I'm trying to create a report that displays a users' UID along with their default groups' GID, and having some trouble with the DFLTGRP part. How can that be accomplished?

Below is to obtain the GID:

newlist type=RACF pl=0   retain notempty
select class=group segment=omvs
sortlist key(8,"Group") gid(10,num)​

However, I'd like to get only the GID segment for the users' default group, and display blank if there is none.

Same with the UID:

newlist type=RACF pl=0   retain notempty
select class=user segment=omvs
sortlist key(8,"UserID") uid(10,num)

Effectively would like to merge these two, but only for DFLTGRPs where groups are concerned.

Thanks in advance!

------------------------------
Adam Klinger
------------------------------

Hi Adam
RACF stores the OMVS fields in an application segment, and more general information about a USER in the BASE segment.  These are not necessarily adjacent in the RACF database, so a CARLa program reads them separately.
When a BASE segment is read, the OMVS fields are unavailable, and vv, when the OMVS segment is processed, the BASE fields like DFLTGRP are missing.
You can tie up this relation in the output processing stage (SORTLIST command) using a lookup operator.  In fact, you can even look up the GID of the group that is mentioned as the DFLTGRP in the BASE segment, like so:
n type=racf
  select class=user segment=base
  sortlist key(8,"User id") :uid(10,"       UID"),
           dfltgrp dfltgrp:gid(10,"       GID")
:uid looks for the UID field belonging to the same profile that is referenced in the SORTLIST command.  This is called an implicit lookup.
dfltgrp:gid uses the value of DFLTGRP and searches the USER and GROUP profiles for a match.  This mechanism is called explicit lookup.

Perfect, thank you for the quick response! The lookup functionality is what I was overlooking here to use for this.

------------------------------
Adam Klinger
------------------------------

Original Message:
Sent: Fri December 27, 2019 03:21 AM
From: Rob van Hoboken
Subject: zSecure CARLa -- Creating UID/GID Report for UserIDs

Hi Adam
RACF stores the OMVS fields in an application segment, and more general information about a USER in the BASE segment.  These are not necessarily adjacent in the RACF database, so a CARLa program reads them separately.
When a BASE segment is read, the OMVS fields are unavailable, and vv, when the OMVS segment is processed, the BASE fields like DFLTGRP are missing.
You can tie up this relation in the output processing stage (SORTLIST command) using a lookup operator.  In fact, you can even look up the GID of the group that is mentioned as the DFLTGRP in the BASE segment, like so:
n type=racf
  select class=user segment=base
  sortlist key(8,"User id") :uid(10,"       UID"),
           dfltgrp dfltgrp:gid(10,"       GID")
:uid looks for the UID field belonging to the same profile that is referenced in the SORTLIST command.  This is called an implicit lookup.
dfltgrp:gid uses the value of DFLTGRP and searches the USER and GROUP profiles for a match.  This mechanism is called explicit lookup.