without warranty of any kind. IBM shall not be
liable for any damages arising out of your use of the sample programs.

Programming interface information

IBM CICS supplies some documentation that can be considered to be Programming Interfaces, and some
documentation that cannot be considered to be a Programming Interface.
Programming Interfaces that allow the customer to write programs to obtain the services of CICS
Transaction Server for z/OS, Version 6 Release 1 (CICS TS 6.1) are included in the following sections
of the online product documentation:
• Developing applications
• Developing system programs
• CICS TS security
• Developing for external interfaces
• Application development reference
• Reference: system programming
• Reference: connectivity
Information that is NOT intended to be used as a Programming Interface of CICS TS 6.1, but that might
be misconstrued as Programming Interfaces, is included in the following sections of the online product
documentation:
• Troubleshooting and support
• CICS TS diagnostics reference
If you access the CICS documentation in manuals in PDF format, Programming Interfaces that allow the
customer to write programs to obtain the services of CICS TS 6.1 are included in the following manuals:
• Application Programming Guide and Application Programming Reference
• Business Transaction Services

538 Notices
• Customization Guide
• C++ OO Class Libraries
• Debugging Tools Interfaces Reference
• Distributed Transaction Programming Guide
• External Interfaces Guide
• Front End Programming Interface Guide
• IMS Database Control Guide
• Installation Guide
• Security Guide
• CICS Transactions
• CICSPlex System Manager (CICSPlex SM) Managing Workloads
• CICSPlex SM Managing Resource Usage
• CICSPlex SM Application Programming Guide and Application Programming Reference
• Java Applications in CICS
If you access the CICS documentation in manuals in PDF format, information that is NOT intended to
be used as a Programming Interface of CICS TS 6.1, but that might be misconstrued as Programming
Interfaces, is included in the following manuals:
• Data Areas
• Diagnosis Reference
• Problem Determination Guide
• CICSPlex SM Problem Determination Guide

Trademarks
IBM, the IBM logo, and ibm.com® are trademarks or registered trademarks of International Business
Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be
trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at
Copyright and trademark information at www.ibm.com/legal/copytrade.shtml.
Adobe, the Adobe logo, PostScript, and the PostScript logo are either registered trademarks or
trademarks of Adobe Systems Incorporated in the United States, and/or other countries.
Apache, Apache Axis2, Apache Maven, Apache Ivy, the Apache Software Foundation (ASF) logo, and the
ASF feather logo are trademarks of Apache Software Foundation.
Gradle and the Gradlephant logo are registered trademark of Gradle, Inc. and its subsidiaries in the United
States and/or other countries.
Intel, Intel logo, Intel Inside, Intel Inside logo, Intel Centrino, Intel Centrino logo, Celeron, Intel Xeon,
Intel SpeedStep, Itanium, and Pentium are trademarks or registered trademarks of Intel Corporation or
its subsidiaries in the United States and other countries.
Java and all Java-based trademarks and logos are trademarks or registered trademarks of Oracle and/or
its affiliates.
The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive
licensee of Linus Torvalds, owner of the mark on a worldwide basis.
Microsoft, Windows, Windows NT, and the Windows logo are trademarks of Microsoft Corporation in the
United States, other countries, or both.
Red Hat®, and Hibernate® are trademarks or registered trademarks of Red Hat, Inc. or its subsidiaries in
the United States and other countries.
Spring Boot is a trademark of Pivotal Software, Inc. in the United States and other countries.

Notices 539
 UNIX is a registered trademark of The Open Group in the United States and other countries.
Zowe™, the Zowe logo and the Open Mainframe Project™ are trademarks of The Linux Foundation.
The Stack Exchange name and logos are trademarks of Stack Exchange Inc.

Terms and conditions for product documentation

Permissions for the use of these publications are granted subject to the following terms and conditions.
Applicability
These terms and conditions are in addition to any terms of use for the IBM website.
Personal use
You may reproduce these publications for your personal, noncommercial use provided that all
proprietary notices are preserved. You may not distribute, display or make derivative work of these
publications, or any portion thereof, without the express consent of IBM.
Commercial use
You may reproduce, distribute and display these publications solely within your enterprise provided
that all proprietary notices are preserved. You may not make derivative works of these publications,
or reproduce, distribute or display these publications or any portion thereof outside your enterprise,
without the express consent of IBM.
Rights
Except as expressly granted in this permission, no other permissions, licenses or rights are granted,
either express or implied, to the publications or any information, data, software or other intellectual
property contained therein.
IBM reserves the right to withdraw the permissions granted herein whenever, in its discretion, the use
of the publications is detrimental to its interest or, as determined by IBM, the above instructions are
not being properly followed.
You may not download, export or re-export this information except in full compliance with all
applicable laws and regulations, including all United States export laws and regulations.
IBM MAKES NO GUARANTEE ABOUT THE CONTENT OF THESE PUBLICATIONS. THE PUBLICATIONS
ARE PROVIDED "AS-IS" AND WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR
IMPLIED, INCLUDING BUT NOT LIMITED TO IMPLIED WARRANTIES OF MERCHANTABILITY, NON-
INFRINGEMENT, AND FITNESS FOR A PARTICULAR PURPOSE.

IBM online privacy statement

IBM Software products, including software as a service solutions, (Software Offerings) may use cookies or
other technologies to collect product usage information, to help improve the end user experience, to tailor
interactions with the end user or for other purposes. In many cases no personally identifiable information
(PII) is collected by the Software Offerings. Some of our Software Offerings can help enable you to collect
PII. If this Software Offering uses cookies to collect PII, specific information about this offering’s use of
cookies is set forth below:
For the CICSPlex SM Web User Interface (main interface):
Depending upon the configurations deployed, this Software Offering may use session and persistent
cookies that collect each user’s user name and other PII for purposes of session management,
authentication, enhanced user usability, or other usage tracking or functional purposes. These cookies
cannot be disabled.
For the CICSPlex SM Web User Interface (data interface):
Depending upon the configurations deployed, this Software Offering may use session cookies that
collect each user's user name and other PII for purposes of session management, authentication, or
other usage tracking or functional purposes. These cookies cannot be disabled.
For the CICSPlex SM Web User Interface ("hello world" page):
Depending upon the configurations deployed, this Software Offering may use session cookies that do
not collect PII. These cookies cannot be disabled.

540 Notices
For CICS Explorer:
Depending upon the configurations deployed, this Software Offering may use session and persistent
preferences that collect each user’s user name and password, for purposes of session management,
authentication, and single sign-on configuration. These preferences cannot be disabled, although
storing a user's password on disk in encrypted form can only be enabled by the user's explicit action
to check a check box during sign-on.
If the configurations deployed for this Software Offering provide you, as customer, the ability to collect PII
from end users via cookies and other technologies, you should seek your own legal advice about any laws
applicable to such data collection, including any requirements for notice and consent.
For more information about the use of various technologies, including cookies, for these purposes, see
IBM Privacy Policy and IBM Online Privacy Statement, the section entitled Cookies, Web Beacons and
Other Technologies and the IBM Software Products and Software-as-a-Service Privacy Statement.

Notices 541
542 CICS TS for z/OS: Configuring CICS
Index

Numerics autoinstall (continued)

terminal definitions 338
3270 bridge transaction routing restriction 282
bridge facility properties 436 autoinstall control program
3270 terminals (non-SNA) for connection autoinstall 295
eligible for autoinstall 285 for program autoinstall 299
3614 and 3624 devices autoinstall model table (AMT) 283
ineligible for autoinstall 285 autoinstall model terminal definitions
4-tuple records 462 installing 300
autoinstalling
IPIC connections 296
A journals 300
ADYN, dynamic allocation transaction 132 MVS consoles 290
agile service delivery programs, map sets, and partition sets 296
creating 399 z/OS Communications Server terminals
AIBRIDGE 433 280
alias (CICS ONC RPC) Automatic Enable option 463, 474
definition 455 automatic installation (autoinstall) 6
specifying 466 automatic journaling 386, 387
specifying EDF terminal ID 466 automatic logoff 288
transaction definition 455 automatic sign-off 288
ALLOCATE_PIPE command automatic start 170, 194
invocation of DFHXCURM during 446 automatic TCTTE deletion 288
alternate index 498 automatic teller machines (3614 and 3624)
alternate indexes 386 ineligible for autoinstall 285
AMT (autoinstall model table) 283 automatic transaction initiation
ANYNET software 453 autoinstalled terminals 280
AOR 394 lock on TCT entry preventing deletion 285
AOR (Application-owning region) 2 autostart override record 110
API improvements 176 auxiliary temporary storage data set
application bundles 307 control interval size 93
Application owning region (AOR) 394 job control statement for CICS execution 93
Application-owning region 2 job control statements to define 92
applications number of control intervals 94
bundles 309 space considerations 93
APPLID operand auxiliary trace data sets
DFHSIT job control statements for CICS execution 118
for controlling access to groups and lists 14 job control statements to allocate 120
ARMREGISTERED, named counter server 263
ASLTAB (z/OS Communications Server macro) 339 B
Atom feed 309
AUTOCONNECT attribute backout
TYPETERM 281, 288, 290 for temporary storage 502
autoinstall for transient data 499
and Communications server 282 backward recovery 494, 499, 502
and security 294 BASESCOPE 330
automatic TCTTE deletion batch jobs, querying the status of 445
effect on ATI 280 BDAM data sets
effect on TCTUA 281 creating and loading 130
effect on TLT 281 opening and closing 132, 133
eligible devices 285 BDAM files
ineligible devices 285 backout of 495
installing terminal resource definitions 338 benefits
logon process 282 of data tables 377
models 282 BIND security 384
QUERY function 282 BMS (basic mapping support)
recovery and restart 288 selecting versions of BMS 164

Index 543
BMS ROUTE requests CEMT main terminal transaction 123
autoinstalled terminals 280 CESF GOODNIGHT transaction 341
bridge CESF LOGOFF transaction 342
bridge facility definition 433 CESN transaction 344
system initialization parameters 433 changing local time 490
bridge (3270) channel-based service 309
bridge facility definition 433 characteristics of bundled resources 314
bridge facility properties 436 checking definitions of Db2 connection resources 351
FACILITYLIKE 433 checking definitions of Db2 entry resources 351
system initialization parameters 433 checking definitions of Db2 transaction resources 352
BRMAXKEEPTIME 433 checking terminal definitions 356
BSAM devices CI (control interval) 93
DD statements for 184, 340 CICS global catalog
bundle autoinstall models 282
platform 399 CICS journal utility program (DFHJUP) 108
bundle recovery 332 CICS management client interface
bundle resource interdependency 314 CICS region setup 416
bundle security 333 set up 403, 416
bundled LIBRARY resources 314 storage requirements 427
bundled PROGRAM resources 314 CICS ONC RPC data set 462
bundled TRANSACTION resources 314 CICS ONC RPC definition record 462
bundled zFS artifacts 320 CICS ONC RPC options 462
bundles CICS region 1
defining 307 CICS server support for system-managed processes 272
in platforms 330 CICS system group 1
scoping 330 CICS topology 1
types of application 309 CICS-maintained data table
Business Application Services, CPSM 5 data integrity 386
BWO (backup while open) journaling 386
disabling activity keypointing 91 performance 377
introduction 89 resource definition 385
restrictions 91 CICS-supplied TYPETERM definitions
storage management facilities 90 AUTOCONNECT attribute 281, 288
CICSplex 1, 394
CICSPlex SM 176
C CICSSVC, parameter of DFHXCOPT 449
CADS 81 CLSDST, issued by CICS at logon 282
card reader 340 CLT (command list table)
card reader and line printer 340 CLT (command list table) 302
cataloged procedures CMAC support, messages data set 137
starting CICS as a batch job 195 CMCI
starting CICS as a started task 191, 195 DEFAULTWARNCNT 412
cataloging set up 403
program autoinstall 298 setting record count warnings 412
CEDA DEFINE FILE command storage requirements 427
description 387 CMCI JVM server 416
example for CMT 389 CMCIPORT 421
example for UMT 390 CMDSEC 455
LOG parameter 387 cold start
MAXNUMRECS parameter 387 nonrecovery of autoinstalled TCT entries 288
OPENTIME parameter 387 use of GRPLIST to re-create tables 346
RECORDFORMAT parameter 387 using to remove table entries 346
TABLE parameter 387 command list table (CLT)
CEDA transaction CLT (command list table) 302
defining consoles devices 343 command logs, RDO 80
installing SNA LU terminal definitions 338 command security 455
recovery and backup 77 commands
sharing a CSD between more than one CICS region 65 CEDA command syncpoint criteria 79
CEMT CEDA DEFINE 338
INQUIRE command 391 CEDA INSTALL GROUP(groupname) 338
SET command 391 DEFINE TERMINAL CONSNAME(name) 344
CEMT INQUIRE EXCI command 445 DEFINE TERMINAL CONSOLE(number) 344
CEMT INQUIRE TERMINAL DFHCSDUP INITIALIZE 345
lock on TCT entry 282 LIST ALL OBJECTS 69

544 CICS TS for z/OS: Configuring CICS

commands (continued) coupling facility data tables (continued)
MODIFY command 342 starting a server 218
RDO CEDA INSTALL 109 coupling facility list structures
REPRO, to run IDCAMS 126 for coupling facility data tables 219
valid for locked group 14 CPSM Business Application Services 5
commit process 347 CRPC transaction 458
CONFDATA, parameter of DFHXCOPT 449 CRPO transient data queue 457
configuring CSA (common service area) 48
agile service delivery 393 CSD
platform 393 sharing between releases 73
configuring CICS region 85 CSD (CICS system definition file)
CONNECT DD statements in CICS startup job 82
security checking 384 defining 65
connection autoinstall definitions for the Japanese language feature 83
and recovery and restart 296 dynamic allocation 82
autoinstall control program for 295 emergency restart and backout 79
CONNECTION definition job control statements for CICS execution 82
CONNTYPE attribute 442 job to define and initialize 67
PROTOCOL attribute 443 making the CSD available to CICS 82
connection manager (CICS ONC RPC) recovery and backup 76
definition 455 space for data set 66
panel format 460 CSD (CICS system definition) file
connection manager panels defining 497
DFHRP01 458 not used at restart 346
DFHRP02 462 use of multiple files for non-MRO CICS systems 14
DFHRP03 464 use of read-only file for production system 14
DFHRP04 458 CSD file
DFHRP06 471 installing
DFHRP10 461 at CICS initialization 346
DFHRP11 469 multiple CSD files 14
DFHRP14 474 CSFU, CICS file utility transaction 133, 135
DFHRP15 474 CSYSGRP 394
DFHRP17 476 CXRF queue 97
DFHRP18 476 CXRF transient data queue 98
DFHRP20 472
DFHRP21 475
DFHRP22 473
D
DFHRP2B 476 data definitions
DFHRP5 465 installing a limited number of 348
DFHRP5B 465 data facility hierarchical storage manager (DFHSM)
CONNTYPE attribute, CONNECTION definition 442 backup while open 89
consoles data format 467
autoinstalling 290 data integrity
console messages for CICS startup 197 of a CMT 386
DEFINE TERMINAL CONSNAME(name) command 344 of a UMT 387
DEFINE TERMINAL CONSOLE(number) command 344 data set
defining a TSO user 344 encryption 144
defining to CICS 342 data sets
devices 342 auxiliary temporary storage 92
entering system initialization parameters 169, 197 auxiliary trace 118
ineligible for autoinstall 285 BDAM 130
TSO user, defining as a console device 342 catalog data sets 109, 115
z/OS console as a CICS main terminal 342 CDBM SUPPORT data set 135
consumer transaction facility (3614 and 3624) created by DFHCMACI job 89
ineligible for autoinstall 285 created by DFHCOMDS job 88
control interval (CI) 93 created by DFHDEFDS job 88
converter (CICS ONC RPC) CSD 65
defining functions provided 466 debugging profiles
copybooks creating 139
DFH$TCTS 341 defining 139
coupling facility defining user files 131
managing storage 268 defining, transient data (extrapartition) 97
coupling facility data tables defining, transient data (intrapartition) 95
defining resources for 219 dump 120

Index 545
data sets (continued) deleting (continued)
dynamic allocation using CEMT 132 resource definitions from system tables
GTF data sets 89 at autoinstall log off 282
messages data set 137 TCT entry at log off (autoinstall) 282
MVS system data sets used by CICS 89 deploying platforms 400
SDUMP data sets 89 DEVTYPE macro (MVS) 122
SMF data sets 89 DFH$TCTS, copybook 341
transient data (extrapartition) 94 DFH$TDWT (transient data write-to-terminal sample
transient data (intrapartition) 94 program) 94
user data sets DFH99, sample DYNALLOC utility program 132
BDAM 130 DFHAUPLE procedure 448
closing 133 DFHAUXT auxiliary trace data set 118
defining to CICS 131 DFHBUXT auxiliary trace data set 118
loading VSAM data sets 126 DFHCCUTL, local catalog initialization utility program 116
opening 132, 133 DFHCOMP1, CSD resource definition group 74
VSAM 126 DFHCOMP2, CSD resource definition group 74
VSAM bases and paths 126 DFHCSDUP
data sets, extrapartition definitions for the Japanese language feature 83
input 501 DFHCSDUP offline utility 6
output 502 DFHCSDUP utility program
data space invoking as a batch program 278
use by data tables 377 DFHCSVC, the CICS type 3 SVC 201
data tables DFHCXRF data set, transient data extrapartition
closing 135 DD statements for 98
loading 135 in active CICS regions 98
opening 135 DFHDBFK data set
overview 134 job control statements to define and load 136
types of 134 DFHDCTG, group of transient data definitions 81
Data-owning region 2 DFHDPFMB
day-light saving time debugging profiles data set
changing clocks 491 creating 139
daylight saving time defining
impact on CICS 490 as remote files 142
DB2CONN as VSAM non-RLS files 141
installing and discarding 350 as VSAM RLS files 141
deadlock, transaction DFHDPFMP
effect of DTIMOUT 492 debugging profiles data set
debugging creating 139
preparing for 192 defining
debugging profiles data sets as remote files 142
creating 139 as VSAM non-RLS files 141
defining as VSAM RLS files 141
as remote files 142 DFHDPFMX
as VSAM non-RLS files 141 debugging profiles data set
as VSAM RLS files 141 creating 139
define DFHDTCV 384
ENQMODEL 352 DFHDTSVC 384
LIBRARY 353 DFHFCT macro
defining debugging profiles data sets SERVREQ operand 14
as remote files 142 DFHGCD, global catalog data set 110
as VSAM non-RLS files 141 DFHISTAR job 88
as VSAM RLS files 141 DFHJUP, CICS journal utility program 108
defining general log streams 479 DFHLCD, local catalog data set 116
defining recovery attributes DFHLIST startup list
files 495 DFHMISC 506
defining replication log streams 480 DFHMVRMS 384
defining system log streams DFHNCMN, named counter server region program 257
activity keypoints 484 DFHNCO macro 254
JOURNALMODELs 481 DFHNCOPT, named counter options table 254
model log streams (coupling facility) 481 DFHPEP
MVS log streams 480 defined in DFHMISC 506
preserving data integrity 480 DFHREST, user replaceable module 492
deleting DFHRSTAT 242
existing entry at installation 348 DFHSIT keywords and operands

546 CICS TS for z/OS: Configuring CICS

DFHSIT keywords and operands (continued) EXEC CICS CREATE commands 6
undefined keywords error message 163 EXEC CICS CSD commands 6
DFHSIT macro EXEC CICS START command
APPLID operand 14 autoinstalled terminals 280
GRPLIST operand 346 exits
START operand 346 XDUCLSE, dump global user exit 122, 124
DFHSM (data facility hierarchical storage manager) XDUOUT, dump global user exit 122, 124
backup while open 89 XDUREQ, dump global user exit 122, 124
DFHSNT macro XDUREQC, dump global user exit 122, 124
OPIDENT operand 14 external CICS interface (EXCI)
DFHSTART, sample startup procedure 182 defining connections 442
DFHTC2500, close terminal warning message 341 inquiring on the state of connections 445
DFHTC2507, close terminal warning message 341 user-replaceable module (DFHXCURM) 446
DFHTCT5$, sample TCT 341 extrapartition data set recovery
DFHTCTDY, dummy TCT 164 input data sets 501
DFHTEP, terminal error program 341 output data sets 502
DFHXCURM, user-replaceable module 446 extrapartition transient data 94
DFHXQMN system initialization parameter EYUSMSS
for pool list structure creation 207 CMCIPORT 421
DFHXQMN, TS server program 207 TCPIPADDRESS 421
disable processing TCPIPSSLCERT 421
types 471 TCPIPSSLCIPHERS 421
disabling CICS ONC RPC 471
discovering 176
domains
F
kernel 115 facilities
parameters 115 generalized trace facility (GTF) 89
DSA (dynamic storage areas) storage protection facilities 62
storage protection facilities 62 temporary storage 92
DTIMOUT option (DEFINE TRANSACTION) 492 FACILITYLIKE 433
dual-purpose resource definition 13 fast-path commands 458
dump data sets file
dump table facility 121 used as a data table 379
job control statements to allocate 123 file backout
space calculations 120 BDAM 495
dumps file definitions
controlling with dump table 121 recovery attribute consistency checking
effect of START= parameter 174 overriding open failures 498
duplicate resource definition names 348 File owning region (FOR) 394
DURETRY, parameter of DFHXCOPT 450 file security 384
dynamic allocation File-owning region 2
ADYN, dynamic allocation transaction 132 files
DFH99, sample DYNALLOC utility program 132 defining recovery attributes 493, 495
dynamic allocation of the CSD 82 external design considerations
dynamic routing use of application data 493
EXCI 441 multiple path updating 498
dynamic storage areas 21 FILSTAT operand 135
dynamic transaction backout 387 FOR 394
FOR (File-owning region) 2
E format of macros 301
forward recovery
emergency restart defining for VSAM files 495
recreation of tables 346 intrapartition transient data 500
temporary recovery of autoinstalled entries 288 temporary storage 503
enabling CICS ONC RPC 464
encryption
data sets 144
G
ENQMODEL definition gap 377
installing definitions 352 GCD (global catalog data set)
event processing 309 buffer space 113
EXCI description 109
dynamic routing 441 job control statement for CICS execution 110
static routing 441 job control statements to define and initialize 109
EXCI on CEMT INQUIRE command 445

Index 547
GCD (global catalog data set) (continued) intercommunication, resource definition for 13
space calculations 111 intrapartition transient data
generalized trace facility (GTF) 89 backout 499
generic connection forward recovery 500
definition of 443 recoverability 499
global catalog intrapartition transient data queues
at installation 346 defining the intrapartition data set 95
for resource definitions 169 IPCONN definitions
use in restart 169 installing 353
with autoinstall 283
global catalog data set (GCD)
buffer space 113
J
description 109 Japanese language feature
job control statement for CICS execution 110 installing definitions in the CSD 83
job control statements to define and initialize 109 Java applications 309
space calculations 111 JCL (job control language)
groups of resource definitions CICS startup
installing as a batch job 183
while CICS is running 348 as a started task 191
locked, valid commands 14 job control language (JCL)
GRPLIST for CICS as a batch job 183, 195
DFHSIT operand 346 for CICS as a started task 191, 195
not used at restart 346 job stream
GTF (generalized trace facility) 89 CICS startup 182
GTF, parameter of DFHXCOPT 450 jobs
DFHISTAR 88
I journaling
BWO 89
IDCAMS, AMS utility program 126 JOURNALMODEL definitions 103
IEV017 error message 163 journals
initial start autoinstalling 300
use of GRPLIST to re-create tables 346 for extrapartition transient data set recovery 501
using to remove table entries 346 offline programs for reading 490
initial state of data table JVM
defining by CEDA 387 Language Environment enclave 53
initialization (PLT) programs storage heaps 53
use of 501
initializing CICS
cold start 346
K
emergency restart 346 KSDS (key-sequenced data set)
initial start 346 with a UMT 386
warm start 346
input data sets 501
INQUIRE FILE command L
description 391
Language Environment 453
MAXNUMRECS parameter 391, 392
Language Environment runtime library, SCEERUN 183
TABLE parameter 391, 392
Language Environment runtime library, SCEERUN2 183
INSTALL command
LCD (local catalog data set)
to install a group of resource definitions 348
description 115
installation
job control statement for CICS execution 116
MVS considerations 384
job control statements to define and initialize 115
parameter list 383
use in restart 170
installation of resource definitions
Liberty JVM server 416
and deletion of existing entry 348
libraries
cold start 346
SCEERUN, Language Environment runtime library 183
emergency restart 346
SCEERUN2, Language Environment runtime library 183
initial start 346
LIBRARY definition
quiescing resources first 348
installing definitions 353
transient data queues 355
line printer 340
warm start 346
link-editing
INSTLN parameter 383
DFHXCOPT options table 448
integrity
using DFHAUPLE 448
of CMT data 386
list structure
of UMT data 387

548 CICS TS for z/OS: Configuring CICS

list structure (continued) map sets
storage considerations 257 autoinstalling 296
list structure, defining 242, 256 mapset definition 457
load modules MCT (monitoring control table) 301, 303
required for data tables 385 MDLTAB (z/OS Communications Server macro) 339
local catalog data set (LCD) MEMLIMIT parameter 181
description 115 messages
job control statement for CICS execution 116 console messages for CICS startup 197
job control statements to define and initialize 115 messages data set
use in restart 170 job control statements to define and load 137
LOCK GROUP command messages data set for CMAC facility 137
controlling access to groups 14 methods of resource definition 7, 8
LOCK LIST command MGCR macro, to issue MVS commands 345
controlling access to lists 14 MNPS 345
locked group, valid commands 14 model terminal support (MTS) 294
locks, internal MODIFY command 342
put on by CEMT INQUIRE TERMINAL 282 monitoring 174
log manager 98 monitoring control table (MCT) 301, 303
log of logs MSGCASE, parameter of DFHXCOPT 450
failures 490 MTS (model terminal support) 294
log streams multinode persistent sessions 345
mapping system log and journal names to 104 multiple CSD files 14
log-on process, with autoinstall 282 multiple files
logging with same source data set 386
defining CICS logs 98 MVS considerations 379, 384
defining CICS system logs 98 MVS consoles
defining dummy logs 99 autoinstalling 290
JOURNALMODEL definitions 103 MVS SDUMP macro 121
logical recovery 499 MVS START command, to start CICS 191, 195
logoff (autoinstall), deletion of TCT entry 282
LOGON
security check 383
N
LU 338 named counters
LU, defining 338 automatic restart manager parameters 260
LUTYPE 0 terminals controlling server regions 262
eligible for autoinstall 285 debug trace parameters 261
LUTYPE 1 terminals defining an options table 254
eligible for autoinstall 285 defining and starting server 257
LUTYPE 2 terminals deleting or emptying pools 264
eligible for autoinstall 285 dumping pool list structures 266
LUTYPE 3 terminals list structure parameters 260
eligible for autoinstall 285 list structure, defining 256
LUTYPE 4 terminals options table
eligible for autoinstall 285 defining 254
LUTYPE6.1 making available to CICS 256
CICS-CICS ISC links and sessions parameters 254
ineligible for autoinstall 285 parameters, server 258
CICS-IMS links and sessions server overview 252
ineligible for autoinstall 285 server parameters 258
MRO sessions SET command 262
ineligible for autoinstall 285 starting a server 251
unloading and reloading pools 265
M warning parameters 261
XES 262
macro definition 6 NETNAME attribute
macro definitions no entry in TCT for 282
format of 301 role in logging on with autoinstall 282
macros NEWSIT, system initialization parameter
ASLTAB (z/OS Communications Server macro) 339 effect on warm start 171
DEVTYPE (MVS macro) 122 nonblocking call type
MDLTAB (z/OS Communications Server macro) specifying 466
339 NOPS 345
MGCR (to issue MVS commands) 345 NTO (network terminal option) 285
MVS SDUMP 89

Index 549
O programs (continued)
autoinstalling 296
operator communication for initialization parameters 169, programs for CICS ONC RPC
197 defining in CICS 455
OPIDENT operand PROTOCOL attribute
DFHSNT CONNECTION definition 443
for controlling access to groups and lists 14 SESSIONS definition 443
OPNDST, issued by CICS at logon 282 PSDINT 345
OSGi bundles 309 PSTYPE 345
OSGi recovery 332
output data sets 502
overriding system initialization parameters
Q
from the console 169, 197 QUERY function
from the SYSIN data set 168 with autoinstall 282
overview of coupling facility data table server 218
overview of temporary storage data sharing server 204
R
P RACF
used as security manager 383
PARMSRCE parameter 176 RBA (relative byte address) 97
PARMTYPE parameter 176 RDO (resource definition online)
partition sets CICS system definition data set (CSD) 65
autoinstalling 296 read-only CSD file, for production system 14
performance RECEIVECOUNT attribute, SESSIONS definition 444
benefits of data tables 377 RECEIVEPFX attribute, SESSIONS definition 444
of a CMT 377 record count warnings 412
of a UMT 377 record-level sharing (RLS)
persistent message 503 VSAM data sharing 128
persistent message support 505 recovery
persistent sessions 345 backward 494, 499, 502
physical recovery 500 logical 499
pipe no recovery needed 500
invocation of DFHXCURM during ALLOCATE_PIPE 446 physical 500
pipeline terminals recovery and restart
ineligible for autoinstall 285 and connection autoinstall 296
planning for data tables 377, 384 and program autoinstall 299
PLATDEF 394, 400 autoinstall 288
platform recovery for transactions
creating 399 automatic restart using DFHREST 492
deploying 400 purging 492
PLATFORM 400 timeout for long waits 492
platform design 394 recovery of data tables
platform project 399, 400 defining by CEDA 387
platforms 394 recovery, OSGi bundles 332
PLT (program list table) 303 RECOVNOTIFY 345
postinitialization (PLT) programs RECOVOPTION 345
(initialization programs) referencing zFS artifacts 320
use of 501 region 1
prerequisites for CICS ONC RPC 453 REGION parameter 181
preset security 294 region status
printers starting a server 241
eligible for autoinstall 285 region status server
program autoinstall list structure, defining 242
and recovery and restart 299 region type 394
cataloging 298 Register from Data Set option 467
for autoinstall control program 299 registering 4-tuples 468
model definitions 298 registration
program error program (PEP) with CICS ONC RPC 468
CICS-supplied DFHPEP 506 with TCP/IP for MVS 468
editing 506 relative byte address (RBA) 97
omitting DFHPEP 507 RELOAD, named counter pool 265
user-supplied DFHPEP 506 REMOTENAME parameter 456
program list table (PLT) 181, 303 REMOTESYSTEM parameter 456
programs

550 CICS TS for z/OS: Configuring CICS

removing resource definitions from system tables samples (continued)
at a cold start 346 data for loading a BDAM data set 131
at an initial start 346 DFH$TDWT (transient data write-to-terminal program)
at autoinstall log off 282 94
resource checker (CICS ONC RPC) DFHSTART, sample startup procedure 182
specifying option 463, 473 DFHTCT5$, sample TCT 341
resource definition JCL to create and load a BDAM data set 130
attributes 3 sample job to define auxiliary data sets on disk 120
CONNECTION definition 442 scoping bundles 330
DEFINE FILE command 387 SCS printers
description 385 eligible for autoinstall 285
dual-purpose 13 SDLC 3767 devices
for intercommunication 13 eligible for autoinstall 285
methods of 7, 8 SDUMP data sets 89
overview 3 SDUMP macro 121
overview for a CMT 386 security
overview for a UMT 386 and autoinstall 294
SESSIONS definition 443 bundle resources 333
resource definition for intercommunication 13 different CSD files for non-MRO CICS systems 14
resource definition in CICS 455 LOCK and UNLOCK commands
resource definition online (RDO) controlling access to groups 14
CICS system definition data set (CSD) 65 controlling access to lists 14
command logs 80 preset 294
resource definitions read-only CSD file for production system 14
at system initialization resource security checking (RESSEC) 14
cold start 346 security checking
emergency restart 346 at AOR connect 384
initial start 346 at FOR logon 383
warm start 346 comparison with function shipping 383
committing 347 for data tables 383
installing 347 RACF considerations 383
installing in CICS system use of SAF 383
using the INSTALL command 348 selecting files
removing from system tables for use as data tables 379
at a cold start 346 SENDCOUNT attribute, SESSIONS definition 444
at an initial start 346 SENDPFX attribute, SESSIONS definition 445
at autoinstall log off 282 sequence numbers
resource security 455 See named counters 251
resource security checking (RESSEC) 14 sequential terminal devices
resources closing (quiescing) the devices 341
ways to define 8–10 coding input for 341
RESSEC 455 DFHTC2500, close terminal warning message 341
RESSEC (resource security checking) 14 DFHTC2507, close terminal warning message 341
RESSEC attribute end-of-file 341
TRANSACTION 14 terminating input data 341
restart server controller
emergency user ID 463, 473
recreation of tables 346 server controller (CICS ONC RPC)
temporary recovery of autoinstalled entries 288 definition 455
warm SESSIONS definition
nonrecovery of autoinstalled entries 288 PROTOCOL attribute 443
recreation of tables 346 RECEIVECOUNT attribute 444
RESTART option (DEFINE TRANSACTION) 492 RECEIVEPFX attribute 444
result set warning counts 412 SENDCOUNT attribute 444
RLS, record-level sharing SENDPFX attribute 445
VSAM data sharing 128 SET command, named counters 262
SET FILE command
description 391
S MAXNUMRECS parameter 391
SAF, System authorization facility TABLE parameter 391
used for security checking 383 setting up a CICS region 85
sample job streams SETXCF, delete named counter pool 264
CICS startup 182 SHAREOPTION, VSAM 386
samples sharing the CSD

Index 551
sharing the CSD (continued) static routing
protection by internal locks 71 EXCI 441
sharing between CICS regions 71 statistics
sign-on table (SNT) to select data tables 380
OPIDENT operand 14 storage calculations 206
single session terminals storage management subsystem (SMS)
APPC backup while open facility 89
eligible for autoinstall 285 release information 90
single-node persistent sessions 345 storage protection for CICS regions 62
SIT (system initialization table) storage requirements
APPLID (CICS system name) 14 for the CICS management client interface 427
DFHSIT keywords and operands 152 storage requirements for CICS regions 181
DFHSIT TYPE=CSECT 152 storage use
DFHSIT TYPE=DSECT 152 description 377
supplying system initialization parameters to CICS 165 subpools
SIT parameters CDSA 26
retrieving information 176 ECDSA 29, 42
size of data table ERDSA 44
defining by CEDA 387 ESDSA 43
defining by SET command 391 GCDSA 44
finding by INQUIRE command 391, 392 GSDSA 46
SMS (storage management subsystem) 90 PCDSA 28, 29
SMSS RDSA 28
set up 416 SDSA 27
SNPS 345 suffixes of CICS control tables 302
source data set suppressing user data in trace
with multiple files 386 CONFDATA option 449
space calculations SVC
CSD 66 specifying DFHCSVC in the startup job 201
defining data sets 85 SYSPARM resource table 176
disk space 66 sysplex 1
dump data sets 120 system authorization facility 383
global catalog 111 system console 342
specific connection system data sets 85
definition of 442 system dumps 121
SPURGE option (DEFINE TRANSACTION) 492 system group 1
START command, MVS 191, 195 system initialization
START operand, DFHSIT 346 for an alternate CICS (XRF=YES)
start, cold START=STANDBY 195
nonrecovery of autoinstalled TCT entries 288 how CICS determines the type of startup 169
start, emergency START=AUTO 170, 194
temporary recovery of autoinstalled TCT entries 288 START=COLD 171
START, system initialization parameter START=INITIAL 171, 194
START=AUTO 170, 194 system initialization parameters
START=COLD 171, 194 entering at the console 169, 197
START=INITIAL 171, 194 from operator's console 165, 169, 197
START=STANDBY 195 how to specify 146
start, warm in the PARM parameter 165, 167
nonrecovery of autoinstalled TCT entries 288 in the SYSIN data set 165, 168
started task, CICS as a 191, 195 PGAICTLG 298
starting CICS regions system initialization table (SIT)
as a batch job 195 DFHSIT keywords and operands 152
as a started task 191, 195 supplying system initialization parameters to CICS 165
MVS START command 191, 195 system logs
sample job stream 182 log-tail deletion 485
specifying the type of startup 169 system management facilities
START=AUTO 170, 194 for CICS statistics 89
START=COLD 171 system programming
START=INITIAL 171, 194 EXEC CICS CREATE commands 6
START=STANDBY, for an XRF alternate CICS 195 EXEC CICS CSD commands 6
starting the connection manager 458 system startup
startup job streams startup job stream 182
terminals 338 system tables, CICS
startup procedure, DFHSTART 182

552 CICS TS for z/OS: Configuring CICS

system tables, CICS (continued) trace (continued)
deletion of existing entry (reinstalling resource DFHBUXT auxiliary trace data set 118
definitions) 348 job control statements to allocate auxiliary trace data
system task 191, 195 sets 120
System–managed duplexing 274 sample job to define auxiliary data sets on disk 120
System–managed rebuild 273 TRACE parameter of DFHXCOPT 451
TRACESZE parameter of DFHXCOPT 451
trace (CICS ONC RPC)
T setting trace level 463, 473
TCPIPADDRESS 421 setting trace option 463, 473
TCPIPSSLCERT 421 tranlog
TCPIPSSLCIPHERS 421 JTA 492
TCT (terminal control table) transaction abend processing
TCT entry, autoinstalled 281–283 program error program (PEP)
TCT entry user coding 506
automatic deletion, with autoinstall 290 TRANSACTION definition
automatic TCTTE deletion 290 RESSEC attribute 14
deleted at logoff, with autoinstall 282 transaction list table (XLT) 303
TCT user area (TCTUA) transaction routing
effect of autoinstall 281 autoinstall restriction 282
TCTUA (TCT user area) transactions
effect of autoinstall 281 ADYN, dynamic allocation transaction 132
TDQ 81 CESF GOODNIGHT 341
TDQUEUE 81 CESF LOGOFF 342
TDQUEUE definition CESN 344
installing 355 CSFU, CICS file utility transaction 133
temporary storage transient data (extrapartition) data sets
backout 502 defining 97
forward recovery 503 transient data (intrapartition) data set
recoverability 502 defining 95
starting up temporary storage servers 204 failure to open 96
TS data sharing server 204 multiple extents and volumes 96
temporary storage data sharing other considerations 96
defining TS pools for TS data sharing 205 transient data definitions 457
temporary storage server transient data queue 81
sample startup job 208 transient data queue definitions
terminal control table (TCT) installing 355
dummy control table, DFHTCTDY 164 transient data queues
TCT entry, autoinstalled 281–283 disabling 355
terminal definition 338 replacing existing definitions 355
TERMINAL definition transient data write-to-terminal sample program
installation when out of service 348 (DFH$TDWT) 94
TERMINAL 285 transient data, extrapartition
TERMINAL attribute 285 recovery 501
TERMINAL definitions transient data, intrapartition
installing 356 backout 499
terminal error program, DFHTEP 341 forward recovery 500
terminal list table (TLT) recoverability 499
effect of autoinstall 281 Transport-owning region 2
Terminal owning region (TOR) 394 trap, DFHXCTRA
Terminal-owning region 2 TRAP, parameter of DFHXCOPT 451
time changes 490 TSO users 344
TIMEOUT, parameter of DFHXCOPT 451 TWX terminals using NTO
TLT (terminal list table) eligible for autoinstall 285
effect of autoinstall 281 type of data table
TLX terminals using NTO defining by CEDA 387
eligible for autoinstall 285 defining by SET command 391
topology 1 finding by INQUIRE command 391, 392
TOR 394 TYPE, parameter of DFHXCOPT 449
TOR (Terminal-owning region) 2 TYPE=CSECT, DFHSIT 153
TPURGE option (DEFINE TRANSACTION) 493 TYPE=DSECT, DFHSIT 153
trace types of data tables 134
defining auxiliary trace data sets 118 TYPETERM definition 283
DFHAUXT auxiliary trace data set 118

Index 553
U XFCNREC
overriding open failures 498
UNLOAD, named counter pool 265 XLT (transaction list table) 303
UNLOCK GROUP command XLT definitions 457
controlling access to groups 14 XML-based service 309
UNLOCK LIST command XRES system initialization parameter 333
controlling access to lists 14
user abend exit creation 505
user file definitions 125
Z
user files z/OS Communications Server
coupling facility data table server 218 ACB at CICS startup 174
user-maintained data table deletion of TCT entry by autoinstall at end of session
data integrity 387 282
journaling 387 logging on to CICS through 282
performance 377 NETNAME 282, 288
resource definition 385 persistent sessions support 345
user-replaceable module terminals, statements for 338
DFHXCURM 446 z/OS Communications Server
utility programs terminals
DFHCCUTL, local catalog initialization utility program autoinstalling 280
116 z/OS console, defining to CICS 342
DFHJUP, CICS journal utility program 108 z/OZ Communications
IDCAMS, AMS utility program 126 ServerSNA
and autoinstall 282
V
variables 335, 337
VERBEXIT, IPCS parameter 121
VSAM
alternate indexes 386
base cluster 386
SHAREOPTION 386
VSAM data sets
bases and paths 126
loading empty VSAM data sets 126
opening and closing 132, 133
VSAM files
forward recovery considerations 494
VSAM intrapartition data set 94
VSAM RLS
for sharing data 380
recovery attributes 387
suitable for UMT 386
unsuitable for CMT 386

W
warm restart
nonrecovery of autoinstalled entries 288
recreation of tables 346
web services 503
WebSphere MQ persistent messages 503

X
XCFGROUP, parameter of DFHXCOPT 452
XDR routines
specifying 466
XDUCLSE, dump global user exit 122, 124
XDUOUT, dump global user exit 122, 124
XDUREQ, dump global user exit 122, 124
XDUREQC, dump global user exit 122, 124
XES, named counter server response to 262

554 CICS TS for z/OS: Configuring CICS

IBM®