Description:
How do you administer user defined FDT Segments through CA LDAP for z/OS CA Top Secret.
How do you make these segments known to CA LDAP?
How do you associate them to UFNs?
Solution:
Here is an example:
- Define the new FDT segment. In this example, segment USERATTR has two fields MYPHONE and MYSTREET:
FIELD NAME = MYPHONE
FIELD CODE = X'01'
SEGMENT = USERATTR
MAXLENGTH = 14 BYTES
DISPLAY = MYEPHONE
ATTRIBUTES= USER
FIELD NAME = MYSTREET
FIELD CODE = X'02'
SEGMENT = USERATTR
MAXLENGTH = 50 BYTES
DISPLAY = MYSTREET
ATTRIBUTES= USER
- Under OMVS go to your CA LDAP install directory and create a file ".conf" to define your UFNs.
BROWSE /cai/ldapr12sp00/usera_TSS_UFNs.conf
********************************* Top of Data ****
MYPHONE My-Phone-Number-is
MYSTREET My-Street-is
******************************** Bottom of Data ***
In first column, put the FDT field name and in the second column your UFN.
- Modify your "slapd.conf" file to take into account the above file:
###############################################################
# catss_dn databse specific definition
###############################################################
database catss_dn
suffix "host=a52icci,o=ca,c=usa"
naming_mode tss
# siParms remote.lpar.name port ? ssl-required | ssl-supported
# siTimeout 5
# HostUFNOverride ./over_ride_host.conf
HostUFNOverride ./hulja01_TSS_UFNs.conf
Add this line to this section: HostUFNOverride ./usera_TSS_UFNs.conf
Save it.
- Recycle your CA LDAP started task on your host. Once started again, you are ready to go.
- Here it an example of an ".ldif" file to create an acid with the new fields added to it:
version: 1
dn:tssacid=000002,tssadmingrp=acids,host=a52icci,o=ca,c=usa
changetype: add
objectClass: tssacid
Name:DEFAULT USER 2
tssacid:000002
User-Type:USER
AcidRecordSize:512
Department:D112
userPassword:000002
My-Phone-Number-is:06.17.69.89.00
My-Street-is:25, Main St
Please, refer to the CA-LDAP Administrator Guide for all details.