Secure vault for z/OS

Discussion of the Co:Z Co-Processing Toolkit for z/OS
Post Reply
usaajrm
Posts: 80
Joined: Tue Feb 06, 2007 3:46 pm

Secure vault for z/OS

Post by usaajrm » Wed Feb 23, 2011 5:34 pm

We struggle with maintaining passwords used to access remote systems. We Co:Z we are faced with maintaining passwords in files to be used with the launcher. We are aware of the ssh keys but sees limited to logon credentials. We also need passwords on the host to access secure web services, db2 and other database. Do Co:Z have any insight or solutions to provide some type of vault solution? Where credentials can be checked by z/OS java applications?

dovetail
Site Admin
Posts: 1948
Joined: Thu Jul 29, 2004 12:12 pm

Post by dovetail » Thu Mar 03, 2011 10:03 am

For z/OS passwords, have you considered "pass tickets"?

One of our customers uses Co:Z Launcher with a passticket that is generated just-in-time for use on the target (remote) server for DB2 access, which is really cool.

usaajrm
Posts: 80
Joined: Tue Feb 06, 2007 3:46 pm

Post by usaajrm » Thu Mar 03, 2011 4:14 pm

No, where can I get more information about pass tickets? this is the first time I've heard about pass tickets.

dovetail
Site Admin
Posts: 1948
Joined: Thu Jul 29, 2004 12:12 pm

Post by dovetail » Thu Mar 03, 2011 6:26 pm

Its a feature of RACF since 2005. I also believe that ACF2 and possibly TSS supports. Consult the RACF documentation.

Post Reply