Previous Topic: Configure Started Task SecurityNext Topic: Configure User Security

Preparing to Start Your ProductConfigure Started Task SecurityImplement Signon and Signoff with CA Top Secret

Implement Signon and Signoff with CA Top Secret

The external security includes the security for signon and signoff. The CA Top Secret security administrator must create a region control ACID, FACILITY, and started task definition for the online STC (OPSWEB).

Follow these steps:

  1. Create a region control ACID using the following commands: 
    TSS CRE(opswacid) NAME('region_acid OPSWEB') DEPT(opswdept) PASS(NOPW,0) FAC(STC,OPSWEB) MASTFAC(OPSWEB) NOVOLCHK NORESCHK NOLCFCHK NODSNCHK NOSUBCHK
  2. Create an OPSWEB FACILITY by placing the following statements into the CA Top Secret startup parameter file member: 
    FAC(user15=NAME=OPSWEB)
FAC(OPSWEB=NOABEND,ASUBM)
FAC(OPSWEB=INSTDATA,KEY=8,LCFCMD,LOCKTIME=0,NOLUMSG)
FAC(OPSWEB=MULTIUSER,PGM=NM0,NORNDPW,RES,SIGN(M))
FAC(OPSWEB=SHRPRF,NOSTMSG,NOTSOC,WARNPW,NOXDEF)
  3. Define the OPSWEB STC to the CA Top Secret STC table using the following command: 
    TSS ADD(STC)  PROCNAME(OPSWEB)  ACID(opswacid)
  4. For any region control ACID to be used to sign on, authorize it to the OPSWEB FACILITY using the following command: 
    TSS ADD(region_acid) IBMFAC(OPSWEB)