IBM Security Z Security

When I look in zSecure IN.D to see the data dictionary for type SMF, I see 2 fields that would show me the target of the RACF command called RACFCMD_USER and RACFCMD_GROUP.   
When I look in the data dictionary for type CKXLOG I do not see similar fields for command logger.     I would rather pull this information from command logger because it already has the Ticket ID/Description for the command that was issued.

Is there a way to pull the Targeted User or Targeted group for the RACF command that was issued using Command Logger data?

------------------------------
Linnea Sullivan
------------------------------

CKXLOG does not bother with parsing the RACF command, so if you need parameters from the command, you have to build your own parsing using the DEFINE ... AS PARSE() syntax.

------------------------------
Rob van Hoboken
------------------------------

Original Message:
Sent: Tue December 13, 2022 08:42 AM
From: Linnea Sullivan
Subject: Command Logger fields for a Target User or Target Group

When I look in zSecure IN.D to see the data dictionary for type SMF, I see 2 fields that would show me the target of the RACF command called RACFCMD_USER and RACFCMD_GROUP.   
When I look in the data dictionary for type CKXLOG I do not see similar fields for command logger.     I would rather pull this information from command logger because it already has the Ticket ID/Description for the command that was issued.

Is there a way to pull the Targeted User or Targeted group for the RACF command that was issued using Command Logger data?

------------------------------
Linnea Sullivan
------------------------------