How to add a TSS profile using LDAP?

Document ID : KB000124271
Last Modified Date : 14/01/2019
Show Technical Document Details
Question:
What is the TSS syntax for adding a profile to LDAP users?
Answer:
To add a new PROFILE after a specified profile, the LDIF script will look like the following: 

dn:tssproflist=[%NEW_PROFILE%],tssacidgrp=ProfList,tssacid=[%YOUR_ACID%],tssadmingrp=acids,[%SUFFIX_VARIABLE%] 
changetype: add 
Profile-After:[%AFTER_PROFILE%] 

where [%NEW_PROFILE%]: This is the new profile that is added 
[%YOUR_ACID%]: This is the User Acid 
[%AFTER_PROFILE%]: This is the profile after which the new profile is added 

The command generated by CA Top Secret Security will be the following: 
TSS ADDTO([%YOUR_ACID%]) PROFILE([%NEW_PROFILE%]) AFTER([%AFTER_PROFILE%]) 

To add a new PROFILE at the bottom of the profile, the LDIF script will look like the following: 
dn:tssproflist=[%NEW_PROFILE%],tssacidgrp=ProfList,tssacid=[%YOUR_ACID%],tssadmingrp=acids,[%SUFFIX_VARIABLE%] 
changetype: add 

Note: If the Profile attribute is not specified, the new profile is added at the bottom of the profile. 
where [%NEW_PROFILE%]: This is the new profile that is added 
[%YOUR_ACID%]: This is the User Acid 

The command generated by CA Top Secret Security will be the following: 
TSS ADDTO([%YOUR_ACID%]) PROFILE([%NEW_PROFILE%]) 

To add a new PROFILE before a specified profile, the LDIF script will look like the following: 
dn:tssproflist=[%NEW_PROFILE%],tssacidgrp=ProfList,tssacid=[%YOUR_ACID%],tssadmingrp=acids,[%SUFFIX_VARIABLE%] 
changetype: add 
Profile-Before:[%BEFORE_PROFILE%] 

The command generated by CA Top Secret Security will be the following: 
TSS ADDTO([%YOUR_ACID%]) PROFILE([%NEW_PROFILE%]) BEFORE([%BEFORE_PROFILE%]) 

To add a new PROFILE at the beginning profile, the LDIF script will look like the following: 
dn:tssproflist=[%NEW_PROFILE%],tssacidgrp=ProfList,tssacid=[%YOUR_ACID%],tssadmingrp=acids,[%SUFFIX_VARIABLE%] 
changetype: add 
Profile-First 

The command generated by CA Top Secret Security will be the following: 
TSS ADDTO([%YOUR_ACID%]) PROFILE([%NEW_PROFILE%]) FIRST 

The CA LDAP Server maps all CA Top Secret data to unique LDAP objects as documented in the CA LDAP Server documentation. For details see section ‘ObjectClass Hierarchy (TSS)’ in the ‘CA System z Security Communication Servers (DSI, LDAP, PAM) - 15.1’ documentation.