Valid on z/OS 1.8 and below.
Use the KERBLVL control option to specify the highest available encryption level available for Kerberos certificates. This varies according to the level of z/OS and the Kerberos configuration file parameters at your site. KERBLVL is is valid on z/OS 1.8 and below only. For z/OS 1.9 and above, all encryption types are supported.
For information, see the IBM Secure Way Network Authentication Service Administration Guide.
All entry methods are accepted.
This control option has the following format:
KERBLVL(0|1)
(Default) Indicates that only DES encryption is available.
Indicates that DES, DES3, DESD, AES128, and AES256 encryption are available.
This example indicates that both 24 bit encryption (DES) and extended encryption are available for REALM definition and Kerberos principal definition:
TSS MODIFY(KERBLVL(1))
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|