KERBEROS or ENCRYPTED (IFCID 319)

This topic provides a sample and the field description of the Authorization Change type of KERBEROS or ENCRYPTED (IFCID 319).

KERBEROS or ENCRYPTED (IFCID 319) - Authorization Change

This sample shows the layout for an authorization change type of KERBEROS or ENCRYPTED (IFCID 319):

TYPE:               KERBEROS                         COMMS ADDR TYPE:   TCP/IP  
IP ADDR:            000102030405060718191A1B1C1D1E1F PORT:              1234    
DERIVED LOCAL UID:  DERLOCID                         CLIENT PRODUCT ID: CLPRODID
PRINCIPAL NAME:     THIS IS AN EXAMPLE OF A VERY LONG REQUESTING KERBEROS NAME 
                    THAT EXCEEDS THE OUTPUT LINE 

TYPE:               KERBEROS                         COMMS ADDR TYPE:   SNA        
LU NAME:            LUN>=V9                                                        
DERIVED LOCAL UID:  DERLOCID                         CLIENT PRODUCT ID: CLPRODID   
PRINCIPAL NAME:     THIS IS AN EXAMPLE OF A VERY LONG REQUESTING KERBEROS NAME 
                    THAT EXCEEDS THE OUTPUT LINE 

TYPE:               ENCRYPTED                        COMMS ADDR TYPE:   TCP/IP  
IP ADDR:            000102030405060718191A1B1C1D1E1F PORT:              1234    
DERIVED LOCAL UID:  DERLOCID                         CLIENT PRODUCT ID: CLPRODID
SECURITY MECHANISM: UID Encrypt PW.                                             
                                                                                

TYPE:               ENCRYPTED                        COMMS ADDR TYPE:   SNA           
LU NAME:            LUN>=V9                                                           
DERIVED LOCAL UID:  DERLOCID                         CLIENT PRODUCT ID: CLPRODID      
SECURITY MECHANISM: UID Encrypt PW.                                                   

Field description

The fields are described in the following:

TYPE
The type of security identity: KERBEROS or ENCRYPTED.

Derivation: DB2® field QW0319TY

COMMS ADDR TYPE
Type of communication address: SNA or TCP/IP.

Derivation: DB2 field QW0319CT

IP ADDR
If the type of the communication address is TCP/IP, it is the 16 byte hexadecimal (HLHLHLHLHLHLHLHLHLHLHLHLHLHLHLHL) IP address of the internal 128 bit format, where:
  • H represents the high order half byte value
  • L represents the low order half byte value

Derivation: DB2 field QW0319IPA

PORT
The internal port format in case of communication address type TCP/IP.

Derivation: DB2 field QW0319PRT

DERIVED LOCAL UID
Local user ID mapped by DB2.

Derivation: DB2 field QW0319US

CLIENT PRODUCT ID
The identification of the client product.

Derivation: DB2 field QW0319CP

PRINCIPAL NAME
The requesting principal name. This can be up to 256 characters and can contain lowercase characters.

Derivation: DB2 field QW0319D1

LU NAME
If the type of the communication address is SNA, it is the 8 byte logical unit name.

Derivation: DB2 field QW0319LUN

SECURITY MECHANISM
The security mechanism. Possible values are:
  • UID Encrypt PW
  • Encrypt UID PW
  • Encrypt UID PW NewPW
  • Encrypt UID Data
  • Encrypt UID PW Data
  • Encrypt UID PW NewPW
  • Data Encrypt UID only

Derivation: DB2 field QW0319SM