Josef Berger wrote:
Hello,
we have to create for some users SSH environment on OMVS. This includes
- create a HFS for each user
- mount it to its mount point
- create SSH directory
- generate private and public keys
The problem is, this users are batch users, without a RACF TSO Segment. So
we can't logon in TSO and do the task in TSO OMVS environment of this users.
Any ideas, how we can do this task would be very appreciated.
You can create the HFS, home directory and .SSH directory from a
superuser ID and use chown and chmod to change the owner and permission
bits. The users need an OMVS segment, a TSO segment is not needed if
these users login via SSH from a client machine.
If you generate the key pairs on z/OS (can also be done under a
superuser ID), you will need to export the private key files to the
client machines (and tell the users the passwords). Alternatively, the
users can use their clients to create the key pairs (e.g. PuTTYgen on
Windows) but you will then need to transfer the public keys to the host
and create authorized_keys files in the .SSH directories.
--
Ulrich Boche
SVA GmbH, Germany
IBM Premier Business Partner
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
