Initial setup to activate AT-TLS

Use the information in this section if you are setting up AT-TLS at your site for the first time to secure communications for Tivoli Management Services on z/OS components and OMEGAMON products.

General AT-TLS set up occurs only once per system. AT-TLS might already be implemented at your site.

If you have not yet set up AT-TLS for your system, you can use this section for high-level guidance when setting up AT-TLS to secure communications for Tivoli Management Services on z/OS components and OMEGAMON products. For more information about AT-TLS, see z/OS Communications Server: IP Configuration Guide: Application Transparent Transport Layer Security data protection.

If AT-TLS is already enabled for your system and you are ready to modify your setup to protect Tivoli Management Services on z/OS components and OMEGAMON products, see Setting up AT-TLS for Tivoli Management Services on z/OS components.

At a high level, setup of AT-TLS requires updates in the following systems or locations:

z/OS® UNIX System Services (OMVS)
RACF
PARMLIB
PROCLIB

Note: The examples that are provided are intended as a guide; your setup will differ, depending on the requirements of your site.