Hello Kayhan
Access Monitor uses the C2PACMON started task to receive, buffer and log RACF decisions, from exit points in RACF. These exits are invoked very frequently, so the buffers and the started task must run in each LPAR to minimize path length (CPU cost).
You
must run C2PACMON in each LPAR. C2PACMON creates a
runtime collection data set with summarized access counts, the data set name ends in Dyymmdd.Thhmm, for example, today it would end in D210129.T0000. This data set is constantly allocated to C2PACMON, until midnight when a new
runtime data set is created. The old
runtime is then consolidated into the DAILY data set, ending in Dyymmdd (without the time stamp).
These
runtime and
daily data sets are create for each LPAR separately.
You can run additional batch jobs, modeled after C2PJMCON, to consolidate these daily into weekly or monthly data sets, for each LPAR separately or combined by SYSPLEX.
But you
must run C2PACMON on each LPAR, same as you run C2POLICE on each one.
If you install C2PACMON on
one LPAR only, then activity of jobs, started tasks, users, and the system on the other LPARs will go undetected. Reports produced from the ACCESS data sets about references to profiles or groups will be unreliable.
------------------------------
Rob van Hoboken
------------------------------