Thanks, Johnny. I now get the solicitor screen. It works for logging on to CICS
(APPLID=CICS) but I'm getting the following error messages on the SYSLOG
when attempting to logon to TSO:
LOGON
IST663I BIND FAIL REQUEST RECEIVED, SENSE=08010000 292
IST664I REAL OLU=ADCD.SC0TCP01 REAL DLU=ADCD.A06TSO01
IST889I SID = D2DF5F7A9B33042B
IST1669I IPADDR..PORT 192.168.0.11..53406
IST314I END
IKT117I TSO/VTAM INITIALIZATION FAILED FOR APPLNAME=TSO0001 ,
LUNAME=ADC
D.SC0TCP01
IKT111I APPLNAME=TSO0001 FAILED DUE TO: TCAS CLSDST PASS
FAILURE
IKT030I TCAS LOGON PROCESS FAILURE PLU=A06TSO01
SLU=ADCD.A06TSO01
SENSE= 08010000
IKT122I IPADDR..PORT 192.168.0.11..53406
IKT122I IPADDR..PORT 192.168.0.11..53406
IKJ608I LOGON TERMINATED, IKTXINIT, TSO/VTAM INITIALIZATION
ERROR
IST804I CLOSE IN PROGRESS FOR TSO0001 OPENED BY ***NA***
IEA989I SLIP TRAP ID=X33E MATCHED. JOBNAME=*UNAVAIL,
ASID=0039.
IST400I TERMINATION IN PROGRESS FOR APPLID TSO0001
IST805I VTAM CLOSE COMPLETE FOR TSO0001
EZZ6034I TELNET CONN 00000014 LU SC0TCP01 CONN DROP ERR 3012
303
IP..PORT: 192.168.0.11..53406
Here are my TCPIPROF statements. Note the commented out statements:
BEGINVTAM
; Define logon mode tables to be the defaults shipped with the
; latest level of VTAM
; Define the LUs to be used for general users.
DEFAULTLUS
SC0TCP01 SC0TCP02 SC0TCP03 SC0TCP04 SC0TCP05
SC0TCP06 SC0TCP07 SC0TCP08 SC0TCP09 SC0TCP10
SC0TCP11 SC0TCP12 SC0TCP13 SC0TCP14 SC0TCP15
SC0TCP16 SC0TCP17 SC0TCP18 SC0TCP19 SC0TCP20
SC0TCP21 SC0TCP22 SC0TCP23 SC0TCP24 SC0TCP25
SC0TCP26 SC0TCP27 SC0TCP28 SC0TCP29 SC0TCP30
ENDDEFAULTLUS
; DEFAULTAPPL TSO ; Set the default application for all Telnet
; USSTCP USSN ; USS Table name
; sessions to allow CLSDST Pass
LINEMODEAPPL TSO ; Send all line-mode terminals directly to TSO.
ALLOWAPPL SAMON QSESSION ; SAMON appl does CLSDST Pass to next appl
ALLOWAPPL TSO* DISCONNECTABLE ; Allow all users access to TSO
; applications.
; TSO is multiple applications all beginning with TSO,
; so use the * to get them all. If a session is closed,
; disconnect the user rather than log off the user.
RESTRICTAPPL TSO ; Only 2 users can use TSO.
USER ADCDMST ; Allow ADCDMST access.
USER IBMUSER ; Allow IBMUSER access.
RESTRICTAPPL CICS ; Only 2 users can use CICS.
USER ADCDMST ; Allow ADCDMST access.
USER IBMUSER ; Allow IBMUSER access.
RESTRICTAPPL CICS1 ; Only 2 users can use CICS1.
USER ADCDMST ; Allow ADCDMST access.
USER IBMUSER ; Allow IBMUSER access.
RESTRICTAPPL CICS2 ; Only 2 users can use CICS2.
USER ADCDMST ; Allow ADCDMST access.
USER IBMUSER ; Allow IBMUSER access.
RESTRICTAPPL CICS3 ; Only 2 users can use CICS3.
USER ADCDMST ; Allow ADCDMST access.
USER IBMUSER ; Allow IBMUSER access.
RESTRICTAPPL IMS ; Only 3 users can use IMS.
USER USER1 ; Allow user1 access.
LU TCPIMS01 ; Assign USER1 LU TCPIMS01.
USER USER2 ; Allow user2 access from the default LU pool.
USER USER3 ; Allow user3 access from 3 Telnet sessions,
; each with a different reserved LU.
LU TCPIMS31 LU TCPIMS32 LU TCPIMS33
; ALLOWAPPL * ; Allow all applications that have not been
; previously specified to be accessed.
Anyone have any ideas what's causing the TSO logon error?
On Mon, 10 Dec 2007 18:21:08 +0800, Johnny Luo
<[EMAIL PROTECTED]> wrote:
>Just did a test:
>
>1. In TN3270 server profile (because TN3270 sever can run as a separate
>STC), find the BEGINVTAM/ENDVTAM block for the target port and then
remove
>both USSTCP and DEFAULTAPPL statement.
>
>After that the first screen user will see at connection time is the telnet
>solicitor panel:
>
>Enter Your Userid:
>Password: New password:
>Application:
>Application Required. No Installation Default
>
>A user needs to know the precise application name to log in.
>
>2. Restrict the specific application:
> RESTRICTAPPL TSO
> USER IBMUSER
>
>Now the user needs to supply the id/pass in the solicitor panel in order to
>access application TSO. And only IBMUSER can pass the verification in this
>case.
>
>Hope this is what you need.
>
>
>On Dec 10, 2007 4:33 PM, Johnny Luo <[EMAIL PROTECTED]> wrote:
>
>> Hi,
>>
>> Hope my experience can help.
>>
>> In your TCPIP profile:
>>
>> RESTRICTAPPL CICS01
>> USER IBMUSER
>> USER SYSPRG1
>>
>> When a logon request for application CICS01 is issued, a telnet solicitor
>> screen will show and you need to supply the RACF pass/id. In this case,
only
>> IBMUSER and SYSPRG1 can use CICS01.
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
