Automated Sign-on for Mainframe - Administrator Guide

  Automated Sign-on for Mainframe - Administrator Guide
    Introduction
      How Automated Sign-on for Mainframe Works
      System Requirements and Prerequisites
      Terms
    Configuration Workflow
    Initial Setup
      1. Install or Upgrade Management and Security Server
      2. Activate the Automated Sign-On for Mainframe Add-On
      3. Configure DCAS and RACF on z/OS
        Configuring DCAS and RACF
      4. Configure Authentication & Authorization
      5. Establish trust between the MSS Administrative Server and the DCAS server
        Configure Settings - Automated Sign-on
        When smart cards are used for authentication
      6. Enable your emulator for automated sign-on
        Reflection or InfoConnect Desktop - Workspace Automated Sign-on
        Reflection or InfoConnect Desktop - Managed Sessions
        Host Access for the Cloud
          6. Enable Host Access for the Cloud for automated sign-on
          7. Create a Host Access for the Cloud session and add an automated sign-on macro
            7A. Create a Host Access for the Cloud session in MSS
            7B. Record and edit a macro in a Host Access for the Cloud session
        Reflection for the Web
          6. Enable Reflection for the Web for automated sign-on
          7. Create a Reflection for the Web session and add an automated sign-on macro
            7A. Create a Reflection for the Web IBM 3270 session
            7B. Record and edit a macro in a Reflection for the Web session
        Rumba+ Desktop
          6. Enable Rumba+ Desktop for automated sign-on
            6A. Ensure the Prerequisites are met
            6B. Create an automated sign-on connection macro
            6C. Create a session profile that contains the macro
          7. Create a Rumba+ Desktop session with the automated sign-on macro
            7A. Create a Rumba+ session in MSS
            7B. Upload a Rumba+ Session Profile
      7. Create an IBM 3270 session with an automated sign-on macro
    Simple Test
      8. Assign access to one user for testing
      9. Run a test
    Production
      10. Map enterprise IDs to mainframe user names
        Choose a data store option
          Option A. An authenticating directory with primary user objects
          Option B. An authenticating directory plus a secondary directory
        Implement identity mappings and data storage
          Configuration Tasks: Identity Mapping
      11. Assign access to the automated sign-on for mainframe sessions
      12. Deploy automated sign-on sessions to users
        Emulation Product Documentation
    Task List for Administrators
      MSS Administrator
      Terminal Emulation Administrator
      z/OS Administrator
    Appendix A. Configuring DCAS and RACF on z/OS
      Overview of DCAS Configuration and the z/OS Security Server
      1. Configure RACF so DCAS can run as a system daemon.
      2. Configure TLS for use with DCAS.
      3. Define a PassTicket profile for each application.
      4. Update the Configuration for the DCAS Server
      5. Start the DCAS server.
      References
    Legal