This evaluation scenario demonstrates how Management and Security Server can be used to meet a company’s security requirements when managing a domain user’s access to the mainframe.
Specifically, the administrator is able to
-
integrate mainframe authorization with Windows Single Sign-On -- the existing Identity Access Management (IAM).
-
upgrade to TLS 1.2 -- without disrupting the business processes.
-
reinforce security -- without jeopardizing usability.
The user
-
is able to log on as usual, access a secure mainframe session, and begin working.
-
is not able to alter settings that were locked down.
In production, a similar approach can be used to secure and manage thousands of workstations.