Enabling security

After your new environment is configured correctly, you can safely enable the required level of security on each of the components within your environment.

See Enabling security at Tivoli Enterprise Portal

If you are using the Tivoli Enterprise Portal to view data, you can create user accounts that authorize users to view the monitored data and set up authentication of those accounts by enabling security through the hub monitoring server or through the portal server. For instructions on enabling authentication on a hub monitoring server on Windows™, Linux™ and UNIX™ operating systems, see the IBM® Tivoli Monitoring: Administrator's Guide. For instructions on enabling authentication on a hub monitoring server on z/OS® systems, see the IBM Tivoli Management Services on z/OS: Configuring the Tivoli Enterprise Monitoring Server on z/OS.

If you intend to use autonomous agents on a z/OS system, you can enable SNMP V3 passwords if the Integrated Cryptographic Service Facility (ICSF) subsystem is available on the z/OS system. See Enabling SNMP V3 passwords for autonomous agents.

If you are using the IBM Tivoli OMEGAMON® enhanced 3270 user interface to view data, you can enable security by following the steps described in Authorizing users to access IBM Z OMEGAMON Network Monitor managed systems on the enhanced 3270 user interface.

In V5.1.0, the new 3270 and existing Tivoli Enterprise Portal Take Action commands fail unless explicit security definitions are configured that enable these commands to be issued. Security for this monitoring agent’s Take Action commands is implemented through direct SAF (System Authorization Facility) calls and is based on resource profiles. Both user ID and command are validated. See Authorizing users to issue Take Action commands to perform this security setup.