You can use CA Top Secret to configure specific CA SYSVIEW for CA Insight DPM for DB2 PassTickets for validating access.
Note: These examples are provided as a guideline. Only a security administrator familiar with PassTicket configuration should execute this process. For detailed information about using these commands, see the CA Top Secret for z/OS Control Options Guide.
Note: This procedure assumes that the PTKTDATA class and IRRPTAUTH resource ownership have been defined.
Example: Use CA Top Secret to Configure PassTickets for CA SYSVIEW for CA Insight DPM for DB2 Systems.
Follow these steps:
TSS ADDTO(department) APPLICATION(xnet_applid)
Identifies a preexisting department. The application is defined to this department. This ownership lets a department administrator (or higher) define permissions for PassTicket generation and validation.
Defines the application ID used for the PassTicket validation. This value is specified in the CA DB2 Tools Xnet INITPARM data set parameter PASSNAME and subsequently in the CA SYSVIEW DB2 PARMLIB XNET-PassTicketApplId parameter.
The application is defined and owned.
TSS ADDTO(NDT) PSTKAPPL(xnet_applid) SESSKEY(0123456789ABCDEF)
Note: The session key defines an encryption key for the application in the format of 16 hexadecimal digits (creating an 8-byte or 64-bit key). Use a session key value that is different from what is shown in the sample syntax. Each application key must be the same on all systems in the configuration and the value must be kept "secret."
The host system is set up to accept PassTickets.
All systems using Passtickets must have identical application names and session keys for all nodes on the network.
TSS PERMIT(useridn) APPLICATION(xnet_applid)
|
Copyright © 2013 CA.
All rights reserved.
|
|