Adding single sign-on to a database connection

You can define a database connection to retrieve your user ID and password from a remote system connection when you connect to the database.

Before you begin

Do one of the following actions:
  • Connect to a remote system and select the options to save your user ID and password. You can disconnect from the remote system after you save your user ID and password.
  • Connect to a remote system without saving your user ID and password. You must have a live connection to the remote system when you connect to the database.
The following screen capture shows the remote connection sign-on window with the options to save authentication information selected:
Remote system sign-on window with authentication information

About this task

Single sign-on is a method for sharing authentication information between a remote system connection and a database connection. When you enable single sign-on for a database connection, Developer for z/OS® passes your user ID and password for a remote system connection to Data Tools when you connect to the database. It does not automatically connect you to the database. Even if you are connected to the remote system, you must connect to the database by using the Connect menu item in the Data Source Explorer view.

Data Tools obtains authentication information from the remote system connection in two ways:
  • If you save your user ID and password for a remote system connection, Data Tools obtains the saved authentication information. You do not have to be connected to the remote system to pass the authentication information from the remote system connection to the database connection.
  • If you do not save your user ID and password, but you are connected to the remote system, Data Tools obtains the authentication information from the live remote system connection when you connect to the database.
Limitation: The SQL editor Run SQL function does not use single sign-on. If you enable single sign-on for a database connection, you are prompted to authenticate with the database when you use the Run SQL function.

Procedure

  1. To add single-sign-on to a new database connection:
    1. In the Data Source Explorer, select Database Connections, and then right-click and click New.
    2. In the New Connection window, select Db2 for z/OS.
    3. On the General tab, select Single Sign On.
      New Connection window with the single sign-on fields
      The Remote Systems list is enabled. The list contains the names of the z/OS connections that are defined in the Remote Systems view.
    4. Choose a remote system from the list.
      Developer for z/OS retrieves your user ID and password for the remote system.
    5. Define the remaining fields for the connection.
      For information about defining a database connection, see the related topics.
  2. To add single sign-on to an existing database connection:
    1. In the Data Source Explorer, select the connection name, and then right-click and click Properties.
    2. In the Properties window, select Driver Properties.
    3. Select Single Sign On.
      The Remote Systems list is enabled. The list contains the names of the z/OS connections that are defined in the Remote Systems view.
    4. Choose a remote system from the list.
      Developer for z/OS retrieves your user ID and password for the remote system.
    5. To save the properties, click OK.

Results

When you connect to the database, Data Tools obtains your authentication information either from the saved remote system sign-on information or from a live connection to the remote system.