Jantje wrote: >If it were me, yes, we would go for that. But... If your organization has some sort of reasonable identity management service that provisions, de-provisions, and otherwise manages user identities, then you could probably hook TLS client certificate management for z/OS into that. Any options there?
If the service desk department is "big" and has "high" turnover, then presumably you're managing RACF identities at a fairly high velocity. How are you doing that today? Could you fairly straightforwardly extend that high velocity identity management to TLS client certificates for z/OS HTTPS access? - - - - - - - - - - Timothy Sipples I.T. Architect Executive Digital Asset & Other Industry Solutions IBM Z & LinuxONE - - - - - - - - - - E-Mail: [email protected] ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
