By default, when an API-resource security check is made on a CICS(R) connection, two user IDs are checked to see if access is allowed to the resource.