Re: LDAP on z/os

masonry product (s--t a brick) if anyone said that their systems had to validate against a z/OS based repository. Not to mention that, although z/OS does support LDAP and Kerberos, it does not support Windows Active Directory protocols. The mere fact that said protocol is both unsupporte

Re: LDAP on z/os

On Sun, 20 Nov 2016 09:28:40 -0600, Walt Farrell wrote: >... and may seriously hurt the performance, reliability, and availability of >your z/OS >system and the applications running on it. Not to mention relying on a platform that is more subject to hacking than a properly configured z/OS

Re: LDAP on z/os

f that's what you want(*), to the extent the various systems support commonality. To get familiar with that class of approaches, you can start here: http://www.ibm.com/software/products/en/ibm-security-identity-governance-and-intelligence For the record, z/OS does have LDAP client APIs. Ac

Re: LDAP on z/os

y sort of login to mainframe can be tso, >cics,db2 etc. As I said, z/OS does not support that. It can work in the opposite direction, if you configure the LDAP server on z/OS, with RACF as the backend data store, and have other systems act as clients to the z/OS LDAP server. Timothy provided you with

Re: LDAP on z/os

Hello Paul, Yes, I think my requirement was not clear to all. Basically LDAP server is running on some Windows or Linux box and we want to integrate mainframe with that as LDAP client for any sort of login to mainframe can be tso, cics,db2 etc. Please suggest On Nov 20, 2016 05:24, "Paul

Re: LDAP on z/os

On Sun, 20 Nov 2016 10:00:53 +0800, Timothy Sipples wrote: >Venkat, the base z/OS operating systems includes a terrific Lightweight >Directory Access Protocol (LDAP) server at no additional charge. It >supports industry standard LDAP v3 protocols. You can configure it in a >variety of ways, but

Re: LDAP on z/os

TSO, CICS Transaction Server, DB2 for z/OS, and lots of other applications and middleware to share the same IDs and passwords then (in basic outline): (a) Configure the z/OS LDAP Server so that it's able to access RACF; (b) Ideally, preferably, configure RACF (and TSO, etc.) to use passphrases

Re: LDAP on z/os

kulkarni < > venkatkulkarn...@gmail.com> wrote: > > >Hello, > > > >Do we have any way to implement LDAP on z/os for authentication purpose. > > Your question is unclear. > > If you mean "could we run an LDAP server on z/OS so that applications > running elsewher

Re: LDAP on z/os

On Thu, 17 Nov 2016 14:23:42 +0530, venkat kulkarni <venkatkulkarn...@gmail.com> wrote: >Hello, > >Do we have any way to implement LDAP on z/os for authentication purpose. Your question is unclear. If you mean "could we run an LDAP server on z/OS so that applications ru

Re: LDAP on z/os

You have two issues to consider. a) what ldap strings the client is "programmed" to be able to send. check your ITDS log file (or trace) on z/os to see what is being sent and make adjustments if needed b) what ldap strings the Tivoli Directory Server will accept. Only a few filters are allowed

Re: LDAP on z/os

We need LDAP for two user id authentication purpose. Do we have any way to implement this change On Nov 17, 2016 12:32, "Elardus Engelbrecht" wrote: > venkat kulkarni wrote: > > >Thanks for reply. We want to implement LDAP for initial login > authentication

Re: LDAP on z/os

venkat kulkarni wrote: >Thanks for reply. We want to implement LDAP for initial login authentication >purpose. That is somewhat another story. Here we use the LDAP to reset the ids after verification. Then thereafter the user logon to the application with the id. Please tell us for what

Re: LDAP on z/os

Hello Elardus, Thanks for reply. We want to implement LDAP for initial login authentication purpose. On Nov 17, 2016 12:21, "Elardus Engelbrecht" <elardus.engelbre...@sita.co.za> wrote: > venkat kulkarni wrote: > > >Do we have any way to implement LDAP on z/os for aut

Re: LDAP on z/os

venkat kulkarni wrote: >Do we have any way to implement LDAP on z/os for authentication purpose. Yes there is a way to implemenet LDAP ('IBM Tivoli Directory Server Administration') [1] Could you be kind to tell us for what purpose do you want to have LDAP for authentication? Or what are

LDAP on z/os

Hello, Do we have any way to implement LDAP on z/os for authentication purpose. Thanks for help. Regards Venkat -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu