ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

How Do You Use User Defined FDT Segment With CA LDAP for CA Top Secret z/OS?

book

Article ID: 53616

calendar_today

Updated On:

Products

ACF2 ACF2 - DB2 Option ACF2 for zVM ACF2 - z/OS ACF2 - MISC 24X7 High-Availability Manager for DB2 for z/OS Batch Processor Compile QQF Data Compressor for DB2 for z/OS CA Unicenter NSM RC/Update for DB2 for z/OS DB2 TOOLS- DATABASE MISC Top Secret Top Secret - LDAP

Issue/Introduction

Description:

How do you administer user defined FDT Segments through CA LDAP for z/OS CA Top Secret.

How do you make these segments known to CA LDAP?

How do you associate them to UFNs?

Solution:

Here is an example:

  1. Define the new FDT segment. In this example, segment USERATTR has two fields MYPHONE and MYSTREET:

    FIELD NAME = MYPHONE
    FIELD CODE = X'01'
    SEGMENT = USERATTR
    MAXLENGTH = 14 BYTES
    DISPLAY = MYEPHONE
    ATTRIBUTES= USER

    FIELD NAME = MYSTREET
    FIELD CODE = X'02'
    SEGMENT = USERATTR
    MAXLENGTH = 50 BYTES
    DISPLAY = MYSTREET
    ATTRIBUTES= USER

  2. Under OMVS go to your CA LDAP install directory and create a file ".conf" to define your UFNs.

    BROWSE /cai/ldapr12sp00/usera_TSS_UFNs.conf
    ********************************* Top of Data ****
    MYPHONE My-Phone-Number-is
    MYSTREET My-Street-is
    ******************************** Bottom of Data ***

    In first column, put the FDT field name and in the second column your UFN.

  3. Modify your "slapd.conf" file to take into account the above file:

    ###############################################################
    # catss_dn databse specific definition
    ###############################################################
    database catss_dn
    suffix "host=a52icci,o=ca,c=usa"
    naming_mode tss
    # siParms remote.lpar.name port ? ssl-required | ssl-supported
    # siTimeout 5
    # HostUFNOverride ./over_ride_host.conf
    HostUFNOverride ./hulja01_TSS_UFNs.conf

    Add this line to this section: HostUFNOverride ./usera_TSS_UFNs.conf

    Save it.

  4. Recycle your CA LDAP started task on your host. Once started again, you are ready to go.

  5. Here it an example of an ".ldif" file to create an acid with the new fields added to it:

    version: 1
    dn:tssacid=000002,tssadmingrp=acids,host=a52icci,o=ca,c=usa
    changetype: add
    objectClass: tssacid
    Name:DEFAULT USER 2
    tssacid:000002
    User-Type:USER
    AcidRecordSize:512
    Department:D112
    userPassword:000002
    My-Phone-Number-is:06.17.69.89.00
    My-Street-is:25, Main St

Please, refer to the CA-LDAP Administrator Guide for all details.

Environment

Release:
Component: TSSLDP