Have installed Tomcat via the Dovetail doc. Start the Tomcat STC with no issue. Have reviewed the JES to make sure the correct SAMPJCL data set is being picked up. No errors at this time. Reviewed the TCAT.DEV.MANAGER profile of the EJBROLE class to make sure the profile is built and my group had read access. Bring up the default tomcat page, no issue. Try to access the Tomcat Manager link, get the logon pop up. Enter RACF userid and password. Get "HTTP Status 403 - Access to the requested resource has been denied" In the STDOUT DD of the Tomcat STC the message received is "SAF class is not active. Security denied for role 'manager'. SAF Entry= EJBROLE/TCAT.DEV.MANAGER/READ". The Tomcat version is 6.0.18. Any suggestions on what to try or look for.

This message would seem to indicate that the EJBROLE SAF class is not active. Double check that it is active, and perhaps turn on auditing so that you can review RACF logs to verify the resource request.