Defining an encryption key for PassTicket validation

The CIM server can alternatively validate a user ID and a PassTicket instead of a user ID and a password for authentication.

For more information about PassTickets, see z/OS Security Server RACF Security Administrator's Guide.

A PassTicket is validated against an application ID. The application ID for the CIM server is CFZAPPL.

To enable CFZAPPL for the CIM server,
  • Define CFZAPPL profile in the PTKTDATA class in RACF®. 
    SETROPTS CLASSACT (PTKTDATA)
SETROPTS RACLIST  (PTKTDATA)
RDEFINE  PTKTDATA CFZAPPL –
                  SSIGNON(KEYMASKED(<key>) 
SETROPTS RACLIST(PTKTDATA) REFRESH
    where <key> is the 16 digit encryption key.
Parent topic: CIM server security setup