What you are looking for can be done. It will require a connector between the LDAP server and Top Secret. I've set this up to run between eDirectory and RACF using a DirXML RACF connector that we bought from Novell. You would need to find a similar tool that would run between your LDAP server and Top Secret.
Jerry Ekegren IT - Infrastructure Architecture jerry.ekeg...@thrivent.com Office: 612-844-3320 Mobile: 612-791-5223 "CHAPLIN, JAMES (CTR)" <james.chap...@associates.dhs.gov> Sent by: Linux on 390 Port <LINUX-390@VM.MARIST.EDU> 03/26/2009 08:44 AM Please respond to Linux on 390 Port <LINUX-390@VM.MARIST.EDU> To LINUX-390@VM.MARIST.EDU cc Subject using ldappasswd with zLinux and LDAP We are trying to allow users to change their mainframe password through LDAP via ldappasswd command: home/user1)#ldappasswd -A -S -H ldap://hostname:port# user1 Old password: Re-enter old password: New password: Re-enter new password: SASL/EXTERNAL authentication started ldap_sasl_interactive_bind_s: Unknown authentication method (-6) additional info: SASL(-4): no mechanism available: We are using Top Secret on the mainframe; we have IBM LDAP on the mainframe with NATIVEAUTH active (so it is getting the password directly from Top Secret). However this command is failing to change the Top Secret stored password. Any suggestions where to look or make changes to resolve this? James Chaplin Systems Programmer, MVS, zVM & zLinux Base Technologies, Inc Supporting the zSeries Platform Team ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
