If a security profile for a specified resource is not retrieved, SAF neither
grants nor refuses the access request. In this situation:
- The request fails if a security manager is installed but is either temporarily
inactive or inoperative for the duration of this MVS™ IPL. This decision is
made on the grounds that had the security manager been active it might have
retrieved a profile that refuses access.
- The request succeeds if:
- There is no security manager at all.
- There is an active security manager but the FACILITY class is undefined
or inactive.
- There is no profile covering the APPLID in question.
The request is allowed in these cases because there is no evidence that
you want to control access to the particular FOR APPLID.