Hi Bruce, Thanks so much for your response! Are the cyberark ids literally the same as the racf ids? Our cyberark team wants us to use separate group of "generic" cyberark ids different from our original RACF ids. So one day you might "check out" cyberark id 123, another day you might "check out" cyberark id "abc". thanks Bill On Sun, 30 Apr 2023 22:47:27 -0500, Bruce Hewson <[email protected]> wrote:
>Hello Bill, > >CyberArk can do RACF and Top Secret USER administration,. at least for >PASSWORD change, and REVOKE/RELEASE processing. > >CyverArk will connect to Z/OS via ssh. Certificates are used for the ssh >connection validation. The USER used by CybertArk must have suitable >administrative permissions to issue commands. > >For RACF systems, CyberArk can run a shell script to issue the ALTUSER >command. Pay attention to how the command string is quoted, as "$" can be used >in USERID and PASSWORD values, and shell processing could treat it as a >variable. > >Been using it for some years now. > >Regards >Bruce Hewson > > >On Mon, 24 Apr 2023 11:15:27 -0500, Bill Giannelli <[email protected]> >wrote: > >>our company is pushing forward with cyberark for all platforms. >>the statement was made that cyberark and the like are becoming the industry >>standard. >>Is that true for z/OS systems? >>thanks >>Bill > >---------------------------------------------------------------------- >For IBM-MAIN subscribe / signoff / archive access instructions, >send email to [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
