masonry product (s--t a brick) if anyone
said that their systems had to validate against a z/OS based repository.
Not to mention that, although z/OS does support LDAP and Kerberos, it does
not support Windows Active Directory protocols. The mere fact that said
protocol is both unsupporte
On Sun, 20 Nov 2016 09:28:40 -0600, Walt Farrell wrote:
>... and may seriously hurt the performance, reliability, and availability of
>your z/OS
>system and the applications running on it.
Not to mention relying on a platform that is more subject to hacking than a
properly
configured z/OS
f that's what you want(*), to the extent the various systems
support commonality. To get familiar with that class of approaches, you can
start here:
http://www.ibm.com/software/products/en/ibm-security-identity-governance-and-intelligence
For the record, z/OS does have LDAP client APIs. Ac
y sort of login to mainframe can be tso,
>cics,db2 etc.
As I said, z/OS does not support that. It can work in the opposite direction,
if you configure the LDAP server on z/OS, with RACF as the backend data store,
and have other systems act as clients to the z/OS LDAP server. Timothy provided
you with
Hello Paul,
Yes, I think my requirement was not clear to all. Basically LDAP server is
running on some Windows or Linux box and we want to integrate mainframe
with that as LDAP client for any sort of login to mainframe can be tso,
cics,db2 etc.
Please suggest
On Nov 20, 2016 05:24, "Paul
On Sun, 20 Nov 2016 10:00:53 +0800, Timothy Sipples wrote:
>Venkat, the base z/OS operating systems includes a terrific Lightweight
>Directory Access Protocol (LDAP) server at no additional charge. It
>supports industry standard LDAP v3 protocols. You can configure it in a
>variety of ways, but
TSO, CICS Transaction Server, DB2 for z/OS, and lots of other
applications and middleware to share the same IDs and passwords then (in
basic outline):
(a) Configure the z/OS LDAP Server so that it's able to access RACF;
(b) Ideally, preferably, configure RACF (and TSO, etc.) to use passphrases
kulkarni <
> venkatkulkarn...@gmail.com> wrote:
>
> >Hello,
> >
> >Do we have any way to implement LDAP on z/os for authentication purpose.
>
> Your question is unclear.
>
> If you mean "could we run an LDAP server on z/OS so that applications
> running elsewher
On Thu, 17 Nov 2016 14:23:42 +0530, venkat kulkarni
<venkatkulkarn...@gmail.com> wrote:
>Hello,
>
>Do we have any way to implement LDAP on z/os for authentication purpose.
Your question is unclear.
If you mean "could we run an LDAP server on z/OS so that applications ru
You have two issues to consider.
a) what ldap strings the client is "programmed" to be able to send.
check your ITDS log file (or trace) on z/os to see what is being sent
and make adjustments if needed
b) what ldap strings the Tivoli Directory Server will accept.
Only a few filters are allowed
We need LDAP for two user id authentication purpose. Do we have any way to
implement this change
On Nov 17, 2016 12:32, "Elardus Engelbrecht"
wrote:
> venkat kulkarni wrote:
>
> >Thanks for reply. We want to implement LDAP for initial login
> authentication
venkat kulkarni wrote:
>Thanks for reply. We want to implement LDAP for initial login authentication
>purpose.
That is somewhat another story. Here we use the LDAP to reset the ids after
verification. Then thereafter the user logon to the application with the id.
Please tell us for what
Hello Elardus,
Thanks for reply. We want to implement LDAP for initial login
authentication purpose.
On Nov 17, 2016 12:21, "Elardus Engelbrecht" <elardus.engelbre...@sita.co.za>
wrote:
> venkat kulkarni wrote:
>
> >Do we have any way to implement LDAP on z/os for aut
venkat kulkarni wrote:
>Do we have any way to implement LDAP on z/os for authentication purpose.
Yes there is a way to implemenet LDAP ('IBM Tivoli Directory Server
Administration') [1]
Could you be kind to tell us for what purpose do you want to have LDAP for
authentication? Or what are
Hello,
Do we have any way to implement LDAP on z/os for authentication purpose.
Thanks for help.
Regards
Venkat
--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu
15 matches
Mail list logo