Previous Topic: Define Remote Background User IDs

Next Topic: SXCTL Parameter File

Using the NMSAF Security SolutionHow You Implement NMSAFEnable NMSAFImplement Signon and Signoff with CA Top Secret

Implement Signon and Signoff with CA Top Secret

External security includes security for signon and signoff. The CA Top Secret security administrator must create a region control ACID, FACILITY, and started task definition for the online STC (NETMASTR).

To create this definition

  1. Create a region control ACID using the following commands: 
    TSS CRE(netmacid) NAME('region_acid NETMASTR') DEPT(netmdept) PASS(NOPW,0) FAC(STC,NETMASTR) MASTFAC(NETMASTR) NOVOLCHK NORESCHK NOLCFCHK NODSNCHK NOSUBCHK
  2. Create a NETMASTR FACILITY by placing the following statements into the CA Top Secret startup parameter file member: 
    FAC(user15=NAME=NETMASTR)
FAC(NETMASTR=NOABEND,ASUBM)
FAC(NETMASTR=INSTDATA,KEY=8,LCFCMD,LOCKTIME=0,NOLUMSG)
FAC(NETMASTR=MULTIUSER,PGM=NM0,NORNDPW,RES,SIGN(M))
FAC(NETMASTR=SHRPRF,NOSTMSG,NOTSOC,WARNPW,NOXDEF)
  3. Define the NETMASTR STC to the CA Top Secret STC table using the following command: 
    TSS ADD(STC)  PROCNAME(NETMASTR)  ACID(netmacid)
  4. For any region control ACID to be used to sign on, authorize it to the NETMASTR FACILITY using the following command: 
    TSS ADD(user1) IBMFAC(NETMASTR)