Synchronizing IBM RACF Data by using IBM Tivoli Directory IntegratorThis IBM® RedpaperTM publication provides an example of a solution to synchronize an IBM RACF® user ID, password, and password phrase data between IBM z/OS® and IBM z/VM® systems, or just between z/VM systems. Topics that are covered are the installation and customization of IBM Tivoli® Directory Integrator, IBM Tivoli Directory Server, and RACF. Using this basic infrastructure, a sample Tivoli Directory Integrator configuration is presented, which allows for a flexible and extensible means for synchronizing RACF information. |
Common terms and phrases
AssemblyLine attribute AttributeMap AttributeMapItem changelog record component connector created defined DeltaSettings Directory Integrator configuration directory tree DS CONF file Enabled>false</Enabled Enabled>true</Enabled encryption example FACILITY class false file pool function GDBM getEntryFromSource getItemAccess Hook hookctx hostname host entry hostname IBM Redbooks IBM Tivoli Directory ICTX Inherit inheritance]</Inherit InheritFrom InheritFrom>[no inheritance]</InheritFrom InheritFrom>[parent]</InheritFrom ITDI keystore LDAP server LDAPSRV LDBM LDIF line(s LinkCriteria LPAR node objectclass openvm parameter parent]</Inherit Parser password and password password envelope password or password password phrase PoolDefinition propagated properties putEntryToTarget RACF certificate RACF database RACFEVNT racfid readSysRegistry Redbooks sample code SandboxConfig SASL Schema name="Input Schema name="Output SchemaItem Script Script><![CDATA[cat SDBM secretkey Secure Sockets Layer setup shown in Figure source system SSL/TLS startPutAndGetALs synchronization Syntax>java.lang.String</Syntax target system targetList tcb.setConnectorParameter TCP/IP TCPMAINT Tivoli Directory Integrator Type>advanced</Type Type>simple</Type update user ID VMLINUX5 VMSERVL VMSYSL WebSphere MQ WebSphere MQ queue z/OS and z/VM