Ÿ The

ALTUSER command allows an administrator to reset a user's password

a

temporary password or a default value. This command is modified

old

password whenever the password is reset.

ŸThe PASSWORD USER ( userid) command provides users and administrators

with a password reset function. This command is modified to save th password whenever the password is reset.

Tivoli Management Environment (TME) 10 Global Enterprise

Management User Administration Service

The Tivoli Management Environment (TME) 10 Global Enterprise Manager User Administration Service provides the ability to manage UNIX, Windows NT, NetWare, and RACF accounts from a single, common interface (either graph command line). The RACF support for this, which was provided by APARs OW23445 and OW23446, includes:

The TMEADMIN class, which is used to map a TME administrator to a RACF us ID.

Callable services to:

ŸDerive a session key from a previously generated RACF PassTicket. The

Management Region (TMR) TCP/IP

server uses such session

keys

to encryp

and decrypt administrative

data that flows between

the TMR

server

OS/390.

 

 

 

ŸConvey RACF administrative changes to RACF. The new R_Admin callable

service provides a function-code driven parameter list with data fi of name-value pairs. This name-value pair support is used by the TME administration service to add or update the following RACF user prof information:

– BASE profile information

OMVS segment

NETVIEW segment

TSO segment

CICS segment

In addition to the above, the R_Admin callable service provides a run function in which most RACF TSO commands may be executed.

Changes to the RACF TSO command ALTUSER. The NOCLAUTH key will now

accept an asterisk ('*') to indicate removal of all of the user's CLAUT

Program

Control

by System

ID

 

 

 

 

 

 

 

 

 

 

 

 

 

RACF provides a means to restrict

access to a program based on the s

 

 

identifier (SMFID). This additional program control by system ID improves

 

 

management and usability of program products in a sysplex environment. It

 

 

eliminates error-prone manual procedures, the need to keep

DASD that

is

 

 

shared,

and

the potential savings

on

licensing

fees

by controlling

which

 

 

a sysplex the licensed software

may

execute

on.

Previously many

custom

 

 

complied

with

licensing agreements

by

paying

for

ALL

system

that

the

so

 

 

COULD

run

on

because

there

was

no easy way to restrict access to

8 OS/390

V2R4.0

Security

Server (RACF) Planning:

Installation

and

Migration

 

 

 

 

 

 

Page 28
Image 28
IBM OS/390 manual Program, All

OS/390 specifications

IBM OS/390, a versatile operating system, was a cornerstone in enterprise environments and played a pivotal role in mainframe computing. Released in the mid-1990s, OS/390 combined the strengths of IBM's MVS (Multiple Virtual Storage) with new features and enhancements, targeting scalability, reliability, and performance in demanding business applications.

One of the key features of OS/390 was its robust support for multiple users and processes. The system allowed thousands of concurrent users to access applications and data, ensuring high availability and minimizing downtime—a critical requirement for many large organizations. This scalability was supported through various enhancements in memory management and processor scheduling, enabling optimal resource allocation across diverse workloads.

OS/390 was known for its superior workload management capabilities. The Workload Manager (WLM) component allowed administrators to define service policies, specifying how system resources would be allocated according to the priority of tasks. This ensured that critical business processes received the necessary resources while less critical tasks were managed more flexibly.

Another significant characteristic of OS/390 was its commitment to security. The operating system provided comprehensive security features, including user authentication, data encryption, and auditing capabilities. This focus on security was vital for organizations handling sensitive data, ensuring compliance with regulations and safeguarding against unauthorized access.

OS/390 also supported advanced technologies that facilitated integration and development. The system included features like the IBM CICS (Customer Information Control System) for transaction processing and IMS (Information Management System) for database management. These technologies allowed organizations to build robust, high-performance applications tailored to specific business needs.

The ease of network integration was another strength of OS/390. With the advent of the Internet and global connectivity, OS/390 systems could easily interface with various network protocols, enabling businesses to operate in a connected world. This inclusion paved the way for many organizations to expand their capabilities and offer new services, driving digital transformation.

In conclusion, IBM OS/390 represented a significant advancement in mainframe technology, combining scalability, security, and robust workload management. Its rich feature set and support for critical enterprise applications solidified its role as a vital component of many organizations' IT infrastructures, ensuring they could meet their operational challenges head-on while supporting future growth. As technology continues to evolve, the legacy of OS/390 remains influential in the realm of computing.