Security for IMS Connect

IMS Connect includes a variety of options for implementing and modifying the security checking performed on messages as they arrive in IMS Connect and as they arrive at the data store.

IMS Connect provides two options for checking security within IMS Connect: you can configure IMS Connect to call RACF® directly or you can have the IMS Connect user message exit routines call a Security user exit routine.

Additional security features provided by IMS Connect include:
  • Password management support
  • Trusted-user classification for messages arriving at the data store
  • OTMA accessor environment element (ACEE) timeout specification support
  • For connections from clients connecting to IMS DB:
    • Secure Sockets Layer (SSL) support. To use SSL to secure connections from clients connecting to IMS DB, you can use IBM® z/OS® Communications Server Application Transparent Transport Layer Security feature (AT-TLS).
    • Support for RACF PassTickets.
  • For IMS TM clients, IMS Connect provides support for RACF PassTickets.
  • Support for passing to and from IMS the security credentials, including the network user ID and network session ID, that are entered by a user in a distributed environment.