docmain.css" /> 1.2 Configure user authentication and authorization. - Automated Sign-On for Mainframe Administrator Guide

1.2 Configure user authentication and authorization.

Automated Sign-On for Mainframe requires users to authenticate to the MSS Administrative Server. Users can authenticate to the MSS Administrative Server by using a smart card, username and password, or other credentials.

NOTE:An LDAP directory must be used for user authorization.

To configure user authentication and authorization:

  1. In Management and Security Server, open the Administrative Console to Configure Settings > Authentication & Authorization.

  2. Select an Authentication method. If users will authenticate to the MSS Administrative Server using smart cards for authentication, select X.509 with LDAP failover.

  3. For Authorization method, select Use LDAP to restrict access to sessions.

  4. Enter the required information for your LDAP server. Click Help for assistance.

  5. Click Apply. The server is listed under LDAP Servers.