Thanks as always Justin and Alessandro for all the input...
We just received another request, this time from auditing...They want us to provide a listing of users defined to CMOD and what access they have..The issue we are having is, we use RACF for security..They were originally imported to CMOD when we converted off of ODE on the mainframe...We now just manually add them to CMOD (but they must exist on RACF)...But essentially the ID will remain on CMOD for eternity even if it's removed from RACF..Unless we receive a request to delete an id...We don't have any way of doing an automated removal of the ID's from CMOD..We also use defined GROUPS for access to Folders in CMOD...So basically, we need to supply them a listing of all the id's and what Groups they have access to...We then have to supply a listing of the defined Groups that shows what Folders they have access to..We found, via the Administrator Client, we can run a "summary" on the users and groups choosing the options for both that will give us the information we need...With over 22,000 user defined (again not knowing how many are actually valid anymore) and over 267 access groups, the summary results for both are quite large...The issue we face now is trying to "merge" the two separate files into one need one that would basically show the user id, their name, the groups they are defined to and what Folders they have access to..We think this is what auditing is looking for so they can then go back to the owners of the folders and sign off indicating the users that are viewing their data are valid...Not sure how others using CMOD are working with this kind of issue???