473,386 Members | 1,790 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > db2 database > questions > z/os to aix connection - authentication/authorization

Join Bytes to post your question to a community of 473,386 software developers and data experts.

z/OS to AIX connection - authentication/authorization

Have an authentication/authorizaiton question. Our usual means to
provide SYSADM authority for incoming connections to DB2 v8.2 on AIX
has been to use SERVER authentication and set the SYSADM_GROUP dbm cfg
parameter accordingly. How can same be accomplished for incoming z/OS
connections when authentication is set to CLIENT? That is, does the
concept of a 'group' apply, where does the 'group' get set (RACF,
maybe?), and is it part of the connection info, in which case the
SYSADM_GROUP parameter can still be used to determine authorities?

Trying to avoid having to grant SYSADM privileges on a user by user
basis. Pardon the possible ignorance of the question - filling in for
the mainframe guy. Any help appreciated. Thx, Jim

PS - I read somewhere in this newsgroup that for incoming z/OS
connections there is no need for DB2 Connect, just set up as DRDA-AS
and AR. Again, forgive possible retard quotient of the question.

Apr 8 '06 #1
2 1933
ji******@aol.com wrote:
Have an authentication/authorizaiton question. Our usual means to
provide SYSADM authority for incoming connections to DB2 v8.2 on AIX
has been to use SERVER authentication and set the SYSADM_GROUP dbm cfg
parameter accordingly. How can same be accomplished for incoming z/OS
connections when authentication is set to CLIENT? That is, does the
concept of a 'group' apply, where does the 'group' get set (RACF,
maybe?), and is it part of the connection info, in which case the
SYSADM_GROUP parameter can still be used to determine authorities?

Trying to avoid having to grant SYSADM privileges on a user by user
basis. Pardon the possible ignorance of the question - filling in for
the mainframe guy. Any help appreciated. Thx, Jim

PS - I read somewhere in this newsgroup that for incoming z/OS
connections there is no need for DB2 Connect, just set up as DRDA-AS
and AR. Again, forgive possible retard quotient of the question.

Jim,

I can tell you that for what you want to do, DB2 Connect is not
required. However, I'm not entirely sure about the authentication
question. If I'm not mistaken, it should work the same way as a
connection coming in from any other client. The user would have to be
authenticated as a member of the os under AIX. That user is (I believe)
determined by the DB2 for z/OS communications tables (SYSIBM.USERNAMES).

Check out the following Redbook:

http://www.redbooks.ibm.com/abstract...6952.html?Open

Hope this helps.

Larry Edelstein
Apr 8 '06 #2
Larry,

Thanks for the guidance. It makes sense that with CLIENT authentication
on the AIX side, user would have to be set up in z/OS communication
table. Looking through the Redbook you mentioned, as well as z/OS Info
Center, found tables apparently related to Application Requestor/Server
groups called ARSUSRGRPID and ARSUSRGRP. Guessing they may actually be
associated with Unix running on mainframe though. Question that remains
is how to map a z/OS user to a 'remote' AIX group, or if that's even
what I need to be doing to get SYSADM authorities for a z/OS user.

Again, any insight from the collective DB2 mainframe mind would be much
appreciated.

Thanks, Jim

Apr 9 '06 #3
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

6
Secure and Unsecure Web Directories using Forms Authentication
by: Billy Jacobs | last post by:
I have a website which has both secure and non-secure pages. I want to uses forms authentication. How do I accomplish this? Originally I had my web.config file in the root with Forms...
.NET Framework
10
Login failed for user '(null)'. Reason: Not associated with a trusted SQL Server connection.
by: DC Gringo | last post by:
Using latest SP Win2k and .NET versions, I have a .NET application running on server1 with a SQL Server database running on server2. I have the Windows user account passwords sync'd for...
.NET Framework
10
HELP Connection error on Release mode
by: Brian Conway | last post by:
I have no idea what is going on. I have a Login screen where someone types in their login information and this populates a datagrid based off of the login. Works great in debug and test through...
C# / C Sharp
4
ASP.NET Authentication exception case
by: Jay | last post by:
I have authentication set for my site but I need one page to be an exception case. Namely my forgot password page. How do I tell the webconfig file to authenciate all pages except one page? ...
C# / C Sharp
3
Forms authentication in a subfolder problem, please help
by: Kris van der Mast | last post by:
Hi, I've created a little site for my sports club. In the root folder there are pages that are viewable by every anonymous user but at a certain subfolder my administration pages should be...
ASP.NET
2
Forms Authentication question: How to have some pages open and some requiring forms authentication
by: Eric | last post by:
I am trying to build an app where the stuff in the root directory is open to all, but anything under the Restricted directory requires you to login and I want to use Forms to do it. I'm having...
ASP.NET
0
ASP.NET Forms Authentication Best Practices
by: Anonieko Ramos | last post by:
ASP.NET Forms Authentication Best Practices Dr. Dobb's Journal February 2004 Protecting user information is critical By Douglas Reilly Douglas is the author of Designing Microsoft ASP.NET...
ASP.NET
5
Authentication
by: Maziar Aflatoun | last post by:
Hi everyone, I have a login .aspx page that I like to forward my users to. However, can't do it using <authorization> ..... </authorization> because I need anonymous users to use it without...
ASP.NET
9
Authentication login screen appears on both frames of the framset
by: dana lees | last post by:
Hello, I am developing a C# asp.net application. I am using the authentication and authorization mechanism, which its timeout is set to 60 minutes. My application consists of 2 frames - a...
ASP.NET
1
authentication mode error
by: Joe | last post by:
What I want to do is make only one page require a login. The application itself works fine. I'm getting the following error: Parser Error Message: It is an error to use a section registered as...
ASP.NET
0
How to turn on java script in a villaon keypad mobile phone
by: Charles Arthur | last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
Java
0
Basic Javascript concepts
by: aa123db | last post by:
Variable and constants Use var or let for variables and const fror constants. Var foo ='bar'; Let foo ='bar';const baz ='bar'; Functions function $name$ ($parameters$) { } ...
Javascript
0
Batch import of multiple excel files into the database
by: ryjfgjl | last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
Data Management
0
Merging data from multiple Excel files
by: ryjfgjl | last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
Data Management
0
Migrating Website to Cloud - Emmanuel Katto
by: emmanuelkatto | last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel
General
1
Is that possible of reading the .csv file in column wise and the column have different lengths ?
by: Sonnysonu | last post by:
This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...
C / C++
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
C / C++
0
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
Online Marketing

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!