List of Contributions

Peter Buckley

Contact Details

My Content

1 to 17 of 17 total
Posted By Peter Buckley Wed March 27, 2024 10:51 AM
Found In Egroup: IBM Security Z Security
\ view thread
Apologies, I understood from the manual that this mechanism was already in place: ORGANIZATION - IBM Documentation "NEWLIST TYPE=ORGANIZATION shows what organizations use a COMPLEX. The record key is VER COMPLEX ORGANIZATION. By default, if no input is provided, there is one organization called "Organization" ...
Posted By Peter Buckley Wed March 27, 2024 07:21 AM
Found In Egroup: IBM Security Z Security
\ view thread
Hi, I'd like to specify multiple organisations for use in assertion tests. The manual says: ORGANIZATION This field determines the name of the organization (max. 32 characters). If none is specified, the default organization is called "Organization." However I can't see anything that tells me ...
Posted By Peter Buckley Tue June 27, 2023 11:10 AM
Found In Egroup: IBM Security Z Security
\ view thread
I don't think so. TSO login panel is enabled in the system parmlib, member IKJTSOxx. So this will apply to an entire lpar (at minimum). CICS login panel is enabled by setting CESN to be an alias of CESL, if I recall correctly. This could be done at CICS address space level, but I can't think ...
Posted By Peter Buckley Thu July 28, 2022 11:40 AM
Found In Egroup: IBM Security Z Security
\ view thread
Hi Rob, That's true enough. In which case, there's no need for the 2-pass process. I'm happy that: The date in max(datettime) will always be the same as max(date); The max(time) for smf records from the max(date) is always the same as the time in max(datetime). So I have everything I need ...
Posted By Peter Buckley Thu July 28, 2022 05:27 AM
Found In Egroup: IBM Security Z Security
\ view thread
Hi Rob, That workaround produces the time in the correct format (once I corrected the typo: define #time as word(record,2) ) However the date now comes out as 28Jul2022, rather than 2022/209. Inevitably, trying to use juliandate in the first pass has no effect, and trying to use it to modify the ...
Posted By Peter Buckley Wed July 27, 2022 05:46 AM
Found In Egroup: IBM Security Z Security
\ view thread
Hi Simon, Thanks for your reply. I should explain what I'm doing more clearly. I need to run a job to analyse SMF records from the logstream, at regular intervals. I need to be sure that I pick up all records since the last run (but only those records). I could read the entire logstream and then ...
Posted By Peter Buckley Mon July 18, 2022 05:54 AM
Found In Egroup: IBM Security Z Security
\ view thread
Hi Rob, Sadly this doesn't work. Summary #last(smftime,5) consistently gives me a time of 52:48 I tried using the format as part of a define, but this gives the same result. I couldn't find any other format in the manual which would give a meaningful value. ​In this particular job, I'm extracting ...
Posted By Peter Buckley Wed July 13, 2022 06:38 AM
Found In Egroup: IBM Security Z Security
\ view thread
Hi, I'm reading a selection of records from the SMF logstreams, and need to be able to output the date and time of the latest SMF record in this format: FROM=(2022/193,23:30:30:00)' I can easily get the date and date-time of the latest SMF record with defines: Define type=smf EndDT(" End",15) ...
Posted By Peter Buckley Thu April 28, 2022 10:06 AM
Found In Egroup: IBM Security Z Security
\ view thread
Hi Jeroen, That's very helpful: I now have a working test for certprvt. I've put in an order for zSecure 2.5 so I can install and work with it. Unfortunately, at the moment I need to retain compatibility with zSecure 2.4.0 (Dec 2020 SSE) which is in use across our global estate. So I'll be progressing ...
Posted By Peter Buckley Mon April 25, 2022 06:39 AM
Found In Egroup: IBM Security Z Security
\ view thread
Hi Jeroen, Type=certificate is at least partially supported at my current zSecure maintenance level. For example, I can run a simple report in CARLa: N n=DIGTCERT type=certificate tt="RACF certs " sortlist, certlabl, certstrt(9) certend(9), CERTIFICATE_SIGNING_ALG and this produces ...
Posted By Peter Buckley Fri April 22, 2022 09:32 AM
Found In Egroup: IBM Security Z Security
\ view thread
Hi Jeroen, Thanks for the swift reply. I should give you some examples of my failing code: Example 1: Validate private key type RULE_SET DIGTCERT, DESC("Certificate checks."), CAPTION("Certificate checks") SEV(2) DOMAIN CERTS, DESC("User Certificates"), SELECT(racf(certificate_ ...
Posted By Peter Buckley Fri April 22, 2022 06:29 AM
Found In Egroup: IBM Security Z Security
\ view thread
Hi, I'm trying to build some compliance rules for digital certificates held in RACF, using zSecure 2.4. I would like to be able to validate the private key size and type, and the certificate signing algorithm. However I can't seem to use the values of these in selection criteria or tests. Is there ...
Posted By Peter Buckley Tue July 20, 2021 04:43 AM
Found In Egroup: IBM Security Z Security
\ view thread
Yes. To confirm: (1) Passphrases are completely separate from passwords. You can't use one to set the other. (2) A passphrase must be defined by an administrator for each user, before they can use passphrases. A simple solution would be to randomly generate a passphrase for each user in your pilot ...
Posted By Peter Buckley Fri January 08, 2021 11:08 AM
Found In Egroup: IBM Security Z Security
\ view thread
Thanks Rob, My simple solution to the above involved IEBGENERing SET commands for dates into a PDSE member on successful completion of one month's job, and INCLUDEing it on the next month's run. I've not spotted DATAGEN before. I'll be sure to add it to my box of tricks, and see what else it can ...
Posted By Peter Buckley Fri January 08, 2021 05:26 AM
Found In Egroup: IBM Security Z Security
\ view thread
A couple of usage notes: You'll need to enable this functionality for the relevant batch job classes: $TJOBCLASS(x), SYSSYM=ALLOW and update your JES2 parmlib entries to match. You can use this with any symbols defined in IEASYMxx. There's also a set of Dynamic System Symbols documented in the ...
Posted By Peter Buckley Fri March 27, 2020 09:42 AM
Found In Egroup: IBM Security Z Security
\ view thread
Thank you both for a nice, simple solution, and for all the additional helpful advice. I was tempted not to reply for a few days, to see what other goodies you might share! ------------------------------ Peter Buckley ------------------------------
Posted By Peter Buckley Thu March 26, 2020 10:50 AM
Found In Egroup: IBM Security Z Security
\ view thread
Hello, I'm running a simple, standard CARLa report to show RACF commands issued. However I now have a requirement to either hide or remove custom data from the ADDUSER and ALTUSER commands, before sending to a new recipient. As a simple example, I want to change out put like this: ALTUSER USER1 ...