Secure vault for z/OS

usaajrm · Post by **usaajrm** » Wed Feb 23, 2011 5:34 pm

We struggle with maintaining passwords used to access remote systems. We Co:Z we are faced with maintaining passwords in files to be used with the launcher. We are aware of the ssh keys but sees limited to logon credentials. We also need passwords on the host to access secure web services, db2 and other database. Do Co:Z have any insight or solutions to provide some type of vault solution? Where credentials can be checked by z/OS java applications?

Post by **dovetail** » Thu Mar 03, 2011 10:03 am

For z/OS passwords, have you considered "pass tickets"?

One of our customers uses Co:Z Launcher with a passticket that is generated just-in-time for use on the target (remote) server for DB2 access, which is really cool.

usaajrm · Post by **usaajrm** » Thu Mar 03, 2011 4:14 pm

No, where can I get more information about pass tickets? this is the first time I've heard about pass tickets.

Post by **dovetail** » Thu Mar 03, 2011 6:26 pm

Its a feature of RACF since 2005. I also believe that ACF2 and possibly TSS supports. Consult the RACF documentation.