CERTMAP alternatives for certificate client authentication
Article ID: 93109
Updated On:
Products
Top Secret
Top Secret - LDAP
Issue/Introduction
Are there CERTMAP alternatives for certificate client authentication to signon a user?
Are there CERTMAP alternatives for certificate client authentication to signon a user?
Are there CERTMAP alternatives for certificate client authentication to signon a user?
Environment
Release:
Component: TSSLDP
Component: TSSLDP
Resolution
To signon a user with a certificate, you have two methods that CA
Top Secret support:
1. You can use CERTMAPs to associate a certificate to an acid.
2. Or you can, you make the acid the owner of the certificate.
We support both.
CERTMAP is documented in the following section:
https://docops.ca.com/ca-top-secret-for-z-os/16-0/en/using/digital-certificates/certificate-name-filtering-support
To signon with a digital certificate, your application have the ability to signon a user with a certificate using RACF Callable Service 'initacee certificate=yes".
'initacee' is documented in the IBM RACF Callable Services Guide
Top Secret support:
1. You can use CERTMAPs to associate a certificate to an acid.
2. Or you can, you make the acid the owner of the certificate.
We support both.
CERTMAP is documented in the following section:
https://docops.ca.com/ca-top-secret-for-z-os/16-0/en/using/digital-certificates/certificate-name-filtering-support
To signon with a digital certificate, your application have the ability to signon a user with a certificate using RACF Callable Service 'initacee certificate=yes".
'initacee' is documented in the IBM RACF Callable Services Guide
Feedback
Yes
No
Powered by
