Configuring RACF for Kerberos
You must configure an external security manager, such as RACF®, to enable support for Kerberos.
Note: These instructions apply only to the use of local principals.
Before you begin
- You must set up a Kerberos environment for z/OS® Security Server RACF by using the z/OS Integrated Security Services Network Authentication Service. For information about RACF, Kerberos and z/OS Integrated Security Services Network Authentication Service, see RACF and z/OS Integrated Security Services Network Authentication Service.
- The configuration /etc/skrb/krb5.conf defines the local realm for the LPAR or sysplex.
- The SKRBKDC started task must be running. For more information, see Setting up a Kerberos Key Distribution Center in z/OS Network File System Guide and Reference.