Creating the security definitions

To create the security definitions for z/OS® Explorer, customize and submit the FEKRACF sample member in the FEK.#CUST.JCL data set. The user submitting this job must have security administrator privileges, such as being RACF® SPECIAL. For more details, see Security definitions.

Note: For those sites that use ACF2™ for z/OS or Top Secret® for z/OS, go to Broadcom Support Portal (https://support.broadcom.com/) and check for the related IBM® Rational® Developer for System z® Knowledge Document. This Knowledge Document has details on the security commands that are necessary to properly configure IBM Explorer for z/OS, as z/OS Explorer has the same requirements as Rational Developer for System z.

After the security setup is completed, the cryptographic administrator must customize and submit the sample FEKPKCS1 member, which will create a PKCS#11 private key for usage by SAF JSON Web tokens (JWTs).