How Do You Use User Defined FDT Segment With CA LDAP for CA Top Secret z/OS?

Document ID : KB000053616
Last Modified Date : 14/02/2018
Show Technical Document Details

Description:

How do you administer user defined FDT Segments through CA LDAP for z/OS CA Top Secret.

How do you make these segments known to CA LDAP?

How do you associate them to UFNs?

Solution:

Here is an example:

  1. Define the new FDT segment. In this example, segment USERATTR has two fields MYPHONE and MYSTREET:

    FIELD NAME = MYPHONE
    FIELD CODE = X'01'
    SEGMENT = USERATTR
    MAXLENGTH = 14 BYTES
    DISPLAY = MYEPHONE
    ATTRIBUTES= USER

    FIELD NAME = MYSTREET
    FIELD CODE = X'02'
    SEGMENT = USERATTR
    MAXLENGTH = 50 BYTES
    DISPLAY = MYSTREET
    ATTRIBUTES= USER

  2. Under OMVS go to your CA LDAP install directory and create a file ".conf" to define your UFNs.

    BROWSE /cai/ldapr12sp00/usera_TSS_UFNs.conf
    ********************************* Top of Data ****
    MYPHONE My-Phone-Number-is
    MYSTREET My-Street-is
    ******************************** Bottom of Data ***

    In first column, put the FDT field name and in the second column your UFN.

  3. Modify your "slapd.conf" file to take into account the above file:

    ###############################################################
    # catss_dn databse specific definition
    ###############################################################
    database catss_dn
    suffix "host=a52icci,o=ca,c=usa"
    naming_mode tss
    # siParms remote.lpar.name port ? ssl-required | ssl-supported
    # siTimeout 5
    # HostUFNOverride ./over_ride_host.conf
    HostUFNOverride ./hulja01_TSS_UFNs.conf

    Add this line to this section: HostUFNOverride ./usera_TSS_UFNs.conf

    Save it.

  4. Recycle your CA LDAP started task on your host. Once started again, you are ready to go.

  5. Here it an example of an ".ldif" file to create an acid with the new fields added to it:

    version: 1
    dn:tssacid=000002,tssadmingrp=acids,host=a52icci,o=ca,c=usa
    changetype: add
    objectClass: tssacid
    Name:DEFAULT USER 2
    tssacid:000002
    User-Type:USER
    AcidRecordSize:512
    Department:D112
    userPassword:000002
    My-Phone-Number-is:06.17.69.89.00
    My-Street-is:25, Main St

Please, refer to the CA-LDAP Administrator Guide for all details.