-
タイトル
Configuring a Mainframe for TPAM Management -
説明
Configuring a Mainframe for TPAM Management
-
対策
TPAM has the ability to manage Mainframe logins through TSO. Connectivity is through 3270.
Platform: Mainframe (RACF)
Creating the functional account:
The functional account is used to issue the 'alu' command for changing account passwords, including itself. The functional account requires system special permission.
Setting up the Mainframe on PAR
Configure the new system in PAR as would be done for any system, selecting Mainframe as the platform. Specify the functional account used and the password assigned. -
追加情報
Due to the configurable nature of initial mainframe connection, some amount of PAR Mainframe platform customization may need to occur in order to accommodate connectivity. PAR supports the checking and changing of passwords through the use of 3270 scripting. The expected values of these operations is the foundation to determining successful actions. Below is a brief explanation of the check and change process.
Password Check:
PAR connects via 3270 and waits for an input prompt. PAR enters the username and waits for the password prompt. The password is entered and PAR waits for an input prompt. Logoff is entered and the session is evaluated to determine success.
Password Change:
The above procedure is followed except the 'alu' password command is entered before the Logoff command is sent.When configuring the RACF Mainframe ensure the Custom Command field for RACF contains the following attributes:
racfPassword racfattributes:noexpired