Thanks to all who replied with suggestions.
Yes, it's not about being cool, or going boldly where others fear to tread, but rather making people less cranky about password maintenance. In my environment, all zLinux users are also VM/CMS users. They have a userid on VM and the same userid on zLinux. The password complaint I hear most often is... Why can't they be the same? Why do I have to change it in both places? Seems like a CMS LDAP solution for zLinux to use fits the bill nicely. Users may continue to change their VM password in the ol' familiar ways, and that immediately affects the zLinux password. zLinux password maintenance goes away. Users less cranky, me more happy. :-) In many cases, zLinux access is via the IBM Toolkit from a Windows desktop, so users are pretty sheltered from zLinux. And no, in our case we don't have a single, central respository of userid/password for all systems.... different departments have and manage their own. Separation of duties, or unnecessary duplicated effort? You decide. :-) Cheers, Donald Russell On Wed, Feb 16, 2011 at 13:52, Marcy Cortes <marcy.d.cor...@wellsfargo.com>wrote: > Well, being devil's advocate here... > Why is it a cool thing to do? Doesn't it make more sense to use whatever > every other Linux/unix box in your shop is using? All those other people > may get cranky if you make them get a CMS id to login to Linux or to use a > web app. > > Unless you have no Linux or Unix in your shop and only CMS and no other > centralized directory... > > Marcy > > -----Original Message----- > From: Linux on 390 Port [mailto:LINUX-390@vm.marist.edu] On Behalf Of Dave > Jones > Sent: Wednesday, February 16, 2011 1:38 PM > To: LINUX-390@vm.marist.edu > Subject: Re: [LINUX-390] PAM to authenticate using zVM userid/password > > Hi, Donald. > > Yeah, it's a cool thing to do, alright. Go with the LDAP-RACF approach > Alan and others have mentioned already, if you're already running RACF. > If you're not, there are other ways to get PAM on zLinux to authenticate > against CMS user ids, and passwords. I can send you more information on > how to do that, if you need it. > > Have a good one. > > DJ > > On 02/16/2011 02:53 PM, Donald Russell wrote: > > Before I go off to investigate what it would take to write one... is > there > > already a PAM module for zLinux that will accept a userid/password and > > authenticate it against the VM host it's running on? > > > > For example... > > I have zLinux (RHEL) running on lpar VMA. > > I also have a bunch of CMS users on VMA. > > > > I would like users to be defined on the zLinux system but let them use > their > > current VMA/CMS userid/password to logon to zLinux. > > > > Seems like a cool thing to do. :-) > > > > Thanks, > > > > ---------------------------------------------------------------------- > > For LINUX-390 subscribe / signoff / archive access instructions, > > send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or > visit > > http://www.marist.edu/htbin/wlvindex?LINUX-390 > > ---------------------------------------------------------------------- > > For more information on Linux on System z, visit > > http://wiki.linuxvm.org/ > > > > -- > Dave Jones > V/Soft Software > www.vsoft-software.com > Houston, TX > 281.578.7544 > > ---------------------------------------------------------------------- > For LINUX-390 subscribe / signoff / archive access instructions, > send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or > visit > http://www.marist.edu/htbin/wlvindex?LINUX-390 > ---------------------------------------------------------------------- > For more information on Linux on System z, visit > http://wiki.linuxvm.org/ > ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For more information on Linux on System z, visit http://wiki.linuxvm.org/
