Security Model Integration
The z/OS security domain differs from the Distributed security domain by several distinguishing features:
Additional global security features
Two types of SSL repertoires
JSSE (JDK SSL)
System SSL (z/OS-native SSL)
Optional use of SAF repository as an alternative to key ring file
ICSF authentication mechanism (based on z/Series HW cryptographic processor)
SAF local OS registry settings
zSAS configuration in place of SAS Inbound/Outbound configuration
Global Security
The z/OS security domain has the following additional configuration options: default remote and local identifies for unauthenticated client requests, and options for application and connector thread identity enablement.
These additional configuration options are ...
Get IBM® WebSphere® System Administration now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
