Configuring security for IZSME

IZSME is often used to manage sensitive data. You should encrypt all of the communication channels IZSME uses.

You should configure AT-TLS to provide security for communication channels between IZSME and other entities including the Zowe Node server and zssServer, and the Hub TEMS.

Note: The Node - JavaSidecar communication channel must be secured using mutual authentication AT-TLS, as described in Configuring mutual auth TLS to secure Node - JavaSidecar communications.

You can use RACF and role-based access control (RBAC) to set the authorization levels for groups of users (such as administrators and business users).

To secure communication between the Zowe Node Server and the zssServer, see the Zowe documentation under Configuring ZSS for HTTPS. Secure communications between the Live CT/DB Adapter and your TEPS database(s) will use secure JDBC.