Automated Sign-on for Mainframe - Administrator Guide
- Automated Sign-on for Mainframe - Administrator Guide
- Introduction
- How Automated Sign-on for Mainframe Works
- System Requirements and Prerequisites
- Terms
- Configuration Workflow
- Initial Setup
- 1. Install or Upgrade Management and Security Server
- 2. Activate the Automated Sign-On for Mainframe Add-On
- 3. Configure DCAS and RACF on z/OS
- Configuring DCAS and RACF
- 4. Configure Authentication & Authorization
- 5. Establish trust between the MSS Administrative Server and the DCAS server
- Configure Settings - Automated Sign-on
- When smart cards are used for authentication
- 6. Enable your emulator for automated sign-on
- Reflection or InfoConnect Desktop - Workspace Automated Sign-on
- Reflection or InfoConnect Desktop - Managed Sessions
- Host Access for the Cloud
- 6. Enable Host Access for the Cloud for automated sign-on
- 7. Create a Host Access for the Cloud session and add an automated sign-on macro
- 7A. Create a Host Access for the Cloud session in MSS
- 7B. Record and edit a macro in a Host Access for the Cloud session
- Reflection for the Web
- 6. Enable Reflection for the Web for automated sign-on
- 7. Create a Reflection for the Web session and add an automated sign-on macro
- 7A. Create a Reflection for the Web IBM 3270 session
- 7B. Record and edit a macro in a Reflection for the Web session
- Rumba+ Desktop
- 6. Enable Rumba+ Desktop for automated sign-on
- 6A. Ensure the Prerequisites are met
- 6B. Create an automated sign-on connection macro
- 6C. Create a session profile that contains the macro
- 7. Create a Rumba+ Desktop session with the automated sign-on macro
- 7A. Create a Rumba+ session in MSS
- 7B. Upload a Rumba+ Session Profile
- 7. Create an IBM 3270 session with an automated sign-on macro
- Simple Test
- 8. Assign access to one user for testing
- 9. Run a test
- Production
- 10. Map enterprise IDs to mainframe user names
- Choose a data store option
- Option A. An authenticating directory with primary user objects
- Option B. An authenticating directory plus a secondary directory
- Implement identity mappings and data storage
- Configuration Tasks: Identity Mapping
- 11. Assign access to the automated sign-on for mainframe sessions
- 12. Deploy automated sign-on sessions to users
- Emulation Product Documentation
- Task List for Administrators
- MSS Administrator
- Terminal Emulation Administrator
- z/OS Administrator
- Appendix A. Configuring DCAS and RACF on z/OS
- Overview of DCAS Configuration and the z/OS Security Server
- 1. Configure RACF so DCAS can run as a system daemon.
- 2. Configure TLS for use with DCAS.
- 3. Define a PassTicket profile for each application.
- 4. Update the Configuration for the DCAS Server
- 5. Start the DCAS server.
- References
- Legal