docmain.css" /> 4. Configure Authentication & Authorization - Automated Sign-on for Mainframe - Administrator Guide

3.4 4. Configure Authentication & Authorization

Automated Sign-on for Mainframe requires users to authenticate to the MSS Administrative Server by using a smart card, username and password, or other credentials.

Note: An LDAP directory is required for user authorization.

To configure user authentication and authorization:

  1. In Management and Security Server, open the Administrative Console to Configure Settings - Authentication & Authorization.

  2. Select an Authentication method (any other than None).

    Using smart cards. If users will authenticate to the MSS Administrative Server with smart cards, select X.509. Further configuration is required before running a simple test, noted in When smart cards are used for authentication.

  3. For Authorization method, select Use LDAP to restrict access to sessions.

  4. Enter the required information for your LDAP server. Click Help for assistance.

  5. Click Apply. The server is listed under LDAP Servers.

5. Establish trust between the MSS Administrative Server and the DCAS server

Initial Setup

Configuration Workflow