MQ

Hi,

We are using zD&T(zOS test and dev environment which has RACF) for our User provisioning integration.  I would like to know whether java sdk / APIs available for executing RACF commands. I found some of the links for: 


------------------------------
Sailaja Prakash
------------------------------

You've posted your question on an MQ forum. Is there an MQ facet to your question, or do we need to get your question moved (by the admins) to a more appropriate forum so that a audience knowledgeable about what you are asking will see it?

Cheers,
Morag

------------------------------
Morag Hughson
MQ Technical Education Specialist
MQGem Software Limited
Website: https://www.mqgem.com
------------------------------

Original Message:
Sent: Thu September 09, 2021 02:01 PM
From: Sailaja Prakash
Subject: Reg: Java sdk / APIs available for executing RACF commands.

Hi,

We are using zD&T(zOS test and dev environment which has RACF) for our User provisioning integration.  I would like to know whether java sdk / APIs available for executing RACF commands. I found some of the links for: 

 RACF REST Services

https://www.ibm.com/docs/en/zos/2.4.0?topic=guide-using-zosmf-rest-services. Click or tap if you trust this link." data-linkindex="0">https://www.ibm.com/docs/en/zos/2.4.0?topic=guide-using-zosmf-rest-services

The REST Services allow a client program to invoke console commands as well.

https://www.ibm.com/docs/en/zos/2.4.0?topic=services-zos-console. Click or tap if you trust this link." data-linkindex="1">https://www.ibm.com/docs/en/zos/2.4.0?topic=services-zos-console

I am looking answer for some of my below questions: 

a. Can this be used to create users/ list users?

b. Is there another REST API that can be used?

c. Is there any dependency on LDAP

Could some one please share your inputs. Thanks, Sailaja Prakash

------------------------------
Sailaja Prakash
------------------------------

Hi Morag,  my apologies for posting it in this group.  Please forward my questions to the right forum and kindly add me . Thanks again 
Sailaja Prakash

------------------------------
Sailaja Prakash
------------------------------

Original Message:
Sent: Fri September 10, 2021 12:31 AM
From: Morag Hughson
Subject: Reg: Java sdk / APIs available for executing RACF commands.

You've posted your question on an MQ forum. Is there an MQ facet to your question, or do we need to get your question moved (by the admins) to a more appropriate forum so that a audience knowledgeable about what you are asking will see it?

Cheers,
Morag

------------------------------
Morag Hughson
MQ Technical Education Specialist
MQGem Software Limited
Website: https://www.mqgem.com

Original Message:
Sent: Thu September 09, 2021 02:01 PM
From: Sailaja Prakash
Subject: Reg: Java sdk / APIs available for executing RACF commands.

Hi,

We are using zD&T(zOS test and dev environment which has RACF) for our User provisioning integration.  I would like to know whether java sdk / APIs available for executing RACF commands. I found some of the links for: 

 RACF REST Services

https://www.ibm.com/docs/en/zos/2.4.0?topic=guide-using-zosmf-rest-services. Click or tap if you trust this link." data-linkindex="0">https://www.ibm.com/docs/en/zos/2.4.0?topic=guide-using-zosmf-rest-services

The REST Services allow a client program to invoke console commands as well.

https://www.ibm.com/docs/en/zos/2.4.0?topic=services-zos-console. Click or tap if you trust this link." data-linkindex="1">https://www.ibm.com/docs/en/zos/2.4.0?topic=services-zos-console

I am looking answer for some of my below questions: 

a. Can this be used to create users/ list users?

b. Is there another REST API that can be used?

c. Is there any dependency on LDAP

Could some one please share your inputs. Thanks, Sailaja Prakash

------------------------------
Sailaja Prakash
------------------------------

Hi Sailaja,

• You can issue RACF commands on the operator console (if your operator ID is authorised).  So using the rest interface you gave should work.  This is a non trivial set up, as you need to set up RACF profiles to allow you to do this.   You also need to think what resources you want to allow your end users to administer.  Queues yes - change who can issue administer which command- perhaps not.
• z/OSMF is the obvious subsystem to allow you to manage your system.  I could not find a REST API for it.
• I do not use LDAP for my z/OS

Please contact me offline if you want to have a chat about this.

regards

Colin

------------------------------
Colin Paice
------------------------------

Original Message:
Sent: Thu September 09, 2021 02:01 PM
From: Sailaja Prakash
Subject: Reg: Java sdk / APIs available for executing RACF commands.

Hi,

We are using zD&T(zOS test and dev environment which has RACF) for our User provisioning integration.  I would like to know whether java sdk / APIs available for executing RACF commands. I found some of the links for: 

 RACF REST Services

https://www.ibm.com/docs/en/zos/2.4.0?topic=guide-using-zosmf-rest-services. Click or tap if you trust this link." data-linkindex="0">https://www.ibm.com/docs/en/zos/2.4.0?topic=guide-using-zosmf-rest-services

The REST Services allow a client program to invoke console commands as well.

https://www.ibm.com/docs/en/zos/2.4.0?topic=services-zos-console. Click or tap if you trust this link." data-linkindex="1">https://www.ibm.com/docs/en/zos/2.4.0?topic=services-zos-console

I am looking answer for some of my below questions: 

a. Can this be used to create users/ list users?

b. Is there another REST API that can be used?

c. Is there any dependency on LDAP

Could some one please share your inputs. Thanks, Sailaja Prakash

------------------------------
Sailaja Prakash
------------------------------

what a coincidence I am dealing with the same topic,  with one of the MTM candidate. So far i have found  an old redbook - Java Security on z/OS -
The Complete View - SG247610.pdf extremely helpful (JSEC) and cant find anything up to date. Give it  a try?
Prabhat

------------------------------
Prabhat Srivastava
------------------------------

Original Message:
Sent: Thu September 09, 2021 02:01 PM
From: Sailaja Prakash
Subject: Reg: Java sdk / APIs available for executing RACF commands.

Hi,

We are using zD&T(zOS test and dev environment which has RACF) for our User provisioning integration.  I would like to know whether java sdk / APIs available for executing RACF commands. I found some of the links for: 

 RACF REST Services

https://www.ibm.com/docs/en/zos/2.4.0?topic=guide-using-zosmf-rest-services. Click or tap if you trust this link." data-linkindex="0">https://www.ibm.com/docs/en/zos/2.4.0?topic=guide-using-zosmf-rest-services

The REST Services allow a client program to invoke console commands as well.

https://www.ibm.com/docs/en/zos/2.4.0?topic=services-zos-console. Click or tap if you trust this link." data-linkindex="1">https://www.ibm.com/docs/en/zos/2.4.0?topic=services-zos-console

I am looking answer for some of my below questions: 

a. Can this be used to create users/ list users?

b. Is there another REST API that can be used?

c. Is there any dependency on LDAP

Could some one please share your inputs. Thanks, Sailaja Prakash

------------------------------
Sailaja Prakash
------------------------------