Shmuel Metz asks: >There is support for mapping long user ids into short user ids. Does >that support work if the access validation is in a third party LDAP >server?
Base z/OS includes LDAP client support, provided in the Tivoli Directory Server for z/OS. I already answered yes, so I'll vote yes again. :-) >>2. Note that you are not required to use TSO/E user IDs as user IDs. >You are if you want to log on to TSO foreground, which is what I asked >about. You perhaps missed my point there. You can consider TSO/E user IDs to be tokens in a pool if you wish, and they may or may not be unique per individual. That's a policy and implementation question which your organization gets to decide. >But I explicitly asked about TSO. The original poster didn't make that clear. I did. Scott Ford adds: >Sales pitch, sorry guys...I will bet there are thousands and thousands >of users using either TSO or CMS ..of course CICS and IMS and DB2 ...we >also sell software .......LDAP ...but I won't go there unless its >offline. This isn't the place to try to hustle ppl If that comment was aimed at me, it was not well aimed. The only thing I've been doing is suggesting solutions, most or all of which happen to require nothing but what you have in z/OS. Let me repeat: *everybody* who licenses *base* z/OS gets IBM's LDAP server and client. OK, so if this -- enhanced (or at least different) authentication and/or authorization for TSO/E applications -- isn't a real problem for you, fine, you can ignore this thread. Alternatively, if you don't like my proposed solutions, send IBM a formal enhancement request through the proper channels along with your suggested solution design. Feel free to borrow my suggestions if you like them. No royalties are required. -------------------------------------------------------------------------------------------------------- Timothy Sipples Resident Enterprise Architect (Based in Singapore) E-Mail: timothy.sipp...@us.ibm.com ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
